Identify critical assets, assess and quantify the potential impact of threats and vulnerabilities, and prioritize remediation actions.

We take a risk-based approach to evaluating cyber threats to an organization's mission-critical technology, corporate reputation, and balance sheet.
Stroz Friedberg is a specialized risk management firm built to help clients solve the complex challenges prevalent in today’s digital, connected, and regulated business world

Resilient organizations recognize that cyber risk is today’s new normal and actively work to protect themselves and key stakeholders against potentially devastating threats.

Resilience starts with the ability to identify an organization’s critical assets and evaluate threats and vulnerabilities through continuous assessment that allows the company to prioritize ongoing investment in its security program.


Organizations need to be confident they can withstand a cyber incident of any severity. But the rapid pace at which companies are becoming more digital and connected, combined with the dynamic nature of cyber threats, requires ongoing assessment to identify gaps and continuously reprioritize program spend and resource allocation.


Stroz Friedberg helps organizations assess their environments to identify and prioritize threats, and use this insight to develop a holistic and integrated approach to cyber risk. Our assessments establish an objective baseline evaluation of current capabilities; identify gaps and evaluate exposures; and provide a prioritized, proactive plan for remediation. To accomplish this, we evaluate security governance, operations, and controls and offer practical advice to help you measure and improve your cybersecurity posture and align with proven security frameworks. We identify vulnerabilities to critical assets, develop prioritized remediation recommendations, benchmark individual cybersecurity control performance against specific threats, and assess readiness to meet regulatory compliance and privacy requirements.

Diligent assessment helps you improve cyber resilience, empowering your organization to operate with confidence and rapidly detect, respond to, and recover from intrusions. Our approach is collaborative. We work thoughtfully to understand your near-and long-term business priorities so that we can consider challenges unique to your organization, and help you respond to changing dynamics. Risk is an ever-present reality, but with Stroz Friedberg as a trusted advisor, you can protect your most important assets and optimize your risk resilience.

  • Security Risk Assessment
  • Insider Risk Assessment
  • Third Party Risk Assessment
  • M&A Cyber Due Diligence Assessment
  • Compromise Assessment
  • Privacy Compliance Assessment
  • Threat Assessment
  • Incident Response (IR) Readiness Assessment
  • Security Controls Assessment
  • Security Architecture Assessment



Commentary, new discoveries, and innovative ideas right to your inbox.

Stroz Friedberg

Sorry! You are using an older browser which is not supported by this website.

Please download one of these free browsers to enjoy all our website has to offer:
Firefox, Chrome or Internet Explorer.