Video

KirkpatrickPrice Video

Get help with your information security audit and compliance journey. KirkpatrickPrice now offers a free, exclusive video library from our team of security and compliance experts. Walking you through the ins and outs of information security and compliance audits such as SOC 1, SOC 2, HIPAA, HITRUST, and PCI, these videos are designed to educate, inspire, and empower organizations to greater levels of assurance. Dive in to this free training for industry tips and best practices to elevate your security and compliance training efforts.

Our online security and compliance training videos cover PCI DSS compliance, HIPAA compliance, HITRUST compliance, SOC 1 compliance, and SOC 2 compliance. No matter what industry you’re in, KirkpatrickPrice’s online training library is packed full of information security and compliance guidance to help strengthen your security posture. Subscribe today, and receive this free video training straight to your inbox.

Never miss a beat. Get KirkpatrickPrice video updates.

Our Latest Videos

SOC 2 Academy: Communicating with External Parties

SOC 2 Academy: Communicating with External Parties

/
When a service organization undergoes a SOC 2 audit, auditors will be looking to validate that they comply with the common criteria listed in the 2017 SOC 2 Trust Services Criteria. Common criteria 2.3 says, “The entity communicates with external parties regarding matters affecting the functioning of internal control.” What will an auditor look for when assessing this criterion? What do organizations need to do to comply with this requirement? Let’s discuss how to organizations should be communicating with external parties.
SOC 2 Academy: Communicating with Internal Parties

SOC 2 Academy: Communicating with Internal Parties

/
When a service organization undergoes a SOC 2 audit, auditors will be looking to validate that they comply with the common criteria listed in the 2017 SOC 2 Trust Services Criteria. Common criteria 2.2 says, “The entity internally communicates information, including objectives and responsibilities for internal control, necessary to support the functioning of internal control.” What will an auditor look for when assessing this criterion? What do organizations need to do to comply with this requirement? Let’s discuss communicating with internal parties during an audit.

SOC 1 Videos

Staying ahead in your industry comes down to one, important question. Can your clients trust you?  SOC 1 audit reports can help organizations gain a competitive advantage and client trust by maturing business practices and receiving third-party validation. This video series, presented by KirkpatrickPrice, answers the questions of what a SOC 1 report is, why you need one, and what the SOC 1 audit process involves.

Understanding Your SOC 1 Report: The 3 Objectives of COSO

SOC 2 Videos

How can you prove you’re not an at-risk vendor? How can you give your clients the assurance they need that you’re protecting their critical assets? SOC 2 audits help to address third-party risk concerns by evaluating internal controls, policies, and procedures that directly relate to the security of a system at a service organization. KirkpatrickPrice’s free video series on SOC 2 Reports covers everything from determining who should have a SOC 2 audit performed, selecting appropriate Trust Services Principles, and understanding the SOC 2 audit process itself.

SOC 2 Report Criteria and FAQs
What Will Be in My SOC 2 Report? The Seven Components of a SOC 2 Report
What is the Purpose of the SOC 2 Privacy Principle?

PCI DSS Videos

PCI – If you are a merchant, service provider, or sub-service provider who stores, processes, or transmits cardholder data, you know what a challenge it can be to undergo your annual PCI compliance audit. Don’t let the thought of this 394 control framework slow you down. Our exclusive PCI video series walks you through each of the 12 PCI DSS Requirements, and their sub-requirements, and examples of how to meet each of the requirements. Start watching this go-to resource today.

PCI Requirement 12.11.1 – Additional Requirement for Service Providers Only: Maintain Documentation of Quarterly Review Process
PCI Requirement 12.11 – Additional Requirement for Service Providers Only: Perform Reviews at Least Quarterly to Confirm Personnel Are Following Security Policies and Operational Procedures
PCI Requirement 12.10.6 – Develop a Process to Modify and Evolve the Incident Response Plan According to Lessons Learned and to Incorporate Industry Developments

HITRUST Videos

HITRUST – Have you been asked by a top client to become HITRUST certified? Are you looking for a better way to demonstrate compliance with HIPAA laws? What exactly is HITRUST and how does it apply to your organization? KirkpatrickPrice is a HITRUST CSF Assessor, prepared to help Business Associates understand who HITRUST is, what the CSF is, and how you can apply HITRUST certification to your organization. Check out our HITRUST video series hosted by HITRUST CSF Practitioner, Jessie Skibbe.

Understanding HITRUST - Top 5 HITRUST FAQs
5 Things You Need to Get Started with HITRUST Compliance

HIPAA Videos

HIPAA – Demonstrating compliance with the HIPAA Privacy and Security Rules can be an overwhelming challenge for business associates and covered entities. Let KirkpatrickPrice be your guide down the road to HIPAA compliance with this free video series. Presented by HIPAA Compliance Specialists, this series aims to answer all your questions on how you can prepare for a potential HIPAA audit from the OCR.

What Will Be in My HIPAA Report? The 4 Main Components to a HIPAA Report
What are HIPAA Physical Safeguards?
What Are Administrative Controls?

GDPR Videos

If your organization processes personal information coming from the European Union, you should begin learning about the General Data Protection Regulation (GDPR). This law gives data subjects more rights over their personal data and establishes security and privacy obligations for any organization around the world that is processing the data of an EU data subject, making the applicability of the law follow data rather than following a data subject or physical location. In these videos, learn from KirkpatrickPrice privacy experts about the basic principles of GDPR and how to best start your GDPR compliance journey.

GDPR Fundamentals: Data Protection Officers
GDPR Fundamentals: Roles Under the Law - Controllers, Processors, and Joint Controllers
GDPR Fundamentals: Legal Basis For Processing

Law of Data Security and Investigations

In these videos, KirkpatrickPrice partnered with attorney Benjamin Wright to create a series on information security and digital investigation topics. Cyber insurance, NDAs, employee awareness, consumer risk, incident response – we cover a variety of topics in this series! Security, legal, and investigative professionals can expect to learn how to manage the risks and the expectations that apply in law and ethics around information security and digital investigations.

Understanding Gramm Leach Bliley in Order to Secure Consumer Personally Identifiable Information
Advice for Making Legal Agreements via Electronic Communication
Non-Disclosure Agreement Risks - When and How to Sign a Non-Disclosure Agreement

Information Security

Want more privacy, security, and compliance training? No matter what industry you’re in, our online training library is packed full of information security and compliance guidance to help strengthen your security posture. Check out these videos for a variety of information security and technology topics.

Why You Need to Document Your Policies and Procedures
What Is Risk Management?