Article

5 Steps To Developing A Corporate Compliance Program

Corporate compliance programs are to a company's business operations; you are required by law to comply with various regulations (read: not optional), and a compliance program lets a company ...
December 19, 2022
Article

What Is A Compliance Manager’s Role?

What is a Compliance Manager? Corporate compliance programs exist to steer an organization's employees toward certain standards of conduct, as dictated by laws, regulations, and company pol ...
February 19, 2021
Article

Compensating Controls: What You Need to Know

Compensating Controls: What You Need to Know   PCI DSS compliance comes with over 100 pages of requirements. However, the Appendices offer ways to think about how you can limit your ...
July 13, 2017
Article

Legal Liability in Information Security: How Compliance Can Be Used to Protect Assets

Although the word Wannacry may feel overused by now, one of the most important things going forward is going to be reviewing legal liability in information security arising out of a ransomwa ...
June 2, 2017
Article

Infosec Compliance Awareness Saves Lives from Wannacrys

On Friday, May 12, the WannaCry ransomware attack proved the importance of infosec compliance awareness.  The weaponization of the Microsoft software’s vulnerabilities shut down the UK’ ...
May 18, 2017
Article

Better Than Yoda: CIOs, GRC Tools, Principled Performance

A Jedi uses the Force for knowledge and defense, never for attack. – Yoda To be a true GRC Yoda, an organization must enact a principled performance based program using knowledge as a d ...
December 22, 2016