by Taylor Smith | May 23, 2019 | ISMS Consulting
We recently had a client ask us about how CREST and SANS compare. This post strives to answer that question in a “quick but thorough” manner. CREST and SANS are both prominent official bodies serving the information security industry worldwide, and both offer... by Bhaumik Shah | Jan 19, 2018 | ISO 27001 Certification
The OWASP Application Security Verification Standard (ASVS) is a list of application security requirements or tests that architects, developers, testers, security professionals, and even consumers can use to define what constitutes a secure application. In this post,... by Jeremy Sporn | Nov 30, 2017 | ISMS Consulting
The Health Information Trust Alliance (HITRUST) Common Security Framework (CSF) is steadily gaining traction in the healthcare industry, with major players like Anthem, Highmark, Humana and UnitedHealth Group requiring their business associates (BAs) to obtain HISTUST... by Feather Bokker | Nov 2, 2017 | ISO 27001 Certification
An ISO 27001 certification audit can be intimidating, especially for those new to the world of management standards. The right preparation can not only install confidence, but also increase your chances of a smooth process and a successful outcome. This post outlines... by Mosi Platt | Jun 14, 2017 | ISO 27001 Certification
Note: This post was originally written in 2015 but was updated in June 2017 with the most recent available data. Common questions we receive regarding ISO 27001 certification for law firms include “What do other law firms do?” or “How do we compare to other law firms...
