Reviewing Your Information Security Program for 2023

by Tori Thurmond / June 15, 2023

2023 may feel like it’s flying by already but there’s still time to make sure your information security program can overcome the current threat landscape. Each year, we often hear a lot of confusion and frustration about frameworks modifying their requirements, the cost of audits rising, the cost of pen tests rising, scopes getting larger, and testing being more difficult. There’s a reason for this – the threats are advancing.…

Experience Pays

by Tori Thurmond / April 4, 2023

How an Experienced Audit Partner Actually Helps You Reach Your Security and Compliance Goals With so many audit partners and compliance platforms on the market, it’s hard to know which one is right for your organization. One of the main factors to be considered when choosing an audit partner is their level of experience. How qualified is the firm to perform a thorough audit that will make sure that your…

The Most Impactful Changes to PCI DSS v4.0

by Hannah Grace Holladay / March 21, 2024

Auditor Insights Webinar Recap The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards established to protect credit and debit card transactions from fraud and data breaches. The standard is updated regularly to adapt to new security threats and changes in technology. Version 4.0 will be released and required by March 2025.  In this webinar hosted by PCI-expert Randy Bartels, we explore the most impactful…

5 Questions to Ask When Choosing Your Audit Partner

by Tori Thurmond / June 13, 2023

How do you choose the right audit partner for your compliance journey?   In order to successfully protect your data and your reputation through an information security audit, you must first choose an audit firm. This firm is the entity that will have access to your people, your assets, your data, and your risks. This can be an overwhelming task, but it’s extremely important. Hiring a firm to provide information security…

What CISOs Have to Know about Data Governance 

by Tori Thurmond / June 15, 2023

With the amount of data organizations possess today, is true data governance possible anymore? CISOs’ jobs are becoming more challenging with the influx of data—not to mention the risk that goes along with that data.  As a reminder, data governance is defined as –   “An organization’s internal process of ensuring data integrity, confidentiality, availability, quality, transparency, minimization of collection, access and use, defined legal bases for the use of data,…