by Taylor Smith | May 23, 2019 | ISMS Consulting
Reading Time: 2 minutes
We recently had a client ask us about how CREST and SANS compare. This post strives to answer that question in a “quick but thorough” manner. CREST and SANS are both prominent official bodies serving the information security industry...
by Richard Barrus | Jan 19, 2018 | ISO 27001 Certification
Reading Time: 3 minutes
The OWASP Application Security Verification Standard (ASVS) is a list of application security requirements or tests that architects, developers, testers, security professionals, and even consumers can use to define what constitutes a...
by Richard Barrus | Nov 30, 2017 | ISMS Consulting
Reading Time: 2 minutes
The Health Information Trust Alliance (HITRUST) Common Security Framework (CSF) is steadily gaining traction in the healthcare industry, with major players like Anthem, Highmark, Humana and UnitedHealth Group requiring their business...
by Richard Barrus | Nov 2, 2017 | ISO 27001 Certification
Reading Time: 3 minutes
An ISO 27001 certification audit can be intimidating, especially for those new to the world of management standards. The right preparation can not only install confidence, but also increase your chances of a smooth process and a...
by Richard Barrus | Jun 14, 2017 | ISO 27001 Certification
Reading Time: 5 minutes
Note: This post was originally written in 2015 but was updated in June 2017 with the most recent available data. Common questions we receive regarding ISO 27001 certification for law firms include “What do other law firms do?” or...