The National Institute of Standards and Technology's Special Publication 800-171 (NIST SP 800-171), Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations, is a cybersecurity framework to help organizations that... Read More
Blog
ISO 9001 Internal Audit Checklist
ISO 9001 is an internationally recognized standard for implementing a quality management system (QMS) focused on delivering products or services that meet customer expectations and regulatory requirements. It was developed... Read More
What Are the Similarities and Differences Between FISMA vs. FedRAMP Certification?
The U.S. federal government has many laws and regulations intended to assure strong cybersecurity for government agencies. Two of the most important are the Federal Information Security Management Act (FISMA)... Read More
Manual GRC: Why Spreadsheets Are Not the Solution
In today's rapidly evolving business environment, the stakes for maintaining robust governance, risk management, and compliance (GRC) practices have never been higher. Regulators and auditors are scrutinizing areas such as... Read More
COSO-Based Internal Auditing
Internal audit and compliance departments benefit from having a comprehensive framework to use to perform corporate risk assessment and internal control testing as well as fight fraud. The most popular... Read More