A-LIGN Blog

5 Steps to ISO Certification

5 Steps to ISO Certification

What are the steps to ISO certification? Our assessors have completed assessments against several International Organization for Standardization (ISO) standards, and can provide your organization on insights on the process for achieving ISO certification.

Read More

SEC Issues First Civil Penalty for Failure of Data Breach Disclosure

SEC Penalty Data Breach Disclosure

On February 21, 2018, the U.S. Securities and Exchange Commission (SEC) announced an update to its cybersecurity guidance that was first introduced in 2011 regarding a public company’s disclosure obligations related to cybersecurity. The updated guidance highlights new rules that a company must follow to ensure that policies and procedures are in place to address […]

Read More

SEC Approves Cybersecurity Guidance Revision

sec-approves-cybersecurity-guidance

Over the past year, cyber threats and risks have drastically increased in severity creating critical information security challenges, many of which have resulted in data breaches.

Read More

Government Agencies Fight to Regulate Cryptocurrencies

regulating-cryptocurrency

News headlines continue to discuss the popular topic of cryptocurrencies. Whether it’s bitcoin or blockchain, the emerging technologies and concepts continue to impact and complicate the business world.

Read More

3 Steps to Achieve GDPR Compliance

achieve-gdpr-compliance-thumbnail

Are You Ready for GDPR’s May 2018 Deadline? How can your organization achieve GDPR compliance? Consumer privacy continues to become a mounting concern for organizations and with the implementation deadline for GDPR quickly approaching the focus on privacy has increased.

Read More

Security Considerations for Using Blockchain Technology in Healthcare

Cybersecurity-Blockchain

Businesses continue to innovate and adopt new technologies with the goal of making operational processes more efficient. Recently, the newest technology trend, blockchain, has gained much attention from companies, technology innovators, and regulators. Although the technology itself is not new, it’s adoption into the commercial world is.

Read More

A-LIGN’s Commitment to Quality

Commit-to-quality

What does it mean to be committed to quality? Through our quality assurance process and team, and accreditations, A-LIGN ensures that your organization receives a quality report that meets the guidelines set by the relevant audit standard. Our reports satisfy third-party inquiries and exceeds customer expectations by upholding the highest standard of work.

Read More

SOC Reports: Type 1 vs Type 2 vs Readiness Assessment

Type-1-vs-Type-2-vs-Readiness-Assessment

Your client requested a SOC report, but what’s next? For organizations seeking a SOC 1, SOC 2, or ISAE 3402, there are two attestation options available: Type 1 and Type 2. Additionally, a readiness assessment can be performed to prepare your organization for the attestation.

Read More

Understanding Microsoft SSPA Attestation

Microsoft-sspa

About Microsoft SSPA Attestation The Microsoft Supplier Security and Privacy Assurance Program (SSPA), formerly known as the Vendor Privacy Assurance Program, is an initiative designed to standardize and strengthen how Microsoft’s customer, partner, and employee information is handled by Microsoft vendors worldwide. 

Read More

FFIEC Cybersecurity Assessment Tool: Frequently Asked Questions

FFIEC-image

What is the FFIEC Cybersecurity Assessment Tool? In response to the current cybersecurity landscape, the Federal Financial Institutions Examination Council (FFIEC) has developed the Cybersecurity Assessment Tool (Assessment).

Read More