Compliance

A-LIGN Selected in First Release of ANAB-Accredited ISO 27701 Certification Bodies

The achievement allows A-LIGN to certify organizations against the ISO/IEC 27701:2019 Standard  

Read More

Federal Compliance Definitions: A Glossary of Terms

Federal Compliance Definitions: A Glossary of Terms

The world of compliance is filled with acronyms and abbreviations for some of its more complicated regulation systems and organizations. There is perhaps no better example than the long list of acronyms associated with federal compliance laws.

Read More

Understanding PCI DSS Requirement 6.4.6

Understanding PCI DSS Requirement 6.4.6

How do significant changes affect PCI DSS? PCI DSS 6.4.6. is a requirement for organizations to use to ensure that appropriate controls have been reviewed and implemented.

Read More

Your Guide to FedRAMP, FISMA and NIST

FedRAMP, FISMA and NIST

The federal government processes large amounts of important data daily, which is why it is vital for government organizations to understand and undergo federal assessments such as FedRAMP, FISMA, NIST and NIST SP 800-171.

Read More

How to Make the Most of Your Compliance Report

Leveraging Your Compliance Report

Undertaking compliance audits are vital in order to best position your organization to provide your clients with the services and security they require.

Read More

GRC Tools: Hype or Reality? (Florida CPA Today)

Understanding that there is a time commitment and financial outlay to implementing a GRC solution, it is important to consider the return on investment (ROI). The benefits of a properly implemented GRC solution certainly live up to the hype.

Read More

Three Healthcare Trends To Watch In 2020 (Electronic Health Reporter)

As we look ahead into 2020, technology will continue to lead to new developments in the ever-changing healthcare industry, but it will also leave room for new threats.

Read More

How A-LIGN Helped Cloudreach Become PCI DSS Compliant

How A-LIGN Helped Cloudreach Become PCI DSS Compliant

It is essential for any organization that processes, stores or transmits credit card data to be compliant with the Payment Card Industry Data Security Standard (PCI DSS)—and as the world’s largest cloud-native company, Cloudreach certainly falls within these parameters.

Read More

HITRUST Releases CSF v9.3

HITRUST Releases CSF v9.3

On October 28, 2019, HITRUST released CSF v9.3 which incorporates new privacy and security standards.

Read More

HITRUST Releases Guidance for Reliance on the Work of Others

HITRUST Guidance

On September 11, 2019 HITRUST released updated guidance regarding the reliance of others as part of the HITRUST certification process. This includes a more defined scope for reliance on the results of audits, assessments, and inspections that have been completed in the past.

Read More