“Four years!” As soon as the words left my mouth, I regretted saying them. Not because they were wrong, rather the incredulousness in my voice was instantly met with furrowed brows and folded arms. Across the table was a potential customer, and thanks to my lack of...
Is compliance slowing you down? Read about our FedRamp compliance services or reach out directly with any questions about your journey to compliance. Do you ever feel like your job involves a lot of hammering on the same few key points over and over? Well, that’s the...
On May 25th, 2018, the European Union’s General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) officially goes into effect. No need to panic. We got this. GDPR has rapidly devolved into a touchstone for everything from vendor FUD to political frothing....
The National Institute of Standards and Technology (NIST) recently released the first public draft of NIST 800-53 revision 5, Security and Privacy Controls for Information Systems and Organizations. This is the first updated to this massive standard in over five...
In Parts 1 and 2 of this series, we presented the basics of building an ISO 27001 compliance program. In this final chapter, we will walk through the last stage in the compliance process: obtaining ISO 27001 certification. Now that you have implemented and optimized...
In Part 1 of this series, we discussed the fundamentals of ISO 27001 compliance – specifically, the growing demand among international companies to make their vendors ISO compliant to align with the European General Data Protection Regulation (GDPR). In this part, we...