Internal audits are an exercise that an organization undertakes to understand how well the organization is managing the risks that confront it. The audit examines a certain risk facing the... Read More
Blog
The Fine Art of Scoping a SOC 2 Audit
Once upon a time, performing a SOC 2 audit was a rite of passage for service companies: “Wow, we’re so successful now that big clients want us to do important... Read More
What is the SOC 2 Common Criteria List?
The SOC 2 Common Criteria List refers to the set of criteria and principles that service organizations must adhere to and demonstrate compliance with in order to achieve SOC 2... Read More
What is Evidence Collection in Compliance?
Evidence collection is the act of documenting an organization’s compliance processes and outcomes. Evidence collection is one of the best methods an organization can use to demonstrate that it is... Read More
How to Keep Your HIPAA Compliance Efforts Up to Date
Everyone in the data privacy world has heard of HIPAA, and the term is often used to explain how, when, and why protected health information is protected from release to... Read More