About GreyDoc Solutions
A service-disabled veteran-owned, Ann Arbor-based IT security consulting firm built to help organizations of every size understand their risk and build the programs, policies, and people needed to manage it.
A service-disabled veteran-owned, Ann Arbor-based IT security consulting firm built to help organizations of every size understand their risk and build the programs, policies, and people needed to manage it.
GreyDoc Solutions was founded on a simple idea: security guidance should be clear, actionable, and built around how organizations actually operate — not generic checklists pulled from a template.
We work with enterprise businesses and government contractors across Michigan and beyond, helping them assess risk across digital, physical, and supply chain domains, build the documentation that compliance frameworks demand, and put the right people and training in place to sustain it.
Whether you need a single assessment or ongoing executive-level security leadership through our vCISO services, our goal is the same: reduce your real-world risk and give you confidence in your security posture.
We prioritize findings based on real-world impact and likelihood — so you address what matters most first, not just what's easiest to fix.
Reports, policies, and recommendations are written so both technical teams and executive leadership can understand and act on them.
Our documentation and assessments are built around the frameworks you're held to — NIST SP 800-53 and 800-171, CMMC, NIST CSF, and ISO/IEC 27001/27002 — enterprise or federal.
From retainers for policy maintenance to ongoing vCISO leadership, we aim to be a long-term partner in your security program, not just a one-time vendor.
Small and mid-size businesses across industries that need to understand their security risk, train their staff, and put practical policies and plans in place — without an in-house security team.
Organizations supporting federal contracts that need SSPs, POA&Ms, and a full policy suite (SOP, DRP, IRP, COOP) to satisfy NIST SP 800-171, CMMC, and contractual requirements — plus vCISO leadership to manage it all.
Whether you're starting from scratch or refining an existing program, GreyDoc Solutions is ready to help.