Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
COACT Services is a U.S.-based cybersecurity and compliance professional services provider founded in 1990 and identified as a Service Disabled Veteran Owned Small Business. Its core markets are U.S. government agencies, government contractors, and regulated commercial organizations, offering compliance consulting, third-party assessments, penetration testing, software development, and operations support.
In terms of protection type, COACT is not a standalone security tool, but primarily a compliance assessment and security professional services provider. It covers frameworks such as FISMA, FedRAMP, GovRAMP, LADMF, NIST SP 800-171, and CMMC. Its key credentials include FedRAMP 3PAO, GovRAMP 3PAO, LADMF ACAB, and an ISO 9001:2015 quality management system. Services include gap analysis, boundary definition, security engineering support, control implementation, documentation development, risk assessments, vulnerability scanning, penetration testing, continuous monitoring, reporting, and executive briefings. On the offensive and defensive security side, it offers red teaming, vulnerability assessments, cloud/network/application testing, and social engineering.
The website does not disclose packages, unit pricing, or billing models, and only provides a “Talk to a Security Expert” consultation entry point. It should therefore be treated as project-based or custom-quoted. For buyers, it is important to clarify the scope, deliverables, assessment framework, remediation support, and reporting frequency upfront.
Its strengths lie in its credentials and experience, making it especially suitable for U.S. government compliance scenarios that require independent third-party assessments, audit-defensible materials, and continuous monitoring. Its service chain is relatively complete, spanning consulting, assessment, and remediation support. The limitations are limited transparency: pricing, SLAs, team size, tool platforms, and integration details are not publicly disclosed. Its services are also highly centered on the U.S. regulatory system, with no clear explanation of adaptation for local compliance requirements in China or other overseas markets. For CMMC, the main text indicates that it is pursuing C3PAO authorization, rather than clearly stating that it has already obtained it.
It is suitable for cloud service providers pursuing FedRAMP/GovRAMP authorization, federal agencies or contractors implementing FISMA/RMF, DoD supply chain companies preparing for CMMC/NIST 800-171, and organizations in finance, insurance, pensions, and related sectors that require LADMF access. If you are simply looking for a standardized SaaS security product, COACT may not be the first choice.
The crawled content does not provide information on mainland China access, nodes, ICP filing, or local support, so china_access is assessed as unknown.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on coact.com official site.
coact.com is an United States Security provider. TG4G tracks its product information, an overall rating of 6.0/10, and a China-accessibility score of Limited (proxy recommended). Click "Visit Official Site" to reach coact.com directly.