.webp?width=2169&height=526&name=Compass%20regular%20transparent%20website%20(1).webp "Compass IT Compliance Logo")
-1.webp?width=2169&height=620&name=Compass%20regular%20transparent%20website%20smaller%20(1)-1.webp "Compass IT Compliance")
New CJIS Requirements: What You Need to Know
by Kelly O’Brien on March 20, 2024 at 2:45 PM
In a recent Compass IT Compliance blog, we delved into the fundamentals of the Criminal Justice Information Services (CJIS) Security Policy (CSP), its applicability, and the criticality of CJIS Compliance, terminology, and the thirteen policy areas applicable at the time of that writi …
Staying HIPAA Compliant While Leveraging Telehealth
by Patrick Hughes on March 13, 2024 at 3:00 PM
In the rapidly evolving landscape of healthcare, telehealth has emerged as a pivotal technology, offering unprecedented convenience and accessibility to patients and providers alike. However, as healthcare organizations increasingly adopt these digital health services, the imperative …
NIST Cybersecurity Framework 2.0 – Key Takeaways
by Derek Boczenowski on March 7, 2024 at 1:30 PM
Last week, the National Institute of Standards and Technology (NIST) unveiled the second version of its Cybersecurity Framework (CSF), marking the first major new updates to NIST CSF since the framework's inception ten years ago. Initiated by Executive Order 13636, the development of …
Understanding the Key Differences Between IT Governance & Compliance
by Derek Boczenowski on February 2, 2024 at 3:00 PM
In the dynamic landscape of business expansion and evolution, distinguishing between IT governance and compliance becomes not just beneficial, but essential. While both are pillars in safeguarding organizations against a myriad of risks, they differ in their core objectives, methodolo …
vCISO vs. CISO: What's the Difference?
by CJ Hurd on January 11, 2024 at 11:19 AM
The changing nature of security has resulted in the rise and development of important positions focused on protecting sensitive data. Alongside the role of the Chief Information Security Officer (CISO) a newer role has emerged; the Virtual CISO (vCISO). Although both roles aim to impr …
Cell Phone Usage at Work & HIPAA Compliance: Uncovering the Risks
by Derek Boczenowski on November 20, 2023 at 1:00 PM
The healthcare industry is increasingly embracing mobile technology, integrating smartphones, tablets, and other portable devices into everyday operations across hospitals, clinics, and other workplaces. This shift towards mobile integration, while offering substantial benefits, also …