How we work

Engagement of Sobottka Consulting LLC

A typical engagement begins with a scope of work defining what is to be accomplished, the deliverables, an estimated timeline, and an estimated cost. Often levels of engagement can be discussed, see example below of three levels of engagement to manage CTPAT Compliance.


CTPAT Compliance Management

Basic CTPAT Compliance Assessment

  • Review your current CTPAT Portal Security Profile
  • Review key company documents including Supply Chain Security Management System, Policies, Employee Handbook, Work Instructions, Security Training, and more.
  • Complete CTPAT Gap Analysis comparing company documents to CTPAT MSC – Minimum Security Criteria
  • Identify Tasks to complete so that CTPAT MSC – Minimum Security Criteria are reflected in the company documents and the MSC will be met if the policies and practices in the documents are followed.

Tasks can be completed by company employees, or engage us to lead the process or do the work.

CTPAT Program Improvement Project

  • Identify Departments impacted by CTPAT MSC – Minimum Security Criteria
    • Work with HR to update Employee Handbook
    • Work with Operations to update Work Instructions
    • Work with Management to update Policies and Management System
    • Work with IT or Security to update physical security measures
  • Update your CTPAT Portal Security Profile
  • Improved company specific CTPAT Training includes references to company policies, documentation, and work processes.
  • Improved Supply Chain Security Management System includes a list of actions to take daily, quarterly, and annually to maintain CTPAT compliance.

Actions can be completed by company employees, or engage us to stay on top of the actions.

CTPAT Compliance Management

  • Review information shared by CBP about CTPAT best practices, evolving threats, and changes to the MSC and suggest and implement updates to company practices and documentation; ensure information shared by CBP on the CTPAT Portal is shared in the company as applicable.
  • Complete an audit of work practices and documented evidence (checklists, records, and more) – identify corrective actions required to ensure compliance
  • Ensure new joiners receive initial training and all employees receive recurrent training
  • Ensure annual risk assessment and supply chain partner review is completed
  • Review, update, and prepare the CTPAT Portal Security Profile for annual submission
  • Support company representatives during the CTPAT triennial Recertification Audit by CBP; propose and work with the company to implement corrective actions in response to the audit results

Let us help you get started with a gap analysis, or work with you to complete the work required to achieve and maintain CTPAT compliance. We are available with as much or as little support that you need.


Other Compliance Standards
  • AEO – Authorized Economic Operator
  • ISO 9001 Quality
  • ISO 14001 Environment
  • ISO 45001 Health & Safety
  • ISO 18001 Health & Safety
  • GDP – Healthcare Quality
  • Customer Quality Agreement
  • Cargo iQ – Airfreight Quality
  • FTZ – Foreign Trade Zone
AEO – Authorized Economic Operator

AEO is a EU supply chain security program Mutually Recognized by CTPAT.

Traders who voluntarily meet a range of criteria work in close cooperation with customs authorities to assure the common objective of supply chain security are entitled to enjoy benefits throughout the EU. What is AEO