Get audited rapidly for SOC 2, HIPAA, or ISO in GRC of choice


Statement of Work

Our Sprint plan is designed to help you get your audit report rapidly for SOC 2, HIPAA, or ISO 27001 in your GRC of choice. Below are estimated timelines depending on your compliance framework along with a comprehensive Statement of Work.


Our Sprint plan is designed to help you get your audit report rapidly for SOC 2, HIPAA, or ISO 27001 in your GRC of choice. We will be available and responsive to questions pertaining to strategic level decisions, educating your team on standard practice within the compliance world (specifically related to companies just like you), and generally helping to direct the compliance goals of the organization.


You will be assigned a Security Advisor who will be available 8am - 5pm in their local time zone, Monday through Friday, except on bank holidays, company offsites, and company breaks, all of which will be communicated prior. We recognize that security and compliance are 24/7 priorities and are best able to exceed your expectations when we invest in our workforce's Learning & Development and dedicated time to recharge.

You will receive weekly status updates that include what was done, what's next, and whether your initiatives are on schedule.

For straightforward questions (e.g. list of potential vendors) asked before 3pm in your account manager's timezone, you can expect answers the same day.

For more complex questions (e.g. policy changes) asked before 3pm, you can expect a response the same day indicating an estimated timeline for an answer or completion.

While account teams work with multiple clients simultaneously, we maintain an industry-leading ratio to ensure that we accelerate your security and compliance programs. We are an award-winning firm because we have helped 200+ organizations get audit-ready ahead of schedule.


One of the most frustrating aspects of interacting with consulting firms is that they largely only know how to use their own in-house tools, and none of those tools are collaborative. We went the opposite approach and embraced the tools that our customers are familiar with, so that we build an experience where Eden truly feels like a part of your team. Some of those tools include:

We create a Slack Connect channel with all of our customers so that continuous communication can be established

Our team tracks tasks, milestones, and deliverables from our customized portal and we also grant your team access for continuous visibility.

We’ll share policy documents for your review and store any key compliance documentation or reports.

Fellow is our source of truth for check-ins, allowing us to create agendas for every meeting and take collaborative notes during the meeting.