Explaining Audit Periods

by Sarah Harvey / February 15, 2023

The Difference Between SOC 1 Type I and Type II: The Audit Period While SOC 1 Type I audit engagements evaluate a service organization’s internal controls that could impact their user organizations’ internal control over financial reporting (ICFR) at a specific point in time, a SOC 1 Type II audit evaluates a service organization’s internal controls that could impact their user organizations’ internal control over financial reporting (ICFR) over a…

Smart Cities vs. Secure Cities: Is There Really a Difference?

by Sarah Harvey / June 14, 2023

With technology ever-evolving, federal, state, and local governments across the globe have implemented new tools and processes to make their cities more accessible, efficient, and secure. From IoT devices, including cameras, traffic signals, and public transportation to city management systems and public data, cities all over the world are making an effort to become “smart” cities. But an increase in new smart technologies comes with an increase in cybersecurity risks;…

What Does GDPR Mean for Marketing?

by Sarah Harvey / February 20, 2023

GDPR and Marketing: Why it Matters Has your organization considered the GDPR implications for marketing? Because of the misconception that GDPR is solely for lawyers and information security teams, many organizations don’t realize how their marketing activities impact their privacy efforts. GDPR is more than a data privacy law. Instead, GDPR is a mandate that affects how organizations market, collect, use, and store consumers’ personal data, so GDPR compliance and…

How Information Security Audits Can Lead to New Opportunities for MSPs

by Sarah Harvey / June 14, 2023

Managed service providers (MSPs) have a unique role: they are entrusted by other organizations to fulfill some or all of their business functions. Often times, organizations hire MSPs to create and maintain strong security postures, and when these organizations partner with managed services providers, they want to know that they won’t bring more risk into their environment. So, how can they ensure that they won't increase risk? How Can MSPs…

Will I Pass or Fail the SOC 1 Audit?

by Joseph Kirkpatrick / April 5, 2023

If your organization is making the investment in information security audits, it’s understandable to question whether or not you will pass or fail the audit. After all, many organizations pursue compliance because they have something at stake, like a new client or big product launch, and if they do not pass the audit, there could be severe consequences. However, there’s good news when it comes to SOC 1 audits: the…