JUL
12

PCI DSS Compliance Auditors -QSA | Dallas, Texas

NDB is one of Texas’ leading PCI DSS compliance audit firms, offering QSA assessments and other consulting services for companies all throughout Dallas.

As one of the country’s fastest growing metroplex regions, the DFW area is home to countless businesses requiring compliance with the Payment Card Industry Data Security Standards (PCI DSS). If you store, process, and or transmit cardholder data, then becoming PCI DSS compliant is a must. Are you a merchant or service provider located in the Dalla area and need assistance with PCI compliance, then talk to the experts today at NDB, Texas’ leading PCI-QSAC firm.

Call NDB today at 512-522-4943 (Austin), 214-272-0967 (Dallas), or at 713-331-5492 (Houston) to learn more about NDB’s PCI services, or email us at This email address is being protected from spambots. You need JavaScript enabled to view it. to discuss your PCI DSS compliance needs.

Comprehensive PCI DSS Services for Dallas Businesses

NDB offers the following PCI DSS compliance services and solutions to Dallas merchants and service providers.

PCI DSS Scoping & Readiness Assessments: The very best way to ensure PCI DSS compliance is obtained quickly and cost-effectively performing an upfront PCI DSS Scoping & Readiness. NDB has completed hundreds of readiness assessments for merchants and service providers all throughout Texas, and we can also help you. The benefits of such an assessment include the following:

Continue reading
JUN
19

PCI DSS Compliance Checklist for Texas Merchants & Businesses | Overview & Guidelines for Certification

NDB offers the following PCI DSS compliance checklist for Texas merchants and services providers – a comprehensive overview for becoming compliant with the Payment Card Industry Data Security Standards (PCI DSS).

1. Understand what PCI DSS is. Ask ten different businesses in Texas what PCI is and what’s needed to become compliant and you’ll more than likely get ten different answers.  That’s because everyone’s interpretation of the Payment Card Industry Data Security Standards (PCI DSS) differs. The point is that you need to truly understand the technical aspects of PCI compliance, what it takes to become compliant, the actual reporting process to undertake, and many other important considerations. 

Visiting the official PCI DSS website at pcisecuritystandards.org is a great place to start, as the Payment Card Industry Security Standards Council (PCI SSSC) is the governing body for the PCI DSS standards. From downloading essential forms to learning about key terms, you’ll find all the information needed to truly gain a strong working knowledge of the PCI DSS framework. 

2. Learn about the reporting requirements. Luckily, the vast majority of Texas businesses – both merchants and service providers – can annually comply with the PCI DSS standards via any number of the PCI DSS Self-Assessment Questionnaires (SAQ), from SAQ-A to SAQ-D. However, there are a select few businesses that will have to perform an annual Level 1 onsite assessment via a Payment Card Industry Qualified Security Assessor (PCI-QSA).  Here’s what you need to know at a high-level about PCI DSS reporting:

  • The vast majority of merchants will fall into the Level 2 – 4 categories 4, meaning you can use any number of the SAQ questionnaires.  While that removes you from performing the much-dreaded Level 1 onsite assessment performed by a PCI-QSA, there’s still work to be done in terms of auditing and compliance.  Just because it says “SAQ” doesn’t mean it’s a walk in the park – hardly. In fact, a large number of Texas merchants and service providers needing to become PCI DSS compliant fall victim to the false assumption that they can perform the SAQ on their own, when that’s not the truth. You need help, and NDB is here to assist in getting you compliant in an efficient, cost-effective, and scalable manner.  Contact us today to learn more. 
  • Documentation is often the biggest, most challenging, and most time-consuming hurdle to overcome in terms of PCI DSS compliance. And it’s why NDB offers industry-leading tools, templates, and other supporting documents for Texas businesses. 
  • Spending time on ensuring compliance long after your initial PCI DSS SAQ is completed is mandatory. Think about it, compliance isn’t really about a stop and start process, it’s about putting in place controls and continuously monitoring them.  NDB offers continuous monitoring services for Texas merchants and service providers when it comes to PCI DSS compliance, or any other of today’s demanding regulations.

