.webp?width=2169&height=526&name=Compass%20regular%20transparent%20website%20(1).webp "Compass IT Compliance Logo")
-1.webp?width=2169&height=620&name=Compass%20regular%20transparent%20website%20smaller%20(1)-1.webp "Compass IT Compliance")
Managing Third-Party Vendor Risk without a Dedicated Team
September 23, 2025 at 2:00 PM
How Does a Virtual CISO Help with Cybersecurity Risks?
September 19, 2025 at 2:30 PM
What Is AI Voice Spoofing? How to Protect Your Organization
September 17, 2025 at 3:17 PM
Top Ways to Improve IT Security for Small Businesses
September 12, 2025 at 12:19 PM
Red Team Testing: When Your Organization Is Ready (& Why It Matters)
September 8, 2025 at 2:15 PM
Security Questionnaires: How to Streamline Responses & Save Time
September 2, 2025 at 1:46 PM
Steps to Prepare Your SOC 2 Compliance Documentation
August 26, 2025 at 1:42 PM
What Are the Best Ways to Prevent Social Engineering Attacks?
August 20, 2025 at 1:41 PM
What Is the Best Approach for Incident Response Planning?
August 8, 2025 at 1:24 PM
Why Is Social Engineering a Threat to Businesses?
August 7, 2025 at 11:00 AM
Cybersecurity Matters: How Small Mistakes Create Big Problems
August 1, 2025 at 2:36 PM
Understanding AI: What It Is, How It Works, & Why It Needs Oversight
July 31, 2025 at 12:41 PM
Higher Education’s Push Toward a Virtual CISO Approach
July 25, 2025 at 10:16 AM
CIS or NIST CSF? Choosing the Right Cybersecurity Framework (Or Both)
July 24, 2025 at 1:00 PM
Rethinking SOC 2 Audits with Purpose-Built Platforms
July 21, 2025 at 2:38 PM
What Are the Key Steps in Preparing for a SOC 2 Readiness Assessment?
July 15, 2025 at 10:51 AM
HIPAA Compliance in 2025: What’s Changing & Why It Matters
July 10, 2025 at 2:22 PM
Why the ‘CISO’ in Virtual CISO Services Shouldn’t Scare You
July 8, 2025 at 1:00 PM
What Is a Managed Security Service Provider (MSSP)?
July 1, 2025 at 4:53 PM
The SOC for Cybersecurity Report: A Complete Guide
June 26, 2025 at 10:53 AM
Reporting Your DoD Self Assessment (SPRS) Score: What to Know
June 10, 2025 at 2:59 PM
How Much Does Penetration Testing Cost In 2025? Full Transparency
June 3, 2025 at 11:30 AM
Shipbuilders Council of America Spring Membership Meeting Takeaways
May 30, 2025 at 12:50 PM
Your SOC 2 Audit Is Complete – What Comes Next?
May 28, 2025 at 4:03 PM
10 Common Myths About SOC 2 Audits Debunked
May 28, 2025 at 4:01 PM
The Hidden Risks of User-Installed Apps in Microsoft 365
May 23, 2025 at 11:09 AM
Misconfigured Microsoft 365: A Growing Threat Surface
May 15, 2025 at 1:49 PM
Is Your Internal Pen Test Just a Glorified Vulnerability Scan?
May 14, 2025 at 12:04 PM
Why One-Size-Fits-All vCISO Security Programs Fall Short
May 9, 2025 at 3:17 PM
What Makes an Industry-Leading Cyber Insurance Policy Today?
May 7, 2025 at 11:28 AM
CMMC & the Executive Order: A New Era for Shipbuilders
May 2, 2025 at 2:23 PM
SOC 2 & Managed Security Services: A Perfect Partnership for SMBs
April 25, 2025 at 10:30 AM
Copyright Infringement Scams - All You Need to Know
April 24, 2025 at 1:25 PM
Replacing the FFIEC CAT with NIST CSF 2.0
April 18, 2025 at 11:26 AM
Subcontractor Survival: Meeting Prime Contractor CMMC Requirements
April 17, 2025 at 1:53 PM
Selecting Your SOC 2 Type 2 Observation Period
April 11, 2025 at 10:30 AM
Insights from Presenting at URMIA Northeast Regional Conference
April 9, 2025 at 10:00 AM
How Long Does a SOC 2 Audit Take to Complete?
April 4, 2025 at 9:44 AM
7 Ways to Reduce Your PCI DSS Compliance Scope
April 2, 2025 at 1:30 PM
What Are the Best Cybersecurity Services for Protecting Sensitive Data?
March 24, 2025 at 4:34 PM
What Are the Most Effective Ways to Build a Culture of Security in an Organization?
March 14, 2025 at 2:23 PM
Top Security Tools to Simplify Your SOC 2 Compliance Journey
March 13, 2025 at 3:52 PM
SOC 2 for Healthcare: A Compliment to HIPAA Compliance
March 8, 2025 at 1:00 PM
What Are the Most Common Causes of Data Breaches in Financial Services?
March 7, 2025 at 12:42 PM
Is the Unpaid Toll Text a Scam? Cybersecurity Experts Weigh In
March 3, 2025 at 1:57 PM
FinTech Security: How SOC 2 Drives Investor & Client Trust
February 28, 2025 at 2:45 PM
What Are the Benefits of Conducting Regular Vulnerability Assessments?
February 25, 2025 at 12:45 PM
How Accurate Was Netflix's 'Zero Day'? A Realistic Analysis
February 25, 2025 at 11:38 AM
Why SOC 1 and SOC 2 Are Essential for Venture Capital (VC) Firms
February 24, 2025 at 1:50 PM
Shifting from a SOC 2 Type 1 Audit to a Type 2 Audit
February 24, 2025 at 1:44 PM
How Do Cybersecurity Threats Impact Small Businesses?
