Cloud Service Providers

Weaver has broad experience in the Cloud Service Provider space from Fortune 50 global providers that offer everything under the sun to smaller niche SaaS providers. Whether you provide bare metal infrastructure, container orchestration, server-less architecture, content delivery, or software as a service we can help. Our experience has given us the unique ability to quickly take technical concepts and architectures and help providers discern where they are and where they need to be in the ever growing world of security and compliance.

As a full service CPA firm, we can draw on experience across industries and regulatory environments to offer you a more holistic approach to assist you in building trust and assurance with your customers and stakeholders. Whether you’re seeking Third Party Assurance for your customers, Continuous Monitoring and other security or IT assessments for internal reporting or accounting, tax and financial reporting services for your investors, shareholders and other stakeholders, Weaver can help.

Our Services

We work with compliance directors, risk management and assurance leaders, accounting and finance, internal audit directors, CFOs, CIOs, and cybersecurity personnel to help solve and answer today’s toughest compliance and regulatory problems and questions. Our services include:

IT Advisory Services

  • Payment Card Industry (PCI) Data Security Standard (DSS) readiness, Qualified Security Assessor (QSA) testing, and reporting:
    • Attestation of Compliance (AOC)
    • Report on Compliance (ROC)
    • Self-Assessment Questionnaire (SAQ)
  • System and Organization Controls (SOC) 1, 2, and 3 readiness and examination:
    • Controls relevant to Internal Control over Financial Reporting (ICFR)
    • Controls over Trust Service Criteria (TSC)
  • Cloud Security Alliance (CSA) reporting:
    • Security, Trust, Assurance and RISK (STAR)
    • Cloud Controls Matrix (CCM)
  • IT internal audits and reviews
    • Continuous controls monitoring
  • Cybersecurity services including:
    • Penetration testing
    • Vulnerability assessments
    • Social engineering
    • Cybersecurity Program and Control assessments against:
      • NIST Cybersecurity Framework (CSF)
      • NIST 800-53
      • NIST 800-171 (DoD CMMC)
      • Center for Internet Security (CIS) Controls
      • ISO 27001/27002
      • Health Insurance Portability and Accountability Act (HIPAA)
  • CIO advisory services

IT Advisory Thought Leadership

Click here to view related cloud service providers thought leadership.

Our Certifications

CPA Certification
CIA Certification
CFE Certification
CCPE Certification
GSNA Certification
GPEN Certification
CEH Certification
CRISC Certification
CISA Certification
CISM Certification
CDPSE Certification
CISSP Certification
SOC Certification
PCI Certification
CCSK Certification
CIPT Certification


Jason Avila Headshot

Jason Avila

Partner-in-Charge, Technology Services


Jason Avila, CPA, has more than 19 years of public accounting experience and four years of private industry experience. He has…

Learn More