3. Are you a merchant or a service provider? You will need to determine this up front, as this can make a big difference in the scope of one's assessment.

Continue reading
JUN
25

SOC 2 for Dummies – the A to Z Basics of SOC Reports & Audits

Looking for a SOC 2 for Dummies guide (and we’re not saying you’re dumb!), rather, you need a guide that cuts through the complexities of what a SOC 2 audit is? If so, then welcome to the SOC 2 for Dummies pages, courtesy of NDB, North America’s leading provider of SOC 2 Type 1 and SOC 2 Type 2 audit assessments.

With that said, if you’re new to the world of SOC 2 compliance, take note of the following points for gaining a greater understanding of what it really takes to get ready – and become – SOC 2 compliant.

  1. Know What the SOC 2 Framework is all About and What it Isn’t.
  2. Find an Auditor who Truly Knows Your Industry.
  3. Get Started with a Scoping & Readiness Assessment.
  4. Determine which TSP’s are in Scope.
  5. Understand that Remediation is Critical to becoming SOC 2 Compliant.
  6. Remediate!
  7. Be Aware that SOC 2 Compliance is NOT an Overnight Process.
  8. It is an Annual Requirement (at least for most service organizations).

SOC 2 for Dummies – What you Need to Know

(1). Know What the SOC 2 Framework is all About and What it Isn’t.

So, what is SOC 2 Plainly speaking? SOC 2 is an assessment conducted on an organization’s internal control environment. So, what’s internal controls? It’s essentially an organization’s policies, procedures, and processes. SOC 2 has become one of the most widely accepted and well-known regulatory compliance assessments performed on service organizations. So, what’s a service organization? It’s an organization that essentially offers services to another company. Think Software as a Service (SaaS) providers, e-commerce businesses, data centers – almost any organization that’s providing essential services to another business.

(2). Find an Auditor who Truly Knows Your Industry

Sounds easy enough, but truth be told, some industries really require the knowledge and expertise of a CPA who can understand your business from beginning to end. The more familiar a CPA firm is with your industry, the greater the efficiencies on the overall audit, no question about it, so keep this in mind. Call NDB today at 512-522-4943 (Austin), 214-272-0967 (Dallas), or at 713-331-5492 (Houston) to learn more about NDB’s SOC 2 services, or email us at This email address is being protected from spambots. You need JavaScript enabled to view it. to discuss your audit & compliance needs.

(3). Get Started with a Scoping & Readiness Assessment

One of the best activities to undertake for any SOC 2 report is a SOC 2 scoping & readiness assessment and for some vary obvious reasons. When performed correctly, a SOC 2 scoping & readiness assessment helps determine the actual audit scope, what items require remediation, what personal are to be involved in the audit, what third-parties are involved, and much more. Its’ an essential component of any SOC 2 audit process from beginning to end.

Continue reading
JUN
22

SOC 2 for Dummies – the A to Z Basics of SOC Reports & Audits

Looking for a SOC 2 for Dummies, well, if you’re new to the world of SOC 2 compliance, take note of the following points for gaining a greater understanding of what it really takes to get ready – and become – SOC 2 compliant.

Call NDB today at 512-522-4943 (Austin), 214-272-0967 (Dallas), or at 713-331-5492 (Houston) to learn more about NDB’s SOC 2 services, or email us at This email address is being protected from spambots. You need JavaScript enabled to view it. to discuss your audit & compliance needs.

JUN
21

Houston, TX SOC 2 Compliance Audits & Assessments | Fixed-Fee Auditing Services

NDB offers comprehensive SOC 2 compliance audits & assessments for Houston service organizations seeking to become SOC 2 Type 1 and/or SOC 2 Type 2 compliant. The regulatory compliance landscape has changed dramatically in recent years, with more and more companies requiring to undergo an annual SOC 2 audit.

