Compass IT Compliance Blog

How Vendor Management Software Can Help with Regulatory Compliance

by Geoff Yeagley on July 14, 2015 at 9:34 AM

Read Story

Security Awareness Training is No Joke!

by Derek Boczenowski on June 23, 2015 at 9:51 AM

Without a doubt, almost every type of IT audit contains a section on security awareness training. And in many companies, it is a weakness that can be exploited easier than trying to hack a firewall or compromise a server. In many cases, it can be as easy as sending an email or making …

Read Story

A Key To Your Risk Management Strategy: Cybersecurity Insurance

by Geoff Yeagley on June 16, 2015 at 10:34 AM

I went to a conference back in October and the keynote speaker was a former NSA Director. He made a brilliant point during his presentation that was as follows: There are two types of companies, one that has been breached and the other is the one that has been breached but doesn’t kno …

Read Story

Security Awareness Training: The First Line of Defense

by Adam Cravedi on June 3, 2015 at 10:29 AM

Compass IT security auditors are often asked if there is a single “most important” factor involved in safeguarding a business’s data assets.

Read Story

Cybersecurity Insurance: Think You're Covered?

by Geoff Yeagley on May 28, 2015 at 9:46 AM

IT security breaches have become so commonplace in recent years that they barely seem to raise an eyebrow anymore: Target, Bank of America, I.R.S., the list goes on. With that rise, the claims on Cybersecurity Insurance have risen as well.

Read Story

IT Auditing - Why It's a Smart Investment

by Geoff Yeagley on May 21, 2015 at 8:58 AM

We have all heard the term "Audit" and most of the time it makes us cringe. The first thing that we think of is someone in a suit coming into our organization and poking holes in our Technology, People and Processes that we have built based on the needs of our company and business. Ho …

Read Story