Encryption enforcement (at rest & in transit)
Comprehensive Compliance Solutions for Canadian Standards
Compliance Offerings for Canada Protected B Medium Medium
Iron Fort offers focused, high-impact reports to help you surface hidden ITSG-33, HIPAA, ISO27001 and SOC-2 risks, improve audit readiness, and bring vendor and internally manged systems up-to-code. Whether you're managing cloud infrastructure, policies, or third-party relationships - we give you the clarity and direction you need to act.
Vulnerability Assessment Report
Cloud Safeguard Scan for AWS, Azure, and GCP
We analyze your cloud environment to identify gaps in required HIPAA technical safeguards—without installing agents or accessing PHI.
Our automated scan reviews:
-
-
Access controls & identity configuration
-
MFA status & IAM policies
-
Audit logging setup
-
Backup & recovery configuration
Delivered as a clear, actionable PDF with risk levels and remediation guidance
Ideal for internal audits, OCR prep, or new vendor onboarding.
Get a technical compliance snapshot across your cloud footprint—fast
Canada Protected B Gap Analysis
Comprehensive Protected B Compliance Assessment
Iron Fort Solutions Inc. offers the Canada Protected B Gap Analysis service to provide a comprehensive assessment of an organization’s infrastructure or application environment against the Treasury Board of Canada Secretariat’s ITSG-33 security control framework for Protected B, Medium Integrity, and Medium Availability (PBMM). Through a structured review, IronFort Solutions Inc. identifies control deficiencies, evaluates associated risks, and delivers a prioritized remediation roadmap. This service enables organizations to clearly understand the actions required to achieve compliance with Government of Canada security requirements and to ensure readiness for operating within Protected B environments.
Deliverables
-
Gap Analysis Report - A detailed document outlining areas of non-compliance against ITSG-33 PBMM controls.
-
Risk Assessment Summary - Identification and prioritization of risks associated with observed gaps.
-
Remediation Roadmap - A structured plan with recommended actions, timelines, and responsibilities to address deficiencies.
-
Compliance Control Matrix - A mapping of assessed controls, current status, and required remediation steps for Protected B compliance.
-
Executive Briefing - A summary presentation of findings and recommendations tailored for leadership and stakeholders.
SOC 2 Gap Analysis
Prepare for SOC 2 Compliance
Iron Fort Solutions Inc. offers the SOC 2 Gap Analysis service to assist organizations in evaluating their infrastructure, applications, and operational processes against the American Institute of Certified Public Accountants (AICPA) Trust Services Criteria. Through a structured review, Iron Fort Solutions Inc. identifies control deficiencies across the five trust principles—Security, Availability, Processing Integrity, Confidentiality, and Privacy—depending on the scope selected. We provide a prioritized remediation roadmap that enables organizations to address compliance gaps, mitigate risks, and prepare effectively for a SOC 2 audit. This service ensures organizations are positioned to demonstrate adherence to industry-recognized standards for data protection and operational excellence.
Deliverables
-
Gap Analysis Report - A detailed assessment identifying areas of non-compliance against the selected SOC 2 Trust Services Criteria.
-
Risk Assessment Summary - Documentation of risks and impacts associated with identified gaps.
-
Remediation Roadmap - A prioritized plan of recommended corrective actions, timelines, and ownership.
-
SOC 2 Control Mapping Matrix - A structured view of assessed controls, current maturity, and remediation requirements.
-
Executive Briefing - A leadership-focused summary of findings, key risks, and next steps to support decision-making.
Get a quote based on your environment
Not Sure Where to Start?
Start with one offering—or bundle all three.
Iron Fort can help you build a stronger HIPAA program, one risk domain at a time.