5 Questions to Ask When Choosing Your Audit Partner

by Tori Thurmond / March 24th, 2023

How do you choose the right audit partner for your compliance journey?   In order to successfully protect your data and your reputation through an information security audit, you must first choose an audit firm. This firm is the entity that will have access to your people, your assets, your data, and your risks. This can be an overwhelming task, but it’s extremely important. Hiring a firm to provide information security…

Net Friends - SOC 2 Type II

Net Friends Receives SOC 2 Type II Attestation for Fourth Consecutive Year

by Lindsay Culbreath / March 20th, 2023

Independent Audit Verifies Net Friends’ Internal Controls and Processes DURHAM – Net Friends, Inc., a North Carolina-based managed services provider, today announced that it has completed its fourth annual SOC 2 Type II audit, performed by KirkpatrickPrice. This attestation validates evidence that Net Friends has a strong commitment to security and to delivering a high standard of excellence across all services with the necessary internal controls and processes for compliance.…

What CISOs Have to Know about Data Governance 

by Tori Thurmond / March 8th, 2023

With the amount of data organizations possess today, is true data governance possible anymore? CISOs’ jobs are becoming more challenging with the influx of data—not to mention the risk that goes along with that data.  As a reminder, data governance is defined as –   “An organization’s internal process of ensuring data integrity, confidentiality, availability, quality, transparency, minimization of collection, access and use, defined legal bases for the use of data,…

Man working on computer

5 Ways to Prevent Zero Day Attacks 

by Tori Thurmond / March 7th, 2023

Hackers get better at their jobs every day.   It can be overwhelming to try to stay ahead and keep your organization as secure as possible. New ways to capitalize on vulnerabilities within an organization’s security landscape pop up frequently putting your data at risk. One of the methods threat actors use to gain control of your environment is through zero-day attacks.   A zero-day attack, or Day Zero, is a software-related…

Failure is a good thing.

by Hannah Grace Holladay / March 7th, 2023

We are wired to avoid failure.  We often do everything in our power to make sure we will succeed at whatever endeavor we embark on and can even become terrified at the possibility of failure. The same is true of an audit – everyone starts their audit journey hoping they won’t fail.  “Are we going to fail?” is such a common question amongst our clients, and we understand that feeling.…