founded 1972
Kroll offers comprehensive compliance and risk management services including SOC 2, PCI DSS, and HIPAA assessments backed by decades of cybersecurity expertise.
Kroll is respected for its decades of experience in risk and compliance advisory, with users valuing the depth of expertise their consultants bring to complex engagements. The firm excels at high-stakes assessments and incident response, though clients note that the services-heavy model comes with premium pricing and longer engagement timelines.
No case studies yet
We haven't harvested any public case studies for Kroll yet. Are you the vendor? Claim this listing to add documented customer outcomes.
2 plans available.
Be the first to write a community review of Kroll.
Write a review
Share your experience with Kroll and help others make informed decisions.
Compliance automation for cloud-first companies
79 customer references
Enterprise password and secrets management with compliance
26 customer references
Continuous compliance automation with 85+ integrations
119 customer references
Cloud security platform with compliance capabilities
1 customer reference
Compliance operating system for modern enterprises
21 customer references
Automated compliance for SOC 2, HIPAA, ISO 27001 & more
70 customer references
What Is SOC 2? A Complete Guide to SOC 2 Compliance
SOC 2 is a security framework developed by the AICPA that defines criteria for managing customer data based on five Trust Services Criteria: security, availability, processing integrity, confidentiality, and privacy.
SOC 2 Type I vs Type II: Key Differences Explained
SOC 2 Type I evaluates whether your security controls are properly designed at a single point in time, while Type II tests whether those controls actually operated effectively over a period of 3-12 months.
What Is HIPAA? A Complete Guide to HIPAA Compliance
HIPAA (Health Insurance Portability and Accountability Act) is a US federal law that sets national standards for protecting sensitive patient health information (PHI) from being disclosed without the patient's consent or knowledge.
HIPAA Compliance Checklist for 2025
A comprehensive HIPAA compliance checklist covers risk assessments, administrative/physical/technical safeguards, Business Associate Agreements, workforce training, breach notification procedures, and ongoing documentation requirements.