February 21, 2025 at 1:00 PM
QR Code Package Scam: What You Need to Know
February 14, 2025 at 1:14 PM
Aligning Zero Trust Principles with SOC 2 Trust Service Criteria
February 11, 2025 at 4:20 PM
CJIS Security Policy v6.0 – Key Updates You Need to Know
February 10, 2025 at 2:15 PM
Cyber Insurance in 2025: Navigating Emerging Threats & Trends
February 6, 2025 at 4:20 PM
How Can I Hire a Virtual CISO For My Business?
February 4, 2025 at 3:15 PM
New PCI Requirements Released for SAQ A Merchant Validation
February 3, 2025 at 11:49 AM
Physical Security Assessments: Covert Entry vs Escorted Walkthrough
January 31, 2025 at 1:53 PM
How Can Businesses Stay Updated on Evolving Cybersecurity Threats?
January 30, 2025 at 1:00 PM
When SOC 2 Compliance Makes Sense
January 28, 2025 at 3:51 PM
Understanding SOC 2 Compliance & Vendor Management
January 24, 2025 at 11:59 AM
What Will Quantum Computing Mean for Passwords & Encryption?
January 22, 2025 at 3:30 PM
Chinese RedNote App Rises Amid TikTok Ban: New Privacy Concerns
January 17, 2025 at 4:17 PM
Understanding DoD Impact Levels for Cloud Security
January 15, 2025 at 12:59 PM
SAS 145 and IT General Controls: What Organizations Need to Know
January 13, 2025 at 2:30 PM
Leveraging a Virtual CISO (vCISO) for SOC 2 Compliance
January 10, 2025 at 1:00 PM
What is TISAX Assessment Level 2.5 (AL 2.5)?
January 8, 2025 at 2:21 PM
Unlocking Higher Education Security: SOC 2 Compliance & Universities
January 6, 2025 at 3:27 PM
Domain Name Server (DNS) Hijacking Defined
January 6, 2025 at 11:43 AM
What Is the OSI Model? 7 Layers Explained
January 3, 2025 at 11:09 AM
Be Cautious When Following Links on Instagram
January 2, 2025 at 2:05 PM
Should You Outsource Your IT Department?
December 31, 2024 at 3:10 PM
Do SOC 2 Auditors Read and Review Code?
December 26, 2024 at 1:04 PM
What Is a Disaster Recovery Team in Cybersecurity?
December 24, 2024 at 2:00 PM
NIST AI Risk Management Framework Explained
December 20, 2024 at 11:00 AM
The TikTok Ban: What You Should Know
December 16, 2024 at 11:47 AM
Why Year-End is the Perfect Time for Your SOC 2 Audit
December 13, 2024 at 3:06 PM
Here's Why Your Car Dealership Needs Cybersecurity
December 9, 2024 at 2:10 PM
What Is a SOC 1 Audit? A Guide to the Report
December 5, 2024 at 4:18 PM
December 2, 2024 at 1:45 PM
Season of Giving or Taking? Protect Yourself from Holiday Scams
November 25, 2024 at 2:11 PM
The Importance of SOC 1 Reports in 401(k) Audits
November 22, 2024 at 12:00 PM
PCI DSS 4.0 Password Requirements: A Guide to Compliance
November 20, 2024 at 2:16 PM
Cybersecurity vs Computer Science: Which Degree to Choose?
November 15, 2024 at 1:42 PM
Year-End Audit Crunch: Preparing for SOC 2 When Everyone Else Is
November 13, 2024 at 4:46 PM
Almost Fooled by a Lululemon “Sale”: A Dad’s Lesson on Online Scams
November 8, 2024 at 10:09 AM
Cyber Insurance & AI: Are You Fully Covered and Secure?
November 7, 2024 at 12:15 PM
Cybersecurity Acronyms You Need to Know – Glossary
November 5, 2024 at 3:29 PM
Essential Elements of an Effective Virtual CISO (vCISO) Program
October 30, 2024 at 4:32 PM
What Happens if You “Fail” a SOC 2 Examination?
October 25, 2024 at 9:43 AM
What Is a SOC 2 Bridge Letter?
October 22, 2024 at 2:45 PM
Tesla Optimus Robots - A New Attack Surface for Hackers?
October 22, 2024 at 11:10 AM
SOC 2 vs. C5 Compliance: A Comprehensive Guide
October 21, 2024 at 1:03 PM
The Value of Penetration Testing in SOC 2 Audits
October 18, 2024 at 10:00 AM
Will SOC 2 Replace ISO 27001 in Europe?
October 16, 2024 at 12:30 PM
New York Implements Stricter Hospital Cybersecurity Regulations
October 15, 2024 at 5:06 PM
HECVAT vs. SOC 2: Find Out the Difference
October 10, 2024 at 3:30 PM
Does Fitbit App Collect Sensitive Data? Exploring Privacy Questions
October 10, 2024 at 1:20 PM
What Are the 3 Important Rules for HIPAA Compliance?
October 9, 2024 at 12:00 PM
What is a SOC 2 Gap Assessment? The First Step to Compliance
October 8, 2024 at 12:00 PM
SOC 2 Common Criteria List: CC-Series Explained
October 4, 2024 at 2:30 PM
SOC 2 vs. NIST: A Comprehensive Comparison
October 2, 2024 at 1:00 PM
Internal vs External Penetration Testing: What's The Difference?
September 27, 2024 at 10:15 AM
Their Risk is Our Risk (Case Study Draft)
September 25, 2024 at 3:20 PM
SOC 2 Password Requirements - A Simple Guide
September 24, 2024 at 3:