WEST COAST REGIONAL ADDRESS
1 Sansome St.
35th Floor
San Francisco, CA 94104
CORPORATE & MIDWEST REGIONAL ADDRESS
4235 Hillsboro Pike
Suite 300
Nashville, TN 37215
NORTHEAST REGIONAL ADDRESS
200 Park Avenue
Suite 1700
New York, NY 10166
SOUTHEAST REGIONAL ADDRESS
1228 East 7th Ave.
Suite 200
Tampa, FL 33605
11755 Wilshire Blvd.
Suite 1250
Los Angeles, CA 90025
Suite 1250
Los Angeles, CA 90025
3838 Oak Lawn Avenue
Suite 100
Dallas, TX 75219
Suite 100
Dallas, TX 75219
235 Peachtree ST NE
Suite 400
Atlanta, GA 30303
Suite 400
Atlanta, GA 30303
10411 Motor City Drive
Suite 750
Bethesda, MD 20817
Suite 750
Bethesda, MD 20817
6040 California Avenue SW
Suite C
Seattle, WA 98136
Suite C
Seattle, WA 98136
200 West Madison
Suite 2100
Chicago, IL 60606
Suite 2100
Chicago, IL 60606
All Rights Reserved
© 2020 KirkpatrickPrice
Using NIST 800-53 vs. NIST 800-171 in a FISMA Audit
/0 Comments/in Audit FAQs, Blog /by Sarah HarveyWhen any organization engages in a FISMA audit, their information systems are organized according to FIPS 199 and FIPS 200 to determine security categories and impact levels. Then, those systems are tested against a tailored set of baseline security controls. Depending on whether an organization is a federal agency or a private sector entity, different […]
FISMA vs. FedRAMP
/0 Comments/in Audit FAQs, Blog /by Sarah HarveyFISMA and FedRAMP audits are often confused because both involve compliance around government data. But, when you dive into the details of each audit, you’ll recognize the differences are stark. Let’s talk through each of these compliance audits and how you can tell them apart from one another. What is FISMA? The Federal Information Security […]
Learning from Twitter’s Privacy Mistakes
/0 Comments/in Blog, Privacy /by Jenna KerstenBecause of the ever-changing landscape of privacy laws, standards, and guidelines, it has become difficult for businesses to know what their obligations are, and even harder to determine what could constitute non-compliance. Fortunately, Twitter’s mistakes now provide us with an example of what a violation looks like. Twitter has been in the spotlight for a […]
What’s Going On With the EU-US Privacy Shield Agreement?
/0 Comments/in Blog, Privacy /by Jenna KerstenThe Latest With Privacy Shield On July 16, the Court of Justice for the European Union made a landmark decision to invalidate the EU-US Privacy Shield arrangement for international data transfers. Prior to this announcement, Privacy Shield was one of several mechanisms for meeting GDPR data protection requirements for data leaving the EU for the […]
Guide to Industry-Accepted Hardening Standards
/0 Comments/in Blog, Completing an Audit /by Sarah HarveyThe goal of systems hardening is to further protect your organization by reducing vulnerabilities in your applications, systems, and information technology infrastructure. By doing so, you’re creating less opportunity for malicious attacks and operational malfunctions because you are removing unnecessary programs, applications, and access points that increase the security of your system. Just as removing […]