Churchill and Harriman

I also want to compliment you personally for the way you have conducted your business dealings with us. This letter is written to make certain you know how high a value we place on our relationship with you. I consider you a trusted business advisor who takes a deep and personal interest in our success, and I always appreciate your honesty and integrity. In every situation you deliver what you say you will, on schedule, and at the budget specified. Most of all, you have a great work ethic, and adhere to the old fashioned values of actually doing what you have committed to do. This type of relationship and this kind of service seem to be increasingly hard to find in this day and age. I am happy to endorse Churchill & Harriman to any organization interested in enjoying a close relationship with a risk mitigation consultancy that I consider an important part of my daily business. I can truly state, without hesitation, that Churchill & Harriman provides the highest degree of honesty, integrity and ethics, and has become a vital component to our success.

Churchill & Harriman have been consulting to us on enterprise-wide business risk mitigation matters for seven years now. We continue to receive the same dedicated service and support from C&H that we received from day one. Few business partners have provided such validated ongoing commitment to customer satisfaction.

We chose C&H several years ago to contribute to the ever-increasing maturity of our enterprise risk management program. Since that time, C&H has consulted to [client] on a multitude of projects, and executed several internal risk assessments and external risk assessments, always exceeding [client’s] expectations. C&H is the thought leader on the employment of controls, and international standards including ISO 27001. Their risk assessment and vendor management competencies are unparalleled. C&H has earned my endorsement to any firm requiring enterprise risk management expertise.

There are several qualities which set Churchill & Harriman apart from other consulting firms that have worked for me over my career.  These include great depth of professional expertise and experience; an undying commitment to fulfill the client’s needs; a focused professionalism in ensuring that the client always receives accurate, well-written, timely, and comprehensive work products; a willingness to be candid while also being respectful with the client, to ensure his or her best interests are always served even when uncomfortable truths need to be confronted; and a personal and professional integrity, the likes of which I have rarely seen outside of my many years of service in the military.  Churchill & Harriman was always more than a consultancy; they were a true business partner.

Churchill & Harriman will play a vital role for our new CYBERFIT utility by delivering industry best third- party risk assessment services for the Health ISAC”, said Denise Anderson, President of Health ISAC. “Our members will directly benefit from this service and we welcome C&H’s expertise and input in helping solidify their security posture.

Churchill & Harriman has been consulting to us on enterprise-wide business risk mitigation matters for seven years now. We continue to receive the same dedicated service and support from C&H that we received from day one. Few business partners have provided such validated ongoing commitment to customer satisfaction.

Through its membership and contributions to the Shared Assessments Program, Churchill & Harriman has demonstrated its leadership in global vendor management innovation. The Shared Assessments tools contribute to the differentiation of C&H’s program, maximizing risk assessment cost optimization while raising the bar on global information security and privacy protection.  

It is even more impressive that this has been done during a period of unprecedented change within the information technology organization at [client]. It is a true indication of your company’s professionalism that you have been able to maintain flexibility in light of these change initiatives and at the same time continue to deliver great value to the entire organization. Most of all, I deeply appreciate the substantive results C&H has produced for my colleagues and me. I recognize this is founded on the open and honest lines of communication I have with you and the C&H team. You have earned a meaningful level of trust with me, and I look forward to working with C&H to make a value added difference to [client] in the years to come.    

Churchill & Harriman has been a long-time member of the Shared Assessments program, actively contributing to working groups, refining program elements, often speaking at our Summit and on webinars, and executing flawlessly for their customers. Ken Peterson has served on the Shared Assessments Advisory Board and Steering Committee. C&H and Ken have added much to the discussion and strategy on the maturation and future of Third-Party Risk Management at the global level. C&H is known for their integrity and for the efficacy of their work; their earned reputation in the industry is excellent. It is also my pleasure to call Ken a friend!

It is with much gratitude that I extend this letter to you and the C&H team for an outstanding job on the above contract. The professionalism and dedication of your team, coupled with a deep understanding of information security architecture, enabled a most productive collaborative effort, which resulted in successful completion of all deliverables. These deliverables allowed the (client) to accomplish our objectives for this engagement, and to better position the (client) to ensure the security of our information environment.