by
Sarah Harvey / April 12, 2023
We get a lot of questions about SOC 2 and PCI audits. Should your company do both? Are you able to consolidate multiple audits into one project? KirkpatrickPrice has developed the Online Audit Manager to make it easier to combine multiple audits into one project. Let’s talk through why and how you would take on the project of a combined SOC 2 and PCI audit. What are SOC 2 and…
by
Sarah Harvey / September 6, 2023
Multi-Audit Delivery for ProntoForms Because of the complexity of today’s security threats, many organizations must pursue multiple compliance goals to protect their systems. Take ProntoForms, a low-code application platform that helps users deploy field apps to reliably complete field work and collect data that bolsters field service, fleet, safety, and asset management systems. ProntoForms’ users are often in environments with complex equipment and processes, like hospitals, construction sites, heavy manufacturing…
by
Sarah Harvey / June 13, 2023
So you’ve decided whether you need a SOC 1 or a SOC 2 audit…what’s next? You need to decide where you’ll begin the SOC audit process. With a gap analysis? What are the SOC report types? A Type I? A Type II? Let’s discuss KirkpatrickPrice’s method for completing Type I and Type II audits. SOC Report Types: Type I and Type II FAQs No matter the SOC report types needed…
by
Sarah Harvey / June 13, 2023
We get a lot of questions about SOC 1 and SOC 2 audits. What’s the difference between the two? Should your company do both? Are you able to consolidate multiple audits into one project? KirkpatrickPrice has developed the Online Audit Manager to make it easier to combine multiple audits into one project. Let’s talk through why and how you would take on the project of a combined SOC 1 and…
by
Sarah Harvey / June 13, 2023
In 2019, State Farm notified policyholders of a cybersecurity attack in the form of credential stuffing, a tactic often used by hackers that relies on a lack of password maintenance. State Farm took proper measures to reset passwords and notify affected parties of the attack, but what if State Farm employees were properly implementing multi-factor authentication practices from the start? Would this attack have even happened? How could State Farm…
