by
Joseph Kirkpatrick / June 15, 2023
When you start an audit, you’re looking for a quality experience in a timely manner. One of the biggest aspects of an audit is the onsite visit - but what if an auditing firm that you're considering working with offers to skip the onsite visit in order to deliver your report faster? What if they say your internal controls don't require an onsite visit? What if you have an entirely…
by
Sarah Harvey / December 15, 2022
So often, mobile devices are assumed to be the causes of security incidents or breaches, but mobile applications usually serve as the attack vector. In 2018, one in 36 mobile devices had high risk apps installed. There were 2,328 variants of mobile malware. Only about 50% of mobile apps were running on the newest, major iOS version and 19% for Android. Mobile applications and their risks aren’t something you can avoid.…
by
Sarah Harvey / June 15, 2023
It’s a great accomplishment for startups to meet compliance goals, like gaining SOC 2 attestation or becoming HITRUST CSF certified – but what happens after you receive your report? How do you continue to implement the lessons you learned and the controls you developed? What happens when a CISO or an IT director leaves the company? Will your information security program withstand your projected growth? These are all things to…
by
Sarah Harvey / December 15, 2022
According to Verizon’s 2019 DBIR, web applications are the top hacking vector in breaches. What does this mean for your business? Is your organization defending its web applications from hackers and cyber threats? Are you performing penetration testing on your web applications to validate your security efforts? Let’s discuss the risks associated with web applications and how KirkpatrickPrice’s penetration testing methodologies are effective and necessary for securing your business. Why…
by
Sarah Harvey / June 13, 2023
When most people think of auditing, they automatically associate it with negative emotions such as stress or anxiety. At KirkpatrickPrice, we understand that undergoing an information security audit can be an overwhelming task for organizations, and we want to partner with you to ensure that we can alleviate as much of that stress as possible. However, while we have processes, personnel, and tools like our Online Audit Manager to help your…
