How to Know if an MSP is PCI DSS Compliant

Managed service providers (MSPs) provide a valuable service by outsourcing information technology services, but they need to be compliant with the Payment Card Industry Data Security Standard (PCI DSS) – and just because they say they’re PCI DSS compliant doesn’t mean they’re a good fit. Below are our tips to go beyond the PCI DSS logo on an MSP’s website and determine whether they’re truly compliant.

Continue reading “How to Know if an MSP is PCI DSS Compliant”

The State of GDPR, One Year Later

Enacted on May 25, 2018, the General Data Protection Regulation (GDPR) shook up the privacy world by enacting some of the strongest consumer protection laws ever seen. Any industry that processes the personal data of European Union residents was affected, and the regulation was designed to force organizations to implement the appropriate processes to manage consumer privacy and build consumer trust.
One year later, we reflect on what’s changed – and where we’re headed in 2019.

Continue reading “The State of GDPR, One Year Later”

Everything You Need to Know About Bridge Letters

Bridge letters are an important element of SOC 1 and SOC 2 examinations that you may not be aware of and can help provide your clients with additional confidence regarding the effectiveness of your organization’s controls environment at no additional cost or time.

Continue reading “Everything You Need to Know About Bridge Letters”

Using HITRUST for Industries Beyond Healthcare

Organizations around the world, especially ones in the HITRUST XChange program, are moving to quickly implement the HITRUST Common Security Framework (CSF) for their organization. With the recent HITRUST CSF v9.2 update, organizations across all industries – not just healthcare – can benefit greatly from the HITRUST framework.

Continue reading “Using HITRUST for Industries Beyond Healthcare”

Leveraging Your Compliance Report

Compliance examination reports are more than an attestation of your commitment to quality and security; they can drive revenue, build client trust and position your organization as a cybersecurity leader in your industry.

Continue reading “Leveraging Your Compliance Report”

A-LIGN’s Customized GDPR Packages

Experience customized solutions from A-LIGN with General Data Protection Regulation (GDPR) packages designed to assist you on your path to becoming GDPR compliant. Continue reading “A-LIGN’s Customized GDPR Packages”

Leveraging a SOC 2 Examination to Differentiate Your MSP

IT security is an ever-growing concern from consumers and businesses. The last few years of breaches resulting from insecure IT environments have changed the buying process and selection criteria for many organizations. Continue reading “Leveraging a SOC 2 Examination to Differentiate Your MSP”

Compliance Doesn’t Have to be Scary

Every October during National Cybersecurity Awareness Month, we show you why cybersecurity is vital to protecting your organization from outside threats – but that’s only one side of the coin when it comes to defense. Continue reading “Compliance Doesn’t Have to be Scary”