Browse the posts by categories, please select on the category you'd like to read:
System and Organization Controls (SOC) reports enable companies to feel confident that service providers, or potential service providers, are operating in an ethical and compliant manner. No one likes to hear the word audit, but SOC reports establish credibility and trustworthiness for a service provider — a competitive advantage that’s worth both the time and […]
Read MorePCI DSS 4.0 Key Objectives Core goals of the updated standard: • Continue to provide the critical foundation for securing payment data • Promote security as an ongoing process • Improve flexibility for organizations using a wide range of technologies • Enhance validation methods and procedures PCI 4.0 vs 3.2 Since version 3.2 of the […]
Read MoreIf a customer (or prospect) has asked you to provide a System and Organizational Controls (SOC) report, you have a valuable opportunity to communicate important information about your risk management and compliance program. In most cases, these organizations are looking for proof that you can protect any confidential information that they entrust you with. If […]
Read MoreAs the U.S. Department of Defense prepares to introduce the Cybersecurity Maturity Model Certification (CMMC), contractors and subcontractors must get ready to implement – and become certified against – the new framework. Some of the details are still being finalized – such as what level of certification each organization will need to achieve – but […]
Read MoreCompliance audits require a significant amount of documentation. Whether you’re working toward a SOC report, a HITRUST certification, a PCI Report on Compliance, or any other security initiative, you will need to provide your auditor with formal evidence that your policies and processes are designed in accordance with relevant requirements. The documents you will need […]
Read MoreIf your company deals with credit card numbers, patient records, customer information or other sensitive data, the list of compliance standards, federal regulations, and state laws can be very long. And if you’re a healthcare organization? It’s even more complex. What is HIPAA? Probably the most well-known compliance standard is the Health Insurance Portability and […]
Read More2020 Analytics, a provider of loan portfolio analytics software, today announced the successful completion of their 2020 System and Organizational Controls (SOC) 1® Type 2 examination, as well as their 2020 SOC® 2 Type 2 examination. These achievements reflect their long-standing commitment to strong internal controls, while giving them a competitive edge in their industry. […]
Read MoreProposify, a provider of online proposal software, today announced the successful completion of their 2020 System and Organizational Controls (SOC) 2® Type 1 examination. The achievement reflects their long-standing commitment to security, while giving them a competitive edge in their industry. “We take the protection of the data and documents of our customers and others […]
Read MoreHealthcare organizations spend, on average, between four and seven percent of their IT budgets on cybersecurity. However, as security teams strive to spend their resources on products and services that protect patient data while delivering a meaningful return on their investment, they face a critical question: which cybersecurity and compliance assessments are the best use […]
Read MoreCompany achieves advanced security certifications demonstrating ongoing commitment to security and compliance Conshohocken, PA – August 25, 2020 – InfoMC, a leading provider of cloud-based healthcare management and care coordination software, today announced the successful completion of their 2020 System and Organizational Controls (SOC) 1® Type 2 and SOC 2® Type 2 examinations, as well […]
Read More