Philip Brudney, Author at risk3sixty

About Philip Brudney

Philip is in charge of Security, Privacy, and Compliance research and quality assurance at risk3sixty. As part of Philip’s duties, he oversees privacy and attestation reporting and is the co-quality assurance manager for the assurance practice (SOC 1, SOC 2, and attestation reporting) where he is responsible for ensuring each engagement meets risk3sixty’s rigorous quality standards in line with AICPA requirements. Philip leads development and peer review of thought leadership, research, and whitepapers. In addition, Philip acts as the Data Protection Officer (DPO) for a wide array of US based firms facing GDPR compliance.

What Is Your Privacy Philosophy and Why Does It Matter?

When I work with clients to build their privacy programs, one of my first questions is, “What’s your privacy philosophy?” Most often, the response is, “Isn’t that what we hired [...]

By Philip Brudney|2022-05-10T18:27:28+00:00May 10th, 2022|Privacy Compliance|0 Comments

Webinar: Privacy in Contracts: Everything you need to know before you sign

In the webinar, we covered how having a privacy program can help you grow your business. It will be hosted by our managing director Christian Hyatt and the presenters will [...]

By Philip Brudney|2021-12-16T19:41:25+00:00December 16th, 2021|Privacy Compliance, Webinars|0 Comments

California Privacy Rights Act (CPRA): 10 Big Impacts on Your Business

California passed new legislation that will have significant impact to organizations across the United States. Here are the most important things you need to know (and do): 10 Big Impact [...]

By Philip Brudney|2021-03-25T13:37:03+00:00March 23rd, 2021|Privacy Compliance|0 Comments

The Virginia Consumer Data Privacy Act is Law: What Now?

Virginia’s Consumer Data Privacy Act (“VCDPA” or “the Act”) is the newest state privacy law in the U.S. In this blog, we will examine who is subject to the Act [...]

By Philip Brudney|2021-03-17T17:07:49+00:00March 17th, 2021|Privacy Compliance|0 Comments

Improving Your ISMS Through Clause 7.2

Continual improvement of an ISMS (or any ISO management system) should always yield results for the organization. But what does “continual improvement” for a high growth technology company look like [...]

By Philip Brudney|2020-12-08T18:54:15+00:00November 9th, 2020|ISO 27001 Compliance|0 Comments

Combining ISO 9001 and ISO 27001 Efforts

Key areas of overlap to help you harmonize workstreams. The compliance universe is ever-expanding. In addition to various information security requirements, often including ISO 27001, business partners are increasingly asking [...]

By Philip Brudney|2020-12-08T19:11:29+00:00August 31st, 2020|ISO 27001 Compliance|0 Comments

Webinar: Privacy Shield Was Invalidated – Now What?

Check out our webinar from Phil Brudney and Christian Hyatt in which they cover the recent Privacy Shield invalidation and the relevant implications for companies. See also: Podcast | Privacy [...]

By Philip Brudney|2020-08-09T11:22:30+00:00August 5th, 2020|CISO Discussions, Privacy Compliance, Webinars|0 Comments

Webinar | Everything You Need to Prepare for ISO 27701 Certification

Check out our webinar from Philip Brudney and Christian Hyatt in which they discuss everything you need to prepare for an ISO 27701 certification, including the link between ISO 27701 [...]

By Philip Brudney|2020-08-15T13:36:21+00:00July 1st, 2020|ISO 27001 Compliance, IT Audit and Compliance, Privacy Compliance, Webinars|0 Comments

Maximizing the Value of Your Privacy Impact Assessment

Telling your privacy story through a PIA As privacy regulations have proliferated, companies have been scrambling to address the many new compliance requirements. One component that can prove challenging to [...]

By Philip Brudney|2020-04-05T21:33:05+00:00April 6th, 2020|IT Audit and Compliance, Privacy Compliance|0 Comments

What Are Your Privacy KPIs?

Identifying and maintaining measures of success in privacy programs. The publication of ISO 27701 is an exciting development for all companies looking to enhance and potentially certify their privacy programs. [...]

By Philip Brudney|2021-01-28T19:38:39+00:00November 4th, 2019|ISO 27001 Compliance, Privacy Compliance|0 Comments