Over 20 years of experience delivering transformative results.
Kuma is a global privacy and security consulting company. We pride ourselves on bringing progressive best practices for optimal success to every client, staffing each project with senior-level resources, and delivering influential thought leadership through strong industry relationships and quality partnerships.
Kuma has successfully delivered projects across numerous markets, including federal, state and local, commercial, and international sectors offering a wide range of services grounded in the governmental security and privacy standards of our client’s jurisdiction.
Our Services test
Strategy and Program Development
An Important First Step in Transitioning Your Organization to a World Class Privacy and Security Model
Kuma has the credentials and expertise to help you develop a best of breed privacy and security program and make a deliberate commitment to security and privacy excellence.
Privacy, Security and Identity
Better Decisions Means Better Outcomes
Kuma will work with you to conduct privacy risk assessments for your organization, programs, and technological solutions and provide insight into privacy implications for individuals and the organization, offering the opportunity to make risk-informed decisions.
Incident Response Management
Don’t Wait Until Data Gets into the Wrong Hands to Act
Kuma offers unparalleled expertise to guide an organization through a methodical organizational plan for the prevention of, planning for, and readiness to react to an unauthorized acquisition of data that compromises the security, confidentiality or integrity of personal information collected, processed, stored, transferred or disposed of by the organization.
Training and Awareness
A Major Determinant of Success for Your Security and Privacy Program
Developing a sound security and privacy program is a crucial step in establishing a culture of privacy and mitigating harmful and costly risks. Without company-wide training and awareness, you run the risk of low levels of stakeholder adoption and insufficient understanding of its importance. We’ve taken our personalized approach to security and privacy risk management and applied it to trainings, offering easy-to-implement training packages for your team. Fully customized to your needs and the issues of your industry, our training provides lasting education and a better value for your money than regular e-learning. Visit the Training page to sign up.
Starting Strong: How to Best Embark on Your Cybersecurity Journey
Most companies struggle when trying to identify a way to begin their cyber security efforts. Do we start with a tool? Or do we increase security expertise across the team? Finding the right way to begin our journey towards security can be intimidating at first, but once broken down into smaller steps, we begin to see that it’s far more approachable than we thought.
Understanding the Improving Digital Identity Act of 2022
On July 15, 2022, Senators Kyrsten Sinema (D-AZ) and Senator Cynthia Lummis (R- WY) introduced the long-awaited Senate version of The Improving Digital Identity Act. The House version was introduced in June 2021 by Representative Bill Foster (D-IL) and Representative John Katko (R-NY). Bipartisan sister bills in both chambers of Congress is newsworthy itself in 2022, but what it can do for everyday Americans is very promising.
3 Simple Steps to Building a Strong Security Foundation on a Budget
Got security? Does this question have you looking over your shoulder out of an initial sense of concern or uncertainty? For example, do you know if you have 24x7 logging and monitoring? Do you know if users from other countries can access your systems? Is it ok if your developer goes on vacation and logs in? Do you know if you have database or file level encryption? What would happen if your Director of Engineering fell for a phishing scam and a fraudster has their password?