compliance Archives | risk3sixty

The Virginia Consumer Data Privacy Act is Law: What Now?

Virginia’s Consumer Data Privacy Act (“VCDPA” or “the Act”) is the newest state privacy law in the U.S. In this blog, we will examine who is subject to the Act [...]

By Philip Brudney|2021-03-17T17:07:49+00:00March 17th, 2021|Privacy Compliance|0 Comments

How to Scope & Segment Your PCI Environment

How should a company think about PCI Scope and Segmentation? For companies looking to identify and reduce the scope of their PCI environment, through network segmentation, it is necessary to [...]

By Christian White|2021-03-01T17:36:02+00:00March 1st, 2021|PCI DSS|0 Comments

How to Read a SOC 2 System Description

In this blog, we’ll dive into one of the most important parts of a SOC 2 report, the SOC 2 System Description! During your due diligence process, a vendor sends [...]

By Kendall Morris|2021-01-27T21:22:32+00:00January 25th, 2021|SOC Reporting|0 Comments

Maintaining A Compliant Business Continuity Environment

Do your business continuity plans account for your company’s compliance and regulatory requirements? For many, the answer to that question is “no”. An unfortunate reality encountered by companies across the [...]

By Glenn Chamberlain|2020-11-23T17:17:58+00:00November 23rd, 2020|Regulatory Compliance|0 Comments

Managing Ongoing PCI DSS Compliance

Maintain Compliance From our experience working with high-growth technology companies subject to a myriad of compliance obligations, maintaining security and privacy compliance initiatives throughout the year is a prominent challenge [...]

By Christian White|2020-11-16T16:53:22+00:00November 16th, 2020|PCI DSS|0 Comments

Combining ISO 9001 and ISO 27001 Efforts

Key areas of overlap to help you harmonize workstreams. The compliance universe is ever-expanding. In addition to various information security requirements, often including ISO 27001, business partners are increasingly asking [...]

By Philip Brudney|2020-12-08T19:11:29+00:00August 31st, 2020|ISO 27001 Compliance|0 Comments

Webinar: The CISO Role: How to Design a Security Leadership Role Custom Fit to Your Organization

Check out our webinar from Shane Peden and Christian Hyatt in which they discuss common pitfalls of the CISO role as well as a framework to design a CISO role [...]

By Christian Hyatt|2020-08-10T12:32:23+00:00August 10th, 2020|CISO Discussions, Cyber Risk Management, Webinars|0 Comments

ISO 27001 vs SOC 2: Choosing a Compliance Framework

In a previous blog post, we discussed the differences between SOC 2 vs ISO 27001. In this post, we will look at the factors affecting the decision of choosing which [...]

By Kendall Morris|2020-12-08T19:14:41+00:00August 3rd, 2020|ISO 27001 Compliance, SOC Reporting|0 Comments

SOC 2 vs ISO 27001: What’s The Difference?

Navigating the ins and outs of two of the most popular compliance frameworks. When it comes to vendor due diligence, many companies are raising the bar. This article will help [...]

By Kendall Morris|2020-08-04T12:33:07+00:00July 13th, 2020|ISO 27001 Compliance, SOC Reporting|0 Comments

Webinar | Everything You Need to Prepare for ISO 27701 Certification

Check out our webinar from Philip Brudney and Christian Hyatt in which they discuss everything you need to prepare for an ISO 27701 certification, including the link between ISO 27701 [...]

By Philip Brudney|2020-08-15T13:36:21+00:00July 1st, 2020|ISO 27001 Compliance, IT Audit and Compliance, Privacy Compliance, Webinars|0 Comments