Blog

The Five Categories of the AICPA Trust Services Criteria

When an organization decides to undergo a SOC 2 examination, one of the decisions that must be made is what Trust Services Criteria (TSC) categories should be in scope. There are five categories which make up the TSC Read More

Published On November 30, 2023

Addressing AI Cybersecurity Risks in Healthcare Organizations

Let’s take a closer look at what you can expect throughout the SOC 2 process, including the length of examinations, how to tailor the examination to your requirements, and key questions to ask to select a qualified partner. Read More

Published On November 8, 2023

The Importance of Sound Risk Management in the Wake of the SEC's Recent Charge Against SolarWinds

Let’s take a closer look at what you can expect throughout the SOC 2 process, including the length of examinations, how to tailor the examination to your requirements, and key questions to ask to select a qualified partner. Read More

Published On November 1, 2023

Demystifying the SOC 2 Process

Let’s take a closer look at what you can expect throughout the SOC 2 process, including the length of examinations, how to tailor the examination to your requirements, and key questions to ask to select a qualified partner. Read More

Published On October 30, 2023

NIST Drafts Major Update to Its Widely Used Cybersecurity Framework

In the first major update since its inception, the National Institute of Standards and Technology (NIST) will be launching the Cybersecurity Framework (CSF) 2.0 in January 2024.[1] Read the blog to learn more. Read More

Published On October 26, 2023

Artificial Intelligence Poses Cybersecurity Risks in Healthcare

Medical device security is top-of-mind for all healthcare organizations, and new FDA regulations address their complexity. Read the blog to learn more. Read More

Published On September 28, 2023

The Internet of Medical Things is here, and so are new FDA regulations. Here’s what you need to know.

Medical device security is top-of-mind for all healthcare organizations, and new FDA regulations address their complexity. Read the blog to learn more. Read More

Published On March 14, 2023

Why you should get hacked...on purpose

With the average cost of a healthcare data breach exceeding $10 million and 60% of healthcare breaches stemming from vendors, it’s no surprise there has been an uptick in contracting requirements around third-party assurances like HITRUST, SOC 2, and others. These assurances are often tied to contract execution, particularly for those third parties that are handling significant amounts of PHI. Read More

Published On February 21, 2023

The Five Categories of the AICPA Trust Services Criteria

Addressing AI Cybersecurity Risks in Healthcare Organizations

The Importance of Sound Risk Management in the Wake of the SEC's Recent Charge Against SolarWinds

Demystifying the SOC 2 Process

NIST Drafts Major Update to Its Widely Used Cybersecurity Framework

Artificial Intelligence Poses Cybersecurity Risks in Healthcare

The Internet of Medical Things is here, and so are new FDA regulations. Here’s what you need to know.

Why you should get hacked...on purpose

Featured Blog Posts

HITRUST AI Security Assessment and Certification

Choosing the Right Security Framework: Why One Size Doesn’t Fit All (and How to Fill the Gaps)

HIPAA Security Rule 2.0

The Future of HIPAA Regulations

Find the right RITHM for you.