Truvantis® is a security, privacy and compliance consulting firm providing best-in-class services to secure your organization's infrastructure, data, operations and products.
We specialize in helping our clients improve their business resilience and manage their risk by implementing, testing, auditing and operating information security programs.
Our world-class services include security testing and a wide range of flexible compliance and vCISO programs. Truvantis is also an authorized PCI DSS Qualified Security Assessor (QSA) Company.
Andy Cottrell is the founder and CEO of Truvantis with more than twenty-five years of experience in IT security. He has designed and implemented security solutions as an enterprise employee, brought security products to market and helped countless small and large companies improve their security posture. This broad background allows him to help companies balance their need for security with business realities.
Jenny Cottrell is the executive vice president of Truvantis and leads the organization's strategic initiatives and operations team. An experienced firmware engineer herself, she has led projects and programs within Silicon Valley brands such as Phoenix Technologies, PayPal and NetApp. Using her experience in Operations Management, she leads the team that empowers our professional services staff to deliver a high-quality experience to clients.
Nate S. Hartman is CISO and VP of Professional Services at Truvantis with more than 20 years of Information Systems Security experience, anticipating threat trends and delivering preemptive responses. He is an Internet technologist, ethical hacker, cloud security business risk practitioner and cybersecurity generalist with expertise ranging from secure network design to security program governance, risk management and compliance.
Jerrod Montoya is an attorney and consultant with a unique blend of legal, information security, and privacy experience which aids organizations with the implementation of smart solutions to meet business objectives. As an expert in Privacy, Governance, Risk, and Compliance, he leads corporate risk management and compliance programs for Truvantis while facilitating business growth through technology-business alignment.
Desi Acosta is a business design focused executive with a proven track record of leadership across diverse sectors including technology, consulting, education, and biotech. He is primarily focused on strategy, client experience, and driving innovation to achieve organizational goals. Desi leads the charge on business initiatives , including alliances, and enhancing the client cybersecurity journey.
The integrity and quality of your security is a direct result of the service provider you choose to partner with. Truvantis has proudly served cybersecurity industry since 2010. We work hard to be the cybersecurity partner you can depend on to deliver best-in-class service and protection.
Our team is held to the highest ethical standards in the industry and is extremely qualified to perform every service we offer, with vital certifications including:
• PCI QSA Payment Card Industry Qualified Security Assessors
• CISSP Certified Information Systems Security Professional
• CRISC Certified in Risk and Information Systems Control
• CISM Certified Information Security Manager
• CISA Certified Information Systems Auditor
• OSCP Offensive Security Certified Professional
• CCSP Certified Cloud Security Professional
Truvantis is trusted by a wide range of organizations globally, including banks, state and local government, airports, public companies, startups, large not-for-profits and major sports teams.
Entrusting security services to the wrong vendor can, at best, waste resources and at worst, leave you more exposed than when you started. Select a vendor carefully. The five most important criteria when engaging security vendors are:
1. Effectiveness of Services
2. Customized Engagements
3. Quality of Reports
4. Methodology
5. Ability to Deliver Quickly
Every member of the Truvantis team is a senior security engineer with years of experience. Together, we have led the security, privacy and audits of the world’s top public companies under the leadership of former CTOs and InfoSec leaders, from startups to major enterprises.
We customize our flexible service plans to work best for your immediate and long-term requirements. We help you create security programs that support your business mission.
Featured Services include:
• Penetration Testing Services
• PCI DSS v4.0 QSA
• Data Privacy Consulting
• vCISO
• As well as a wide range of security program services for the knowledgeable buyer.
Clients rely on us because our approach to security is:
• Efficient
• Insightful
• Business-Focused
• Best-in-Class
+1 (415) 422-9844
+1 (415) 422-9844