Blog

Leveraging Information Security as a Competitive Advantage

by Sarah Harvey / June 14, 2023

When organizations come to us to pursue their information security goals, we make sure they know all the benefits of compliance accomplishments. This ranges from avoiding fines and answering to regulatory bodies to protecting and strengthening your business. What we want more organizations to take advantage of, though, is leveraging information security as a competitive advantage. How do you do that? How Can You Use Information Security as a Competitive…

How Do I Find a QSA For My PCI Audit?

by Sarah Harvey / June 14, 2023

Are you a merchant, service provider, or sub-service provider who stores, processes, or transmits cardholder data? Going through a PCI audit for the first time? Your organization will need an individual who can help you maintain PCI compliance and provide you with a high-quality PCI audit. Who can do that? A Qualified Security Assessor (QSA). In fact, a QSA is the only individual who can deliver a PCI RoC for…

Business Associate Due Diligence: Lessons Learned from AMCA

by Sarah Harvey / December 16, 2022

In most healthcare settings, third parties are relied upon to provide secure offerings to assist covered entities in providing quality, secure healthcare services. Covered entities ultimately bear the responsibility of validating their third party security standards, however, covered entities often times still fall short in ensuring that business associates guard protected health information (PHI) against advancing cybersecurity threats. In one of the most recent cases, Quest Diagnostics, one of the…

5 Critical Things to Consider When Choosing Your Penetration Tester

by Sarah Harvey / December 16, 2022

Have you been asked by a client to undergo penetration testing? Do you want to ensure the security of your critical systems? Getting the most out of your investment in penetration testing means that you must perform your due diligence and make sure that the penetration tester you’ve hired can deliver quality, thorough penetration testing services. How can you do that? By taking the following five things into consideration when…

What is a HITRUST Interim Assessment?

by Sarah Harvey / June 14, 2023

If you’re new to the HITRUST CSF® assessment process, you might be wondering just how different the audit process is from other audits. The requirement of the interim assessment is one of the main ways that HITRUST® certification is unique. What happens during this interim review? Let’s take a look at what you can expect during a HITRUST interim assessment. Overview of the HITRUST CSF Assessment Process The HITRUST CSF…

Leveraging Information Security as a Competitive Advantage

How Do I Find a QSA For My PCI Audit?

Business Associate Due Diligence: Lessons Learned from AMCA

5 Critical Things to Consider When Choosing Your Penetration Tester

What is a HITRUST Interim Assessment?

Categories

Newsletter

Learn what you need to get started with our Audit Readiness Guide.