FAQ
What are the Penalties for Violating the CCPA?
The California Consumer Privacy Act (CCPA) can be an expensive law to break, with several ways that regulators and the public can bring actions seeking financial damages against a company th ...
January 23, 2023
FAQ
What is Data Governance?
Data governance is the collection of policies and practices that an organization uses to assure that it can use its data assets effectively and efficiently to achieve its business goals.
...
January 10, 2023
FAQ
What are NIST Framework Controls?
The National Institute of Standards and Technology (NIST) Framework Controls are contained in Special Publication 800-53 Security and Privacy Controls for Federal Information Systems and Org ...
December 22, 2022
FAQ
How Much Does a SOC 2 Audit Cost?
Every SOC 2 (System and Organization Controls for Service Organizations) audit is unique, which means that one can't give a single, universal estimate on the cost of such an audit. The answe ...
December 7, 2022
Article
What is Supply Chain Compliance?
Most companies sit in the middle of a supply chain. So if your business wants to reduce the chance that one or more of your vendors could expose you to security, financial, or other risks, t ...
July 28, 2022
FAQ
What is the Purpose of NIST?
What Is the Purpose of the NIST Cybersecurity Framework?
Strong cybersecurity is paramount for organizations in every industry - and the best way to implement a robust cybersecurity program ...
July 1, 2022
Article
Best Practices in Cyber Supply Chain Risk Management
Management of cybersecurity threats in your supply chain should be embedded into every part of your business. Every high-risk vendor relationship or third-party supplier from the front offic ...
April 4, 2022
FAQ
What is Internal Control in Auditing?
A system of internal controls is a set of policies and procedures that an organization can use to provide reasonable assurance that the organization achieves its objectives and goals. Genera ...
March 28, 2022