4A Security is dedicated to putting you in control of your
information security, privacy and compliance risk decisions.

  • We are a highly technical group and we believe technology allows for better decision-making.
  • We believe technology should not dictate critical business decisions.
  • We help surface and measure the critical risks in your environment.
  • We provide a framework for making well-informed business decisions about your:
    • Information Security Risk
    • Privacy Risk
    • Compliance Risk
  • Within this framework, your Return on Security Investment can be calculated, measured and monitored on an on-going basis.


Our team consists of seasoned professionals who have active top secret federal security clearances including TS/SCI eligible and NATO briefed/cleared, in addition to CISSP, CCSK, CCNA, CEH, CAPM, ECSA, CompTIA Security+,  CompTIA Network+, Master Six Sigma Black Belt, Cisco Certified, MCSE, MCSA, Oracle PL/SQL Developer, ManagedObjects certifications and numerous other development languages, platforms and proficiencies. 


Our team consists of seasoned professionals who have performed Information Security, IT Governance, Compliance and Risk Management services for leading companies in the financial services, healthcare, insurance, telecommunications, and media industries as well as for federal agencies.


4A Security is a privately held company, founded by CEO and President, Ben Goodman. Prior to starting 4A Security, Ben founded and ran a Silicon Alley strategic communications firm that raised private investment and formed an international joint venture with two leading Japanese corporations. Over the course of his career, Ben was CEO of a successful property & casualty insurance agency where he also helped launch a highly successful surety managing general underwriter. For over 20 years, Ben has built, run and consulted companies, always with an intense focus on developing high performing organizations that deliver real value to customers. For Ben, it all stems from leadership that places a premium on integrity and accountability, that fosters an organizational culture of learning and growth, that heavily discounts office politics and that is obsessed with building and maintaining strong client relationships.


OWASP – Open Web Application Security Project is an open-source web application security project. The OWASP community includes corporations, educational organizations, and individuals from around the world. ISACA – Information Systems Audit and Control Association, is an international professional association focused on IT Governance. CSA – Cloud Security Alliance is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing. ISSA – Information Systems Security Association is a not-for-profit, international professional organization of information security professionals and practitioners. It provides educational forums, publications and peer interaction opportunities that enhance the knowledge, skill and professional growth of its members. CFA – Commercial Finance Association is the association for professionals in the Asset-based lending industry.


There are loads of companies offering whiz-bang tech solutions to just about every security and compliance headache out there. Can you separate the gems from the vapor? 4A Security has spent considerable time analyzing the field and we have forged strategic partnerships with the real industry leaders in the security, privacy and compliance marketplace. We provide best-in-class solutions sized appropriately for your environment so you can achieve the right Return On Security Investment.


We highly value our relations with our many international friends and colleagues, but when it comes to hiring, we think there’s plenty of talent right here in the good ol’ U.S. of A. At 4A Security, we on-shore our human resources (that means employees AND consultants). Yes, we know the world is flat and much of the software and hardware we use and buy comes from all over the globe. And yes we know we can pay an off-shore programmer a day rate equivalent to a bag of peanuts. Call us old fashioned, but while our competitors are paying their off-shore programmers peanuts, we are focused on making sure we know first hand that every member of our team is performing for our side and is meeting the highest level of quality and compliance standards we have promised our customers. That’s why our highly trained professional staff live here on the mainland and our team has extensive experience in security, privacy and regulatory compliance.


4A Security believes in providing a real benefit not just to its customers, investors and employees, but also to the communities we operate in. That’s why we are active in a number of community-based educational programs and charitable organizations.