When it comes to expertise, value, fixed-fees, and so much more, we are Texas’ leading provider of SOC 2 Type 1 and SOC 2 Type 2 services. Being just an auditor is not what our company is about – not at all – it’s about offering the very best SOC 2 services at the very best prices. We’ve helped hundreds of service organizations all throughout Houston – and Texas – in becoming, and staying, SOC 2 compliant, and we can help you also.

Texas’ Leading Provider of SOC 2 Audits - Austin, Dallas, Houston

SOC 2 Services offered for Houston, Texas businesses include the following:

SOC 2 Scoping & Readiness Assessments: Before Houston businesses can even begin to think about earning coveted SOC 2 compliance, it’s important to note that a SOC 2 Scoping & Readiness Assessment is essential on the front end. When performed correctly, a SOC 2 Scoping & Readiness assessment helps define scope, identify control gaps & weaknesses, and much more. It’s an essential part of any SOC 2 audit, and NDB offers such services at fixed fees.

SOC 2 Remediation Services: NDB offers a wide-range of remediation services for helping Houston businesses become – and stay – SOC 2 compliant. Along with offering industry leading policy templates for much-needed information security policies for SOC 2 compliance, we also offer technical and operational remediation. Specifically, we can help in identifying, sourcing, and implementing various security tools and solutions for SOC 2 compliance.

Continue reading
NOV
13

PCI DSS Compliance for Austin Merchants and Service Providers

Austin PCI DSS Compliance Services

NDB offfers numerous PCI DSS compliance services and solutions for Austin, TX merchants and service providers looking to become compliant with the Payment Card Industry Data Security Standards (PCI DSS) provisions.

If you’re an Austin business that stores, processes, and/or transmits cardholder data, you’ll need to be compliant with PCI. We can assist. We have years of experience helping Austin businesses become – and stay – PCI DSS compliant. We also offer fixed-fees for a wide-range of services and solutions for the PCI DSS industry. Call NDB today at 512-522-4943 (Austin), 214-272-0967 (Dallas), or at 713-331-5492 (Houston) to learn more about NDB’s PCI services, or email us at This email address is being protected from spambots. You need JavaScript enabled to view it. to discuss your PCI DSS compliance needs.

Services offered for PCI DSS compliance for Austin Businesses consist of the following:

PCI DSS Scoping & Readiness Assessments

Getting off on the right track in terms of PCI DSS compliance starts by performing a much-needed scoping assessment BEFORE you try and actually become compliant. After all, Austin merchants and service providers need to gain a strong understanding of project scope in terms of personnel, business systems, third-parties and more.

Additionally, areas that require remediation (both in terms of documentation and technical remediation) will also need to be identified and addressed. When performed correctly, a PCI DSS scoping & readiness assessment will save Austin merchants both time and money in the long run. Call NDB today at 512-522-4943 (Austin), 214-272-0967 (Dallas), or at 713-331-5492 (Houston) to learn more about NDB’s PCI services, or email us at This email address is being protected from spambots. You need JavaScript enabled to view it. to discuss your PCI DSS compliance needs.

Continue reading
DEC
30

Dallas, TX SOC 2 Auditors & Assessments | Fixed Fees

NDB offers industry leading SOC 2 Type 1 and SOC 2 Type 2 audits and assessment reports for Dallas, Texas businesses. With the continued growth of third-party service providers being used by businesses for handling a wide-range of activities, SOC 2 audits have been – and still are – the go-to assessment for these very third-parties. Tens of thousands of businesses all throughout the country have to undergo annual SOC 2 compliance, with a large number of them residing in the greater Dallas area. As a leading provider of security, governance, and compliance solutions, NDB offers fixed fees and superior services.

NDB has performed hundreds of SOC 2 Scoping & Readiness Assessments, so contact us today to learn more about our proven solutions for Houston service organizations. You can contact NDB today at 512-522-4943 (Austin), 214-272-0967 (Dallas), or at 713-331-5492 (Houston) to learn more about NDB’s SOC 2 services, or email us at This email address is being protected from spambots. You need JavaScript enabled to view it. to discuss your audit & compliance needs.

