Compliance

SOC 1 vs SOC 2: Everything you need to know about the SOC attestations

Feb 9, 2024 By Satya Moutairou In TrustCloud

Service organizations often undergo SOC (Service Organization Control) attestation to assure clients and stakeholders of the effectiveness of their internal controls. Two prominent frameworks within the SOC domain are SOC 1 and SOC 2, each designed to address specific facets of a service organization’s controls. Read on to learn how to compare SOC 1 vs SOC 2 attestations.

Read Post

TrustCloud

Read more about SOC 1 vs SOC 2: Everything you need to know about the SOC attestations

Safeguarding Sensitive Data: The Vital Role of Cybersecurity in Business Law Firms

Feb 8, 2024 By SecuritySenses In SecuritySenses

In an era marked by digital transformation and increasing reliance on technology, cybersecurity has become a critical concern for businesses across all sectors. However, for law firms specializing in business law, the need to protect sensitive client information and maintain confidentiality is paramount. As custodians of highly confidential data, including intellectual property, financial records and sensitive legal documents, business law firms face unique cybersecurity challenges and must implement robust measures to safeguard against cyber threats and data breaches.

Read Post

SecuritySenses

Read more about Safeguarding Sensitive Data: The Vital Role of Cybersecurity in Business Law Firms

Xalient achieves ISO 27001:2022 Recertification

Feb 8, 2024 By Craig Ingham In Xalient

In a significant achievement, we are thrilled to announce our successful transition to the ISO 27001:2022 standard whilst also undergoing recertification. This recertification is the pinnacle of Information Security Management. The recognition by BSI in December 2023, with auditors acknowledging our commitment as “up there with the best of them,” underscores our dedication to providing the highest level of service to our customers.

Read Post

Xalient

Read more about Xalient achieves ISO 27001:2022 Recertification

Customer Corner: How Apree Health Gained Container Visibility and Achieved Compliance

Feb 8, 2024 By Sysdig In Sysdig

Join David Quisenberry, Senior Manager of Information Security, and Cat Schwan, Security Team Lead, to learn how Sysdig’s powerful runtime insights empower Apree Health to identify, visualize, and eliminate Kubernetes vulnerabilities, threats, and misconfigurations in real time, and how automated evidence gathering and reporting helped them achieve both SOC 2 and HITRUST compliance. Interested in learning more about Sysdig Secure?

View Video

Sysdig

Read more about Customer Corner: How Apree Health Gained Container Visibility and Achieved Compliance

Navigating Authority to Operate: FISMA or FedRAMP?

Feb 8, 2024 By Max Aulakh In Ignyte

Navigating Authority to Operate: FISMA or FedRAMP? Decades ago, the government stood on its own. While it would often contract out with individuals and companies for services, there was always a barrier between third-party operations and government operations to prevent intrusion, infiltration, or compromise. Over the years, though, society has grown more and more complex.

Read Post

Ignyte

Read more about Navigating Authority to Operate: FISMA or FedRAMP?

Adapting to Legislative Demands: Insights on Cyber Security Compliance in Critical Infrastructure

Feb 7, 2024 By Razorthorn In Razorthorn

Welcome to Razorwire, the podcast dedicated to exploring the complex and evolving world of cyber security legislation. I'm your host, Jim, and in today's episode, we delve into the intricate landscape of cyber security legislation with our guests Steve Applegate and Phil Tonkin from Dragos.

View Video

Razorthorn

Read more about Adapting to Legislative Demands: Insights on Cyber Security Compliance in Critical Infrastructure

Cybersecurity in the Age of Regulation

Feb 5, 2024 By Karen Walker In Sysdig

Cybersecurity breaches are becoming more frequent and more impactful. Adversaries continue to grow stronger, and defenders aren’t always keeping pace. Add in the increasing number of nation-state actors in the threat landscape, and it’s hardly surprising that governments are starting to take a greater role in regulating security. On July 26th, 2023, the U.S.

Read Post

Sysdig

Read more about Cybersecurity in the Age of Regulation

Is your connected device secure and FDA compliant?

Feb 5, 2024 By David Bennett In Device Authority

As a medical device company, are you familiar with an FDA regulation called section 524b?

Read Post

Device Authority

Read more about Is your connected device secure and FDA compliant?

What is a trust center? And how to use it to demonstrate trust

Feb 5, 2024 By Vanta In Vanta

As your organization grows the demands on the security team increase. Many of these new demands come from prospects and customers doing their due diligence about the security measures your business has in place. Your team is then left struggling to balance a growing number of security questionnaires and customer requests while managing your everyday responsibilities.

Read Post

Vanta

Read more about What is a trust center? And how to use it to demonstrate trust

TrustCloud Expands Executive Team, Adds TJ McDonough as SVP of Sales and Customer Success

Feb 1, 2024 By TrustCloud In TrustCloud

Seasoned security leader joins TrustCloud to meet demand for programmatic, predictive security, privacy, and assurance solutions that go beyond GRC automation.

Read Post