How a Risk Assessment Can Save Your Business

by Sarah Harvey / June 13, 2023

A risk assessment is a critical component of any organization’s infrastructure as they help to create an awareness of risk. In today’s threat landscape, specifically relating to cybersecurity, it’s more important than ever to know where your assets live, fully understand the controls in place to protect those assets, and to test the efficiency of those controls. When trying to understand why it is important to complete a risk assessment,…

PCI DSS: Important Updates Due February 2018

by Sarah Harvey / December 19, 2022

Effective February 1, 2018, there are new PCI DSS requirements that could have a significant impact on your PCI compliance. If you haven’t started working to meet these new requirements, you should make plans to speak with your auditor about how to start implementing these changes. The nine new PCI DSS requirements will be considered best practice until February 1st. These requirements are: New PCI DSS Requirements for Everyone Requirement…

Top 5 Cyber Security Awareness Tips for Employees

by Sarah Harvey / June 14, 2023

Employee Training and Cyber Crime Human error is one of the greatest threats to organizational security – after all, you’re only as strong as your weakest link, and people are your first line of defense. The best way to ensure that your entire workforce is prepared to thwart malicious cyberattacks is to implement annual employee cyber security awareness training. The cyber-crime landscape is constantly changing, so business owners and stakeholders…

Penetration Testing for HIPAA Compliance

by Sarah Harvey / October 6, 2023

What is Penetration Testing? Penetration testing is a critical line of defense when protecting your organization’s sensitive assets from malicious outsiders. Penetration testing is the process of performing authorized security testing of an environment to identify and exploit weaknesses associated with the targeted systems, networks, and applications before those weaknesses can be exploited by a real attacker. When performed in support of HIPAA compliance, the goal is to identify issues…

Everything You Need to Know About SOC 1 Audits

by Sarah Harvey / April 12, 2023

Are you being asked by a top client for a SOC 1 audit report? What is a SOC 1 report? Do you need a SOC 1 audit? Below, you’ll find answers to frequently asked questions about SOC 1 audit reports and learn how your organization can benefit from having a SOC 1 report and what you can expect from your SOC 1 audit process. What is a SOC report? Developed…