Resources

Browse the posts by categories, please select on the category you'd like to read:

What Are Your Customers Really Asking When They Ask for Your SOC Report?
Faith Kubicki September 18, 2020

If a customer (or prospect) has asked you to provide a System and Organizational Controls (SOC) report, you have a valuable opportunity to communicate important information about your risk management and compliance program. In most cases, these organizations are looking for proof that you can protect any confidential information that they entrust you with. If […]

Read More
2020 Analytics Successfully Completes SOC 1 Type 2 and SOC 2 Type 2 Examination
Faith Kubicki September 8, 2020

 2020 Analytics, a provider of loan portfolio analytics software, today announced the successful completion of their 2020 System and Organizational Controls (SOC) 1® Type 2 examination, as well as their 2020 SOC® 2 Type 2 examination. These achievements reflect their long-standing commitment to strong internal controls, while giving them a competitive edge in their industry. […]

Read More
Proposify Successfully Completes SOC 2 Type 1 Examination
Faith Kubicki September 8, 2020

Proposify, a provider of online proposal software, today announced the successful completion of their 2020 System and Organizational Controls (SOC) 2® Type 1 examination. The achievement reflects their long-standing commitment to security, while giving them a competitive edge in their industry. “We take the protection of the data and documents of our customers and others […]

Read More
Healthcare Security Compliance Assessments: Choosing the Right Cybersecurity Audit for Your Organization    
Faith Kubicki August 27, 2020

Healthcare organizations spend, on average, between four and seven percent of their IT budgets on cybersecurity. However, as security teams strive to spend their resources on products and services that protect patient data while delivering a meaningful return on their investment, they face a critical question: which cybersecurity and compliance assessments are the best use […]

Read More
InfoMC Successfully Completes SOC 1 Type 2 and SOC 2 Type 2 Examinations, HITRUST Interim Assessment, and MARS-E Compliance Assessment
Faith Kubicki August 26, 2020

Company achieves advanced security certifications demonstrating ongoing commitment to security and compliance Conshohocken, PA – August 25, 2020 – InfoMC, a leading provider of cloud-based healthcare management and care coordination software, today announced the successful completion of their 2020 System and Organizational Controls (SOC) 1® Type 2 and SOC 2® Type 2 examinations, as well […]

Read More
Third-Party Compliance Audits: Why Engage an External Assessor?
Faith Kubicki July 31, 2020

When it comes to security, consumers have higher expectations than ever before. It is no longer enough to say that a product or service is secure; customers often need to see proof. Third-party compliance audits, such as SOC examinations and HIPAA security compliance audits, can satisfy these requests for a higher level of assurance. In […]

Read More
Cybersecurity Trends in the Document Management Industry [Infographic]
Faith Kubicki July 13, 2020

As the document management industry matures, vendors face increased expectations for cybersecurity. Users require higher levels of protection for their enterprise data, and vendors – whether cloud-based or on-prem – must respond in order to remain competitive. Our most recent infographic explores the challenges that document management vendors are facing. Explore the latest trends:

Read More
How Compliance Audits Can Help You Meet Your Long-Term Business Goals
Faith Kubicki June 29, 2020

Some organizations consider compliance audits a cost of doing business: resource-intensive and time-consuming, but a necessary step toward securing a new contract or maintaining an existing agreement. However, this view doesn’t take into account the full impact of a robust cybersecurity program – especially in today’s competitive landscape. Strategic Compliance Consumers have higher expectations for […]

Read More
HIPAA Risk Assessments: What Kind of Privacy and Security Threat Analysis is Required for Compliance? 
Faith Kubicki June 17, 2020

Under HIPAA, covered entities are required to complete a risk assessment (also referred to as a risk analysis) to identify potential threats to their protected health information (PHI). “Conducting a risk analysis is the first step in identifying and implementing safeguards that comply with and carry out the standards and implementation specifications in the Security […]

Read More
What Kind of Compliance Documentation Is Required for a Security Audit?
Faith Kubicki June 17, 2020

Compliance audits require a significant amount of documentation. Whether you’re working toward a SOC report, a HITRUST certification, a PCI Report on Compliance, or any other security initiative, you will need to provide your auditor with formal evidence that your policies and processes are designed in accordance with relevant requirements. The documents you will need […]

Read More