Choosing a Higher Level of Assurance

by Joseph Kirkpatrick / April 5, 2023

When a quality audit is performed by KirkpatrickPrice, there are many qualified experts behind the scenes completing the documentation review, project management, onsite visit, remediation efforts, report writing, and quality assurance. These security professionals work to provide the best assurance service possible to your organization. How exactly can you finish your audit process feeling assured and secure? You need to make sure you aren't settling for anything less than a…

5 Security Pitfalls That Startups Should Avoid

by Sarah Harvey / June 13, 2023

When an entrepreneur sets out on a new business venture, there’s typically many things to take into consideration and many pitfalls to avoid. How will you raise the capital needed to get the company off the ground? Who will be a part of the team? What can you do to ensure that your products or services are ready for market? While all of these considerations are critical to the success…

Leveraging Information Security as a Competitive Advantage

by Sarah Harvey / June 14, 2023

When organizations come to us to pursue their information security goals, we make sure they know all the benefits of compliance accomplishments. This ranges from avoiding fines and answering to regulatory bodies to protecting and strengthening your business. What we want more organizations to take advantage of, though, is leveraging information security as a competitive advantage. How do you do that? How Can You Use Information Security as a Competitive…

How Do I Find a QSA For My PCI Audit?

by Sarah Harvey / June 14, 2023

Are you a merchant, service provider, or sub-service provider who stores, processes, or transmits cardholder data?  Going through a PCI audit for the first time? Your organization will need an individual who can help you maintain PCI compliance and provide you with a high-quality PCI audit. Who can do that? A Qualified Security Assessor (QSA). In fact, a QSA is the only individual who can deliver a PCI RoC for…

Business Associate Due Diligence: Lessons Learned from AMCA

by Sarah Harvey / December 16, 2022

In most healthcare settings, third parties are relied upon to provide secure offerings to assist covered entities in providing quality, secure healthcare services.  Covered entities ultimately bear the responsibility of validating their third party security standards, however, covered entities often times still fall short in ensuring that business associates guard protected health information (PHI) against advancing cybersecurity threats. In one of the most recent cases, Quest Diagnostics, one of the…