360 Advanced Senior Practice Manager Sushma Uniyal’s article “The Top Five Audit Essentials for Driving Efficiency and Value” was recently published in the ISACA Journal. It touches on some major points audit teams are wise to address for a successful engagement. In her article, Uniyal provides 5 tips that will keep projects on time—and keep […]

In our recent August webinar, “Demystifying SOC 2, HIPAA & HITRUST,” 360 Advanced Practice Director Ryan Winkler and Sr. Compliance Executive Kris Francis, joined by moderator Sr. Compliance Executive Carlos Guerrero, answered several questions posed by guests regarding SOC 2, HIPAA, and HITRUST. Here are the top 5 questions our panel addressed: If you already […]

The question of how to better prepare for a SOC 2 assessment comes up frequently for the assessors at 360 Advanced. In our recent webinar, “SOC 2 Overview: A Conversation with Experienced Professionals,” 360 Advanced team members discussed items like how to get prepared for a SOC 2, penetration testing and risk assessments, and leveraging […]

HITRUST is the most widely adopted security and privacy framework in the healthcare industry, and it’s required by more than 84% of hospitals and health plans, according to Healthcare Weekly. We talked with 360 Advanced’s Practice Director Ryan Winkler, our HITRUST authority, about the HITRUST Risk-based, 2-year (r2) Validated Assessment + Certification, and the newly […]

Security frameworks like SOC and more specifically, SOC 2 (System and Organization Controls) are becoming increasingly important for companies that process or store client data. SOC 2 reports provide insight to the risk mitigation measures a Service Organization has in place to address the AICPA’s Trust Services Criteria related to Security, Availability, Processing Integrity, Confidentiality […]