Simplified Compliance
CyberCompass works across multiple industries and standards to simplify compliance. No matter if you face a single regulation or multiple, we reduce the complexity with our one-stop solution. From your regulation specific risk assessment to a risk management plan, policies and procedures along with audit ready documentation and support, we’ve got you covered.
How Accurate Is Your SPRS Score?
Don’t Get Yourself in Hot Water with the Federal Government CyberCompass has completed several NIST 800-171 assessments as part of Cybersecurity Maturity Model Certification Level 2.0 (CMMC 2.0) for Defense Industrial Base (DIB) companies and found previously...
Providing Proof of Compliance
Every day, more and more small and mid-size businesses are asked to show proof of their cybersecurity compliance to maintain business contracts. These requests have different names, such as “Third-Party Assessment Questionnaire”, “Vendor Cybersecurity Assessment” or...
Establishing a Culture of Compliance
The popular adage states, “a chain is only as strong as its weakest link.” This is especially true with cyber resilience since cyber criminals need trick only one victim or access one entry point to damage or infect the entire network. Because of this level of...
HIPAA Prevention: Cheaper Than Recovery
HIPAA prevention standards are not new. However, the expectation of patient and client data security has ramped up recently. Very public reports of breaches brought the issues directly to consumers. The expectation is to protect private health information (PHI)...
Cybersecurity Awareness Heroes
The top threat facing any organization today is the staff member working from a computer! How do you make your entire staff Cyber Security Awareness Heroes? Here are some easy steps that will substantially improve cyber security awareness.
Cybersecurity and the Endless List of Regulation Compliance
Governments around the globe are now requiring all types of companies to be compliant with some type of standard to better protect client data as a requirement of doing business.
Infosec in Healthcare: a New Priority
In our ever changing digital world, healthcare CEOs need a mind shift. No longer is patient safety only limited to physical safety; information security is just as important.
Is Your SRA Valid?
You have a Security Risk Assessment, but are you sure they delivered everything you need? Make sure you are getting holistic coverage.
Ignorance is Not Innocence: HITECH Penalty Tiers Established
Healthcare has repeatedly been a prime target for cyber criminals. But not all breaches are the same. New definitions of the HITECH act establish different penalty tiers based on culpability.
