Linford & Company LLP is a Denver-based Certified Public Accounting firm comprised of former “Big Four” auditors and Information Security experts. We perform SOC 1 (f. SSAE 16), SOC 2, HITRUST audits, HIPAA compliance audits, and FedRAMP assessments for organizations around the world.

Our experience spans a wide range of global industries and organizations—from privately held small- and medium-sized businesses to Fortune 500 companies. Our associates combine a unique, in-depth knowledge of the American Institute of Certified Public Accountants’ (AICPA) audit guidance, National Institute of Standards and Technology (NIST) standards with deep technical knowledge in a broad range of information and software technologies. Our clients receive extremely knowledgeable, accomplished auditors on every engagement, and are ensured an efficient and minimally intrusive on-site audit fieldwork and reporting experience. The combination of our experience and our dedication to the highest professional standards consistently leads to positive audit experiences for our clients.

Since 2008, our firm has added team members with specialized expertise to expand our service offering. Our steady growth is attributed to the reputation earned as the firm of choice for organizations looking for a predictable, affordable, and marketable IT audit experience. Since we focus on niche audits, our knowledge is extensive in the areas in which we specialize, including the most highly technical information technology matters.

Our experience spans a wide range of global industries and organizations from privately held small- and medium-sized businesses to Fortune 500 companies.

We are specialists in the performance of information technology audits across technical disciplines. We issue SOC 1 and SOC 2 reports for a wide variety of service organizations that are relied on by some of the world’s largest user organizations, including the big four banks, and top five health insurance companies. We perform audits on some of the largest consumer brands in the world, and we find compliance deviations in even the most complex technology licensing agreements. Our HIPAA compliance audits utilize the AICPA’s attestation standards for legal and regulatory compliance examinations. This provides a reliable opinion on HIPAA compliance to both covered entities and business associates. Our FedRAMP practice helps our clients obtain their Authorization to Operate (ATO) so they provide cloud based service offerings to Federal agencies.