Specifically, we offer the following services and solutions to Dallas businesses relating to SOC 2 compliance:

SOC 2 Scoping & Readiness Assessments

Performing a SOC 2 Scoping & Readiness Assessment is one of the most important activities a business can do prior to commencing with an actual SOC 2 audit. Why? Because it’s important to gain a strong understanding of scoping & readiness issues relating to the following:

  • What business processes are to be included within the scope of the SOC 2 audit?
  • What relevant personnel and third-party organizations will be involved in the audit?
  • What gaps and control deficiencies have been identified that require remediation prior to the audit starting? Note: Gaps are typically found in two areas: 1. Documentation gaps in terms of policies and procedures and 2. Security gaps in terms of software tools and solutions that are missing and must be acquired.

SOC 2 Remediation

When it comes to remediation for SOC 2 audits, its generally a two-fold process. The first being documentation remediation, with the second being operational/security remediation. Let’s take a look at both and discuss them in more detail. Regarding documentation remediation, this requires service organizations to develop a wide-range of information security policies and procedures. Here’s just a small example of some of the documents that need to be developed:

Continue reading
JUN
19

Houston, TX SOC 2 Compliance Audits & Assessments - Fixed Fees

NDB offers industry leading SOC 2 compliance audits & assessments for Houston businesses looking to earn SOC 2 Type 1 and SOC 2 Type 2 compliance from an accredited Certified Public Accounting (CPA) firm. The regulatory compliance landscape has dramatically shifted in recent years, ultimately forcing businesses (i.e., service organizations) to undergo yearly SOC 2 audits.

NDB is Houston’s leading provider of SOC 2 Type 1 and SOC 2 Type 2 services, having assisted hundreds of service organizations all throughout Houston – and Texas – in becoming, and maintaining SOC 2 compliance.

NDB offers the following SOC 2 services for Houston Businesses

SOC 2 Scoping & Readiness Assessments: Beginning your audit the right way means performing a SOC 2 Scoping & Readiness assessment at the front end of the audit. The benefits of such an assessment are noticeable indeed; a clearer understanding of the overall audit process and scope, what gaps and deficiencies need to be corrected, what milestones and related deliverables need to be agreed on, and more. Without performing a SOC 2 Scoping & Readiness assessment, you’re jeopardizing the overall success of the audit, so please keep this in mind.

NDB has performed hundreds of SOC 2 Scoping & Readiness Assessments, so contact us today to learn more about our proven solutions for Houston service organizations. You can contact NDB today at 512-522-4943 (Austin), 214-272-0967 (Dallas), or at 713-331-5492 (Houston) or email Christopher Nickell, CPA, at This email address is being protected from spambots. You need JavaScript enabled to view it. to receive a fixed-fee quote.

SOC 2 Remediation: Remediation comes in two (2) main categories in terms of SOC 2 compliance. There’s documentation remediation (more on that in a bit!), and then there’s technical/security documentation remediation. Both can take quite a bit of time to complete, but NDB can also assist with both areas of remediation.

Continue reading
JUN
18

Dallas TX SOC 2 Compliance Audits & Assessments | Type 1 & Type 2 Auditors

NDB offers industry leading SOC 2 compliance audits & assessments for Dallas – Fort Worth service organizations seeking SOC 2 Type 1 and/or SOC 2 Type 2 compliance. The regulatory compliance landscape has changed in a big way in recent years, ultimately forcing businesses (i.e., service organizations) to undergo yearly SOC 2 audits.

When it comes to expertise, value, fixed-fees, and so much more, we are Dallas’ leading provider of SOC 2 Type 1 and SOC 2 Type 2 services. Being just an auditor is not what NDB is all about – not at all – it’s about offering the very best SOC 2 audit solutions and services at fixed fees. NDB has assisted hundreds of service organizations all throughout Dallas – and Texas – in becoming, and maintaining SOC 2 compliance.

