ShorePoint, LLC

In 2005, SailPoint's founders recognized a critical gap in enterprise security: as organizations adopted more applications and digital services, managing who had access to what became exponentially complex. Traditional access management approaches couldn't keep pace with the scale of modern enterprises. So they created SailPoint - a platform designed to secure and govern every identity, whether human, machine, or now AI, with unmatched intelligence and automation. For over 20 years, SailPoint has empowered the world's largest organizations to put identity at the center of security and IT. The company's Identity Security Cloud manages millions of identities and billions of entitlements, continuously assessing risk, context, and behavior across all enterprise identities. Trusted by half of the Fortune 500 and serving 2,000+ customers across financial services, healthcare, government, and other highly regulated industries, SailPoint has become the leader in identity security. The company continues to innovate, expanding its platform to address emerging challenges like machine identity security, data access security, and AI-powered identity governance.

DecisionPoint Corporation is a Service-Disabled Veteran-Owned Small Business (SDVOSB) that delivers cutting-edge IT, cybersecurity, and automation solutions to modernize, secure, and optimize mission-critical government operations. Founded in 2011, the company has established itself as an innovation thought leader in the Defense and Federal communities, specializing in transformative IT support services that empower government agencies to enhance delivery of their critical mission requirements. DecisionPoint's expertise spans cloud adoption, cybersecurity, intelligent automation, and IT modernization. The company operates four Centers of Excellence built to deliver world-class solutions by bringing skilled people, mature processes, and smart technologies to federal customers. Serving agencies across the Department of Defense, Department of Homeland Security, Department of Health and Human Services, and numerous other federal entities, DecisionPoint has secured significant contracts including an $83M USAF Defensive Cyber contract and a $19M US Army SDDC IT Support Services contract. The company has been recognized as an Inc. 5000 honoree, ranking No. 304 in 2020 and No. 164 in 2019, demonstrating consistent growth and impact in the government services sector.

At GuidePoint Security, we live and breathe cybersecurity every day. Founded in 2011, we've grown from a startup to over 1,200 employees strong, serving more than 6,200 customers including Fortune 500 companies and U.S. government agencies. Our team of practitioners includes veterans from the Department of Defense, Intelligence Communities, and leading enterprises who bring real-world experience to every engagement. We believe in taking a three-tiered, holistic approach to evaluating security posture and ecosystems - because effective cybersecurity isn't about point solutions, it's about understanding how everything connects. We're not just consultants - we're practitioners who have been in the trenches. Our culture emphasizes continuous learning, collaboration, and staying ahead of evolving threats. From our Security Operations Center to our implementation teams, we prioritize hands-on expertise and practical solutions over theoretical frameworks. We invest heavily in our people through GPSU, our paid training and development program, because we know our strength lies in our team's capabilities. As a rapidly growing, privately-held company, we've maintained the agility of a startup while building the depth and scale of an enterprise cybersecurity leader.

Brett Fisher Group, founded in 2008, emerged from a simple yet powerful insight: great talent is the fuel that transforms ambitious ideas into reality. What started as a vision to bridge the gap between exceptional professionals and forward-thinking companies has evolved into a boutique executive search firm that specializes in finding and placing top-tier talent in sales and marketing leadership roles across the medical device and med tech industries. Based in Thousand Oaks, California, the firm has spent over 15 years building deep relationships with both passive candidates and innovative companies throughout Southern California and across North America. The company's approach is rooted in a commitment to understanding both sides of the hiring equation. They recognize that their clients - typically companies with revenues between $5M and $150M - are innovative, disruptive organizations translating bold ideas into action. Their ideal candidates are professionals with 5 to 25 years of experience who are currently employed and passively seeking their next challenge. Over the years, Brett Fisher Group has developed a curated network of "off-market" candidates that rarely surface during typical searches. As part of the Sanford Rose Associates network, ranked among the top 10 U.S. search firms, they combine local expertise with global reach to make purposeful introductions that align with both candidate career goals and client search criteria.

Crosslake Technologies conducts technical due diligence and risk assessment for private equity deals where software and infrastructure are material to valuation. Since 2010, the firm has evaluated over 6,000 technology investments for 500+ PE firms globally, focusing on threat surface mapping, technical debt quantification, and operational security posture before capital commits. Their proprietary TechIndicators® platform benchmarks target companies against $30 billion in transaction data - measuring everything from cloud architecture hygiene to identity management maturity across AWS, Azure, and GCP environments. The threat model here is investor exposure: acquirers inheriting unpatched systems, weak access controls, or compliance gaps that crater post-close valuations. Crosslake's practitioners - former senior executives averaging 20+ years in the field - assess Active Directory configurations, EDR/MDR deployment, and authentication frameworks like Office365 and G Suite to surface hidden liabilities. They also deploy interim CISOs into portfolio companies during integration windows when security leadership is absent or transitional. Beyond diligence, the firm provides strategic advisory on technology integration and value creation post-acquisition. This includes rationalization of overlapping security tooling, remediation roadmaps for critical vulnerabilities, and infrastructure consolidation across merged entities. The work is empirical and transactional - no vision decks, just concrete risk registers and benchmarked security postures that shape deal terms or kill transactions outright.

Acrisure operates a fintech platform that handles insurance, employee benefits, and financial services for millions of clients across 24 countries - including one out of every 19 U.S. businesses. The company runs cybersecurity and managed IT offerings as part of that portfolio, alongside payroll, mortgages, and reinsurance products. The platform ingests hundreds of billions of data points to feed AI-driven decisioning across these verticals, and the security team has to defend that data surface at scale. The threat model here is straightforward: highly regulated financial and insurance data flowing through systems that touch enterprise HR, payment rails, and third-party integrations. The company holds SOC 2, ISO 27001, PCI-DSS, and SOX attestations, which means continuous evidence collection and control validation. Security architecture runs on Microsoft M365 infrastructure, with NIST frameworks guiding baseline posture. The technical reality is building and maintaining detective and preventive controls across a sprawling SaaS environment where compliance scope never stops expanding. The cybersecurity function sits inside a 19,000-employee organization that has grown at a 45 percent compound rate since 2013 - nearly $5 billion in annual revenue now. That growth trajectory means constant M&A integration, legacy system rationalization, and identity management at the edges. The work involves operationalizing secure-by-design patterns for AI pipelines, locking down data exfiltration paths, and keeping vendor risk programs current as the client base scales globally.