Churchill and Harriman

Churchill & Harriman has provided exceptional support and service across a number of highly visible risk management activities across the globe. C&H has exceeded my expectations and done so on time and under budget, without exception. C&H conducts themselves with the highest levels of demonstrated competency and integrity on my behalf, recognizing required interdependencies and challenges while working on our critical global initiatives. Most of all, I deeply appreciate the substantive results C&H has produced for my colleagues and me.

I also want to compliment you personally for the way you have conducted your business dealings with us. This letter is written to make certain you know how high a value we place on our relationship with you. I consider you a trusted business advisor who takes a deep and personal interest in our success, and I always appreciate your honesty and integrity. In every situation you deliver what you say you will, on schedule, and at the budget specified. Most of all, you have a great work ethic, and adhere to the old fashioned values of actually doing what you have committed to do. This type of relationship and this kind of service seem to be increasingly hard to find in this day and age. I am happy to endorse Churchill & Harriman to any organization interested in enjoying a close relationship with a risk mitigation consultancy that I consider an important part of my daily business. I can truly state, without hesitation, that Churchill & Harriman provides the highest degree of honesty, integrity and ethics, and has become a vital component to our success.

It is with much gratitude that I extend this letter to you and the C&H team for an outstanding job on the above contract. The professionalism and dedication of your team, coupled with a deep understanding of information security architecture, enabled a most productive collaborative effort, which resulted in successful completion of all deliverables. These deliverables allowed the (client) to accomplish our objectives for this engagement, and to better position the (client) to ensure the security of our information environment.

There are several qualities which set Churchill & Harriman apart from other consulting firms that have worked for me over my career.  These include great depth of professional expertise and experience; an undying commitment to fulfill the client’s needs; a focused professionalism in ensuring that the client always receives accurate, well-written, timely, and comprehensive work products; a willingness to be candid while also being respectful with the client, to ensure his or her best interests are always served even when uncomfortable truths need to be confronted; and a personal and professional integrity, the likes of which I have rarely seen outside of my many years of service in the military.  Churchill & Harriman was always more than a consultancy; they were a true business partner.

Churchill & Harriman will play a vital role for our new CYBERFIT utility by delivering industry best third- party risk assessment services for the NH-ISAC”, said Denise Anderson, President of NH-ISAC. “Our members will directly benefit from this service and we welcome C&H’s expertise and input in helping solidify their security posture.

Our sincere thanks for everything the Churchill & Harriman team has done to help make us world class.

It is even more impressive that this has been done during a period of unprecedented change within the information technology organization at [client]. It is a true indication of your company’s professionalism that you have been able to maintain flexibility in light of these change initiatives and at the same time continue to deliver great value to the entire organization. Most of all, I deeply appreciate the substantive results C&H has produced for my colleagues and me. I recognize this is founded on the open and honest lines of communication I have with you and the C&H team. You have earned a meaningful level of trust with me, and I look forward to working with C&H to make a value added difference to [client] in the years to come.    

It is with pleasure that I compliment and endorse the efforts of Churchill & Harriman on behalf of [client] in connection with [client’s] Service Provider Risk Management Program. On-site risk assessments of selected service providers are a critical component of [client’s] program, itself essential for demonstrating [client’s] satisfaction, in part, of the rigorous risk management requirements established by the Federal Financial Institutions Examination Council (FFIEC). Churchill & Harriman stands side by side with [client], sharing our success in these objectives. Churchill & Harriman has consistently over-performed, delivering services beyond the contractually required minimum. Moreover, Churchill & Harriman has developed and implemented a repeatable, global, end-to-end risk assessment methodology that can be replicated and scaled to meet [client’s] needs.

We chose C&H several years ago to contribute to the ever-increasing maturity of our enterprise risk management program. Since that time, C&H has consulted to [client] on a multitude of projects, and executed several internal risk assessments and external risk assessments, always exceeding [client’s] expectations. C&H is the thought leader on the employment of controls, and international standards including ISO 27001. Their risk assessment and vendor management competencies are unparalleled. C&H has earned my endorsement to any firm requiring enterprise risk management expertise.

Through its membership and contributions to the Shared Assessments Program, Churchill & Harriman has demonstrated its leadership in global vendor management innovation. The Shared Assessments tools contribute to the differentiation of C&H’s program, maximizing risk assessment cost optimization while raising the bar on global information security and privacy protection.