NDB offers the following SOC 2 services to Dallas Businesses

SOC 2 Scoping & Readiness Assessments: Beginning a SOC 2 on the right track means performing a much-needed SOC 2 Scoping & Readiness Assessment for Dallas, Texas service organizations. It’s easy to bypass such a step at first-glance, but it’s not recommended. When properly performed, a SOC 2 Scoping & Readiness Assessment from NDB helps you understand the overall scope of an audit, gaps and deficiencies that require remediation, along with putting in place a plan-of-action for correcting such measures.

NDB has performed hundreds of SOC 2 Scoping & Readiness Assessments, so contact us today to learn more about our proven services and solutions for Dallas service organizations. Contact us today at 512-522-4943 (Austin), 214-272-0967 (Dallas), or at 713-331-5492 (Houston) to learn more about NDB’s SOC 2 services, or email us at This email address is being protected from spambots. You need JavaScript enabled to view it. to discuss your audit & compliance needs.

SOC 2 Remediation: Diving into a SOC 2 audit without performing a SOC 2 Scoping & Readiness Assessment – or any remediation – is not recommended at all. In terms of remediation, there are two main areas; documentation remediation (more on that in a minute!) and technical/security remediation. Regarding documentation, just know that information security policies and procedures are critically important for SOC 2 audits.

Continue reading
OCT
06

SOC 2 Type 1 Guidelines for Texas Service Organizations (Austin, Dallas, Houston)

The SOC 2 Type 1 guidelines, which have been published by the American Institute of Certified Public Accountants (AICPA), consist of the AT 101 professional standard, along with the inclusion of the following five (5) Trust Services Principles (TSP):

  • Security
  • Availability
  • Processing Integrity
  • Confidentiality
  • Privacy

The Importance of a SOC 2 Scoping & Readiness Assessment

Want to save time, money, while reducing cost overruns and headaches when it comes to SOC 2 compliance? If so, and we’re sure you do, then begin the process with a much-needed SOC 2 scoping & readiness assessment. Benefits of such an assessment include the following:

  • Effectively identifies audit scope in terms of business processes to be examined, which would include physical locations to assess, personal involved in the audit, relevant third-party providers, and more. 
  • Assesses current internal controls in terms of policies, procedures, and processes, and what gaps and deficiencies exist that require remediation prior to the commencement of the actual SOC 2 audit.
  • Helps ensure transparency for the entire audit process, while also putting in place a roadmap for auditing success.

Additional points worth noting about NDB's industry leading SOC 2 Type 1 guidelines are the following:

  • SOC 2 Type 1 assessments are done for a point in time, whereas SOC 2 Type 2 assessments are conducted over an agreed upon time period.
  • Becoming SOC 2 Type 1 compliance means putting in place numerous information security policies and procedures, for which Texas Compliance, LLC offers a complimentary SOC 2 Policy Packet with all the documentation needed.
  • SOC 2 Type 1 guidelines call for the use of the five (5) Trust Services Principles.
  • SOC 2 Type 1 guidelines require management of the service organization to develop a written statement of assertion and provide a description of its “system”.

Other Important Considerations for SOC 2 Type 1 Reports

Policies and Procedures are Key to Compliance: That’s right, having well-written information security policies and procedures are a big part of becoming – and staying – SOC 2 compliant. In fact, many Texas businesses quickly find that developing such documentation is often the most time-consuming and taxing aspect of the entire audit!

For that reason alone, we offer industry leading InfoSec policy templates for helping Texas businesses save thousands of dollars and dozens of operational hours on critical policy development.  It’s just another reason why so many firms in Texas look to NDB for SOC 2 audit guidance and expertise.

Continue reading
JUN
19

SSAE 18 SOC 1 and SOC 2 Compliance Best Practices for Texas Businesses

Texas businesses in Houston, Austin, Dallas – and all other surrounding locations – are being hammered with growing regulatory compliance audits, particularly SSAE 18 SOC 1 and SOC audits. They can be expensive, time-consuming, and operationally challenging – no question about it – so now’s the time to learn essential best practices for helping slay the regulatory compliance dragon once and for all. After all, you’ve got a business to run, so turn to the Texas compliance experts today at NDB for learning important points about today’s demanding regulatory compliance challenges.

