The Most Impactful Changes to PCI DSS v4.0

by Hannah Grace Holladay / March 21, 2024

Auditor Insights Webinar Recap The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards established to protect credit and debit card transactions from fraud and data breaches. The standard is updated regularly to adapt to new security threats and changes in technology. Version 4.0 will be released and required by March 2025.  In this webinar hosted by PCI-expert Randy Bartels, we explore the most impactful…

10 Critical Things To Consider When Choosing a Compliance Platform

by Hannah Grace Holladay / January 10, 2024

Audits are hard and choosing the right compliance tool is overwhelming. We understand that you need a tool that will make your life easier and help you accomplish your challenging security and compliance goals. You need a tool that will help you get an audit report as soon as possible.  You need a tool that can help you meet your deadlines. You need the best and simplest way to complete…

The Audit Expert’s Guide To Conducting An Effective Risk Assessment

by Hannah Grace Holladay / March 21, 2024

The Top 3 Issues With Your Risk Assessment: Auditor Insight Webinar Recap The power of a risk assessment isn’t just identifying risks: it’s creating a culture of security. The risk assessment process is often viewed as a necessary evil for compliance and is commonly seen as inconvenient and unimportant. However, after over 20 years in the information security space, Shannon Lane views risk assessment as the most powerful tool in…

Ask the Expert: Penetration Testing

by Sarah Harvey / February 20, 2023

Penetration Testing for HIPAA Compliance Penetration testing is a critical line of defense when protecting your organization’s sensitive assets - especially Electronic Protected Health Information (ePHI). Penetration testing is the process of performing authorized security testing of an environment to identify and exploit weaknesses associated with the targeted systems, networks, and applications before those weaknesses can be exploited by a real attacker. When performed in support of HIPAA compliance, the…

Internal vs. Third-Party Audits: Why You Need to be Leveraging Both

by Sarah Harvey / February 20, 2023

Internal Audits vs. External Audits Is an internal audit enough? Should you utilize both internal and external audits? This is an ongoing conversation in our arena. But at KirkpatrickPrice, we know that there is power in having both perspectives, especially when it comes to conquering your compliance goals. If you want to prove to your stakeholders that you’re willing to do everything you can to take control of the cyber…