From SAS 70 to SOC 2: Understanding the Timeline
Discover the key differences between SOC 2 and SAS 70, and learn why SOC 2 is the modern standard for ensuring data security and compliance.
Head of GRC
Kyle Morris, a seasoned Security Compliance Expert, holds a Bachelor’s degree in Computer Science and is a Certified Information Systems Auditor (CISA). With extensive experience at a Big 4 IT audit firm, Kyle has expertise across industries like banking, mining, manufacturing, and healthcare.
Kyle specializes in guiding organizations globally through compliance frameworks such as SOC 2, ISO 27001, GDPR, NIST, and CMMC, driven by his passion for knowledge sharing and continuous learning.
Discover the key differences between SOC 2 and SAS 70, and learn why SOC 2 is the modern standard for ensuring data security and compliance.
HITRUST vs. ISO 27001: Compare the two frameworks and choose the best fit for your organization’s security needs.
Learn why AI policy is vital for ethical development and how regulations like the EU AI Act shape the future.
Learn about the NIS2 Directive’s impact on your organization and key steps for compliance with new cybersecurity standards.
Discover how the NIS2 Directive enhances EU cybersecurity and protects digital assets. Learn why compliance is crucial for your business.
This blog delves into CMMC, the introduction of CMMC 2.0, what’s changed, and what it means for your business.
How do you keep tabs on your vendors without draining resources? Here’s our list of best practices for vendor risk management.
Take a look at the intricacies of a ISO 27001 report and where it falls within the internal audit process.
This quick guide breaks down the steps of achieving CMMC so your business can protect sensitive government data.
Here are the top 5 mistakes organizations make during ISO 27001 implementation and how to steer clear of them.
Key Considerations for NIST 800-53 Control Families, How They Work, and How to Get Started With Implementing Them.
What you need to know about getting CMMC certified as a contractor within the Defense Industrial Base (DIB).