Do your business continuity plans account for your company’s compliance and regulatory requirements? For many, the answer to that question is “no”. An unfortunate reality encountered by companies across the [...]
Maintain Compliance From our experience working with high-growth technology companies subject to a myriad of compliance obligations, maintaining security and privacy compliance initiatives throughout the year is a prominent challenge [...]
Key areas of overlap to help you harmonize workstreams. The compliance universe is ever-expanding. In addition to various information security requirements, often including ISO 27001, business partners are increasingly asking [...]
Check out our webinar from Shane Peden and Christian Hyatt in which they discuss common pitfalls of the CISO role as well as a framework to design a CISO role [...]
In a previous blog post, we discussed the differences between SOC 2 vs ISO 27001. In this post, we will look at the factors affecting the decision of choosing which [...]
Navigating the ins and outs of two of the most popular compliance frameworks. When it comes to vendor due diligence, many companies are raising the bar. This article will help [...]
Check out our webinar from Philip Brudney and Christian Hyatt in which they discuss everything you need to prepare for an ISO 27701 certification, including the link between ISO 27701 [...]
Check out our webinar from Christian Hyatt and Sawyer Miller where they discuss everything you need to know to prepare for your first ISO 27001 Certification. https://www.youtube.com/watch?v=AJbK3jH677k&feature=youtu.be Listen to [...]
Telling your privacy story through a PIA As privacy regulations have proliferated, companies have been scrambling to address the many new compliance requirements. One component that can prove challenging to [...]
Understanding the results of a HITRUST engagement and how to use them. During your vendor due diligence process, a vendor sends you their HITRUST report. What exactly does this report [...]