Call NDB today at 512-522-4943 (Austin), 214-272-0967 (Dallas), or at 713-331-5492 (Houston) to learn more about NDB’s SOC 2 services, or email us at This email address is being protected from spambots. You need JavaScript enabled to view it. to discuss your compliance needs.

Texas’ Leading Provider of Fixed-Fee SOC Audits – Learn More

As for SSAE 18 SOC 1 and SOC 2 compliance, thousands of businesses throughout North America are performing these annual compliance audits, many of them in an efficient and cost-effective manner, thanks to the learning important information regarding audit planning, preparation, and execution.  Here’s what you need to know about SOC 1 and SOC 2 audits compliments of the Texas compliance experts at NDB:

  1. Find a Firm that Provides Fixed-Fees:
  2. Begin with a Scoping & Readiness Assessment:
  3. Understand the Importance of Technical Remediation:
  4. Be Mindful of Policies and Procedures:
JUN
19

SOC 2 Audits Dallas, TX | Fixed Fees | Type 1 | Type 2

SOC 2 audits for Dallas, TX businesses are offered by NDB, Texas’ leading provider of regulatory compliance assessments and consulting services.  From Bridge City to El Paso, service providers all throughout the Lone Star State have relied on the expertise and professionalism of NDB, so contact us today to discuss your SOC 2 audits for Dallas businesses – or any other location in Texas. 

SOC 2 Audits for Dallas, TX Businesses | Fixed Fees 

SOC 2 audits are becoming increasingly mandated in today’s information security age – and for good reason – as outsourcing and the sheer growth of technology continues to dominate the business landscape. It means that now is the time to get serious about one’s overall information security posture, and it starts by contacting the SOC 2 experts today at NDB.  One of the distinct advantages we possess over any other compliance firm is the ability to offer our clients comprehensive SOC 2 supporting documentation, such as the following:

  • Information security policies and procedures templates for SOC 2 compliance.
  • Risk assessment programs as mandated for SOC 2 reporting.
  • Provisioning and hardening checklists for ensuring all in-scope systems are configured and deployed in accordance with information security best practices.
  • In-depth security awareness and training materials, such as manuals and PowerPoint presentations (PPT) – all to be used for effectively ensuring that employees are properly trained with respect to information security issues, threats, challenges, and best practices.

Obtain SOC 2 Policies and Procedures with our SOC 2 Policy Packet

As for the NDB difference and what separates us from other CPA firms offering SOC 2 audits for Dallas, TX businesses? Simple – we also offer a comprehensive SOC 2 Policy Packet filled with hundreds of pages of information security and business specific policy templates, forms, checklists, and so much more.  The SOC 2 Policy Packet saves businesses thousands of dollars and hundreds of man-hours when it comes to SOC 2 compliance – no question about it. 

Why spend needless hours and thousands of dollars authoring compliance policy documentation when the SOC 2 Policy Packet from NDNB is available as part of our fixed fee SOC 2 audit services for Dallas, TX businesses.  Call NDB today at 512-522-4943 (Austin), 214-272-0967 (Dallas), or at 713-331-5492 (Houston) to learn more about NDB’s SOC 2 services, or email us at This email address is being protected from spambots. You need JavaScript enabled to view it. to discuss your compliance needs.

SOC 2 Audits for Dallas, TX Businesses | Fixed Fees

Businesses in Texas are being hit hard with increasing regulatory compliance burdens, ranging from PCI DSS assessment to SSAE 18 SOC 1 and SOC 2 assessments. The choice for helping Lone Star businesses is NDNB, providers of high-quality, industry leading regulatory compliance services. Call Christopher Nickell today at 1-800-277-5415, ext. 706 to learn more. 

Continue reading
SEP
08

PCI Compliance Overview for Austin Merchants & Small Businesses

Austin-TX PCI DSS Compliance Overview for Austin Merchants & Small Businesses

Call NDB today at 512-522-4943 (Austin), 214-272-0967 (Dallas), or at 713-331-5492 (Houston) to learn more about NDB’s PCI DSS services, or email us at This email address is being protected from spambots. You need JavaScript enabled to view it. to discuss your PCI DSS compliance needs whe searching for high-quality, fixed fee compliance and certification services for Austin, TX businesses. As one of North America’s longest licensed PCI-QSA firms, NDB, and its affiliated entities, has built an efficient PCI DSS compliance model consisting of lockstep phases for rapid and complete compliance.

While most merchants and service providers in Austin are spending hundreds of hours and tens of thousands of dollars on annual PCI DSS compliance, NDB's clients are building an efficient process that saves both time and money. From essential policy templates to Level 1 onsite assessments – and more – NDB offers a wealth of cost-effective, fixed-fee solutions for PCI DSS compliance.

PCI DSS QSA Compliance & Certification Austin, TX | Fixed Fees

The Payment Card Industry Data Security Standards (PCI DSS) are an important component for ensuring cardholder data is secure when being stored, processed and/or transmitted, so talk to the industry leaders today.  Call NDB today at 512-522-4943 (Austin), 214-272-0967 (Dallas), or at 713-331-5492 (Houston) to learn more about NDB’s PCI DSS services, or email us at This email address is being protected from spambots. You need JavaScript enabled to view it. to discuss your PCI DSS compliance needs

NDB offers the following PCI DSS services to merchants and service providers throughout the Austin, TX area:

1. PCI DSS Readiness Assessments: One of the most important initiatives any merchant or service provider in Austin, TX can undertake regarding PCI DSS compliance is performing a brief, yet comprehensive readiness assessment for helping define audit boundaries, business functions, personnel involved, and other important scope considerations. PCI DSS compliance can be complex and time-consuming – all the more reason for performing a readiness assessment – which NDB offers at fixed-fee pricing.

Along with offering PCI scoping & readiness assessments for Austin businesses, we also provide comprehensive services for helping both merchants and service providers complete the PCI DSS Self-Assessment Questionnaires (SAQ). Many businesses find the SAQs to be complex and challenging, often requiring assistance from an expert consultant.

Continue reading
OCT
13

SOC 2 Type 1 & Type 2 Audit Reports – Austin, Dallas, Houston – Fixed Fees

NDB is Texas’ premier provider of SOC 2 Type 1 and SOC 2 Type 2 audits, offering exceptional services and fixed-fee pricing for service providers in Austin, Dallas, Houston, and San Antonio.

We’ve performed hundreds of SOC 2 audits over the years, effectively establishing ourselves as a true household name throughout Texas, and beyond.

With a challenging business world that’s become even more competitive by the day, businesses need to meet demanding compliance mandates from their customers – such as SOC 2 reporting – but also find ways for ensuring an efficient and cost-effective audit process is maintained.

Continue reading
JUN
17

Austin, Texas SOC 2 Auditors – Fixed Fees, Extensive Cloud Expertise

NDB’s service offering include comprehensive SOC 2 Type 1 and SOC 2 Type 2 audit assessments and reports for Austin, Texas businesses. Additionally, many of our clients are in the cloud – Amazon AWS, Microsoft Azure, and Google GCP – and we have extensive compliance experience with the Big Three cloud players. And if you’re not in the cloud, no problem, as we’ve successfully performed over a 1,000 compliance audits since 2006 in a wide range of industries and sectors. We know the SOC 2 auditing framework inside and out, and we’re ready to assist you today.

Contact us today at 512-522-4943 (Austin), 214-272-0967 (Dallas), or at 713-331-5492 (Houston) to learn more about NDB’s services, or email Christopher Nickell today at This email address is being protected from spambots. You need JavaScript enabled to view it. to receive a fixed-fee quote.

We offer high-quality, fixed-fee audit solutions, but also a wide-range of additional services for your growing compliance needs. When it comes to the leaders in regulatory compliance for the Lone Star State, talk to the experts at NDB.

7 Important Things to Know about SOC 2 compliance

1. Start with a SOC 2 Scoping & Readiness Assessment. It’s important to gain a strong understanding of all facets of a SOC 2 audit – specifically – the following:

• What business processes/functions are going to be assessed for the actual audit?
• What gaps and deficiencies need to be corrected prior to the commencement of the audit?
• What internal personnel are going to be involved in the audit in terms of working with auditors?
• What external, third-party entities are going to be included in the scope of the audit?
• What is the timeline and overall expectations for completing all phases of the audit – specifically – from beginning with a SOC 2 Scoping & Readiness Assessment to the issuance of the final SOC 2 report from a well-qualified CPA firm?

Continue reading
OCT
20

SSAE 18 SOC 1 Audit Reports Introduction and Overview for Texas Services Organizations

If you as a service organization in Texas are working towards becoming compliant with the SSAE 18 assurance standard, then it's important to understand all aspects of SSAE no. 18 audits – what they are, what do they include, and what they're designed to do. SSAE, which stands for Statement on Standards for Attestation Engagements, is a broad umbrella of standards contained within a report – whether Type 1 or Type 2, about a given organization's reporting standards and controls.

With so many letters and numbers, however, the landscape of SSAE 18 audits can easily – and problematically – become a minefield. Luckily, once you're over the initial hump of learning, things get a little simpler. So, let's start with the basics: what exactly does an SSAE 18 audit entail?

AICPA: Their Role in SSAE 18 SOC 1 Audits

The AICPA, for starters, refers to the American Institute of Certified Public Accounts. They're the ones who have set up SOC – the System and Organization Controls – the reporting framework we're working with, the platform that essentially replaced the aging and antiquated SAS 70 standard. As of June 15, 2011, the professionally mandated form of doing that reporting for SOC 1 reports is by using the SSAE no. 16 audit procedures. But that was replaced also, and now we’re onto SSAE 18.

Continue reading
OCT
09

SSAE 18 SOC 1 and SOC 2 Compliance Best Practices for Texas Businesses

Texas businesses in Houston, Austin, Dallas – and all other surrounding locations – are being hammered with growing regulatory compliance audits, particularly SSAE 18 SOC 1 and SOC 2 audits. They can be expensive, time-consuming, and operationally challenging – no question about it – so now’s the time to learn essential best practices for helping slay the regulatory compliance dragon once and for all. After all, you’ve got a business to run, so turn to the Texas compliance experts today at Texas Compliance, LLC for learning important points about today’s demanding regulatory compliance challenges.

Texas’ Leading Provider of Fixed-Fee SOC Audits – Learn More

As for SSAE 18 SOC 1 and SOC 2 compliance, thousands of businesses throughout North America are performing these annual compliance audits, many of them in an efficient and cost-effective manner, thanks to learning important information regarding audit planning, preparation, and execution.  Here’s what you need to know about SOC 1 and SOC 2 audits, compliments of the Texas compliance experts at Texas Compliance, LLC

1. Find a Firm that Provides Fixed-Fees:  Not only do you want to find a firm that offers fixed-fees, you also want to have a multi-year engagement for ensuring a consistent and efficient audit process from year to year. Changing auditors every year results in inefficiencies that often create additional costs for the overall audit.  Texas Compliance, LLC offers fixed-fees for all SOC 2 engagements – it’s been our standard pricing model for years.

2. Begin with a Scoping & Readiness Assessment: Any type of compliance mandate – and especially SOC 1 and SOC 2 assessments – need to begin with a comprehensive scoping & readiness assessment, and for some obvious reasons.  First and foremost, service organizations need to identify and confirm audit scope in terms of business processes, personnel involved, physical locations, and what relevant third-parties are considered part of the audit. Next, it’s highly essential to identify all gaps and control weaknesses that require remediation.

Continue reading


Texas' Leading Accounting & Compliance Firm

Be confident in your regulation and compliance and get back to growing business.
With decades of experience, this is a cost-effective way to stay compliant with ever-changing regulations.



Helping trusted names with compliance and regulations