Sikich

Q: What industries does Sikich serve?

Financial Services, Healthcare, Manufacturing, Government & Public Sector, Nonprofit, Education, Technology

Visit Website

Provider Snapshot

Core services: Security Operations Center as a Service (SOCaaS), SIEM Management, Vulnerability Management +5 more
Platforms: Microsoft Sentinel, Microsoft Defender, Splunk +2 more
Client focus: SMB (51-200), Mid-Market (201-1000), Enterprise (1000+)
Response SLA: 1 hour
Website: sikich.com

Company Details

Headquarters: Chicago, IL
Founded: 1982
Employees: 1000+
SOCs: 1
Response SLA: 1 hour

Pricing

Pricing Model: Fixed monthly
Starting Price: Custom quote

About Sikich

Sikich ranks among the top 30 US accounting firms nationally and combines a mature CPA/advisory practice with a comprehensive managed security services offering. Their MSSP practice includes a 24/7 Security Operations Center, threat monitoring, vulnerability management, SIEM deployment and management, endpoint detection, incident response, and a virtual CISO service — all at predictable fixed monthly costs. Sikich's deep compliance expertise spans FFIEC (banking), PCI DSS (payments), HIPAA (healthcare), FERPA (education), GLBA (financial), and SOC 1/2/3 audit services. The firm serves organizations across healthcare, financial services, manufacturing, nonprofit, and government sectors and was named a Great Place to Work for multiple years, reflecting strong retention of experienced security professionals.

Manage or promote this profile

Suggest an update

Represent this provider? Claim and verify the profile, get Featured placement, or become a Top Provider.

Claim profile Get Featured Become a Top Provider

Suggest an update

Services Offered

Sikich offers 8 security services. Click any service to see other providers that offer it.

Security Operations Center as a Service (SOCaaS)SIEM Management Vulnerability Management Endpoint Detection & Response (EDR)Incident Response Compliance Management Penetration Testing Security Awareness Training

Industries Served

Sikich has experience serving 7 industries, including the regulatory requirements and security challenges unique to each.

Financial Services Healthcare Manufacturing Government & Public Sector Nonprofit Education Technology

Supported Platforms

Sikich supports 5 security platforms. MSSPs with hands-on experience in your tools can onboard faster and tune detections more accurately.

Microsoft Sentinel Microsoft Defender Splunk Qualys Tenable

Client Company Sizes

Sikich serves SMB (51-200), Mid-Market (201-1000), Enterprise (1000+) organizations. Providers focused on your company size tend to offer pricing and service levels that match your budget and team capacity.

SMB (51-200)Mid-Market (201-1000)Enterprise (1000+)

Compliance Frameworks Supported

Sikich provides compliance support for 9 frameworks. Compliance support typically includes control mapping, evidence collection, audit preparation, and ongoing monitoring to keep you audit-ready year-round.

SOC 2HIPAAPCI DSSGDPRISO 27001FFIECGLBAFERPANIST CSF

Certifications Held

Sikich holds 1 certification. Each certification means the provider passed an independent audit of their security practices, operations, or technical skills.

SOC 2 Type II

What Should You Ask When Evaluating Sikich?

Before engaging any MSSP, use these questions to assess whether the provider is the right fit for your organization. These apply to Sikich and any other provider on your shortlist.

What is included in the base service vs. what costs extra? Clarify whether incident response, compliance reporting, and additional log source onboarding are included or billed separately.
What response actions does the provider take directly? Some MSSPs only send alerts for your team to act on. Others take containment actions like host isolation or account lockout on your behalf.
What does the onboarding process look like? Ask about typical onboarding timelines, how much work your team needs to put in, and when full monitoring coverage goes live.
Can you provide references from similar organizations? Ask for references from companies in your industry and size segment. The experience of similar organizations is the best predictor of how the MSSP will perform for you.
What happens if we need to switch providers? Understand data portability, contract termination terms, and transition support. A transparent exit process is a sign of a provider that prioritizes long-term trust over lock-in.