Latest Articles
Learn exactly what you need to know about the NIST SP 800-53 Rev. 5 (latest update) and how it relates to FedRAMP and FISMA.
Jun 22, 2024
Data compliance refers to the practice of managing and protecting sensitive/relevant data according to established regulations & standards.
Jun 19, 2024
Learn about the essential elements, benefits, and strategic implementation steps for an effective compliance management system.
May 17, 2024
Discover the key changes in the NIS 2.0 Directive, including scope and applicability, geographical reach, penalties and implementation!
May 3, 2024
Explore the benefits of adopting NIST CSF 2.0 for your organization. Learn essential updates, compliance strategies, and much more.
Mar 29, 2024
Explore the essentials of the ISO/IEC 27000 series. Learn about its benefits and challenges and how to apply it to your organization.
Mar 20, 2024
Learn when is the optimal timing for compliance automation to maximize efficiency and alignment with your organizational goals.
Feb 6, 2024
In this article, we'll unveil the scope of work for organizations willing to kick off Compliance Automation Projects. Learning the what.
Dec 16, 2023
Discover how Compliance Automation is transforming GRC. Uncover its role in enhancing efficiency, reducing costs, and simplifying compliance.
Nov 17, 2023
Explore KPIs and KRIs' pivotal roles, and fortify your organization's compliance and data governance with ease and efficiency!
Nov 1, 2023
Explore and learn about the critical choice between out-of-the-box and integrated GRC platforms for your organization's compliance needs.
Oct 17, 2023
Streamline your compliance efforts with structured compliance documents. Achieve clarity, efficiency, and accountability.
Oct 4, 2023
Learn how SOC 2 compliance can improve your business's security posture and safeguard customer information. Checklist included!
Mar 2, 2023
Learn the foundations of IT General Controls, what they are, and how to ensure your organization has the right ITGCs in place.
Feb 1, 2023
This article will cover the main changes in the mandatory clauses, Annex A, and how to transition to this new ISO 27001:2022 update.
Nov 8, 2022
This simplified guide will help you understand how HIPAA, HITRUST CSF and NIST CSF work together in data security.
Aug 15, 2022
As blockchain technology bleeds into everyday life, companies have started to recognize the potential for growth tied to information security compliance.
Mar 9, 2022
Giving all employees the same level of access is unnecessary and even hazardous. Minimize the attack space and collateral damage with user access reviews.
Jan 27, 2022
Demonstrating the continuous improvement of your ISMS is not only a requirement, but a huge advantage to having an ISO 27001 certified system.
Jun 9, 2021
Security training and awareness provides formal cybersecurity education to the workforce and ensure's effective deployment of controls.
Jun 1, 2021
Annex A of ISO 27001 provides companies with a structured checklist to define controls, manage their ISMS and mitigate cyber-related risks.
May 26, 2021
Understanding your stakeholders needs and expectations is paramount to implementing an ISO 27001 compliant information security management system (ISMS)
May 11, 2021
Satisfying ISO 27001's Mandatory Clauses is, well required to implement a compliant system. Learn about each clause and how they contribute to your ISMS.
May 4, 2021
Establishing the scope of your ISMS and creating the Statement of Applicability is critical to implementing an ISO 27001 compliant program.
Apr 27, 2021
Leadership's engagement in data protection can determine the success of your ISMS. Develop and nurture a risk-conscious culture with ISO 27001 compliance.
Apr 20, 2021
The Canadian government has taken various initiatives to further enhance information security and compliance to mitigate potentially devastating cyber-risk.
Mar 24, 2021
The cost of PCI-DSS compliance can vary widely from one organization to another. Learn about the contributing factors and how to manage compliance.
Oct 22, 2020
This article breaks down the different types of SOC reports, the benefits of SOC 2 type 1 and type 2, and understanding which one you need.
Aug 29, 2020
An audit of your controls and risk associated with an outsourced service, a SOC report can be highly insightful - determine which report applies to you.
Jul 10, 2020
This article explains the FISMA compliance process, the benefits of obtaining its certification, and the differences between FedRAMP & FISMA.
Apr 28, 2020
Control maturity can help align your information security priorities to meet your compliance goals. Know where you're compliant and what needs improvement.
Apr 18, 2020
SharePoint is a great platform for collaborating and information sharing, but can it be used efficiently as a compliance management program?
Apr 1, 2020
A revision to ISO 27018 was published last year - what do you need to know about this revision, and do you need to be ISO 27018 compliant?
Mar 20, 2020
Learn about the importance of the FedRAMP SSP report for cloud service providers (CSPs) - what this report is and the benefits it offers.
Feb 14, 2020
Discover the similarities and differences between GDPR and CCPA regulations and find out how to comply with them.
Feb 4, 2020
It's been a year since the GDPR deadline has happened, and the dust has settled. How has the GDPR effected organisations around the world?
Jun 15, 2019
The dynamic nature of today's business environment means that Managed Service Providers (MSPs) are proactive in their approach towards cyber security.
May 14, 2019
Understand the essentials of HIPAA Security Rule compliance in healthcare, from AI integration challenges to safeguarding patient data.
Apr 18, 2019
StandardFusion and Mirai Security have partnered together to provide a Security Program as a Service. Learn more about this exciting news.
Mar 6, 2019
Everything about SOC 2, a standard that focuses on availability, confidentiality, privacy, processing integrity, and security.
Aug 16, 2017
FedRAMP impact levels range from Low, Moderate, and High, and are based on the type of data in your system and how it maps in the FIPS PUB 199 worksheet.
Jul 29, 2017
This article discusses the notable features of GDPR and the areas where ISO 27001 can help you with compliance.
Jul 25, 2017
Learn how FedRAMP works, who the top stakeholders are, and how you can achieve a FedRAMP compliant security package as a federal agency CSP.
Jul 11, 2017
Discover the importance of complying with mandatory requirements such as laws, regulations, and contractual obligations.
Apr 24, 2017
Learn why General Data Protection Regulation (GDPR) is a game-changer for businesses that process or control personal data of EU citizens.
Apr 18, 2017
This article explains the difference between requirements and controls and how to design controls with agnostic properties in mind.
Mar 29, 2017
Learn about the SOC 2 Content Update for Trust Services Principles (TSP) released by the American Institute of Certified Public Accountants.
Feb 23, 2017
Explore what happens after ISO 27001 certification and how you can take your information security management systems to the next level.
Nov 22, 2016
With some adjustments to your plan, even the most resistant team members can realize the benefits of implementing ISO and likely come around.
Nov 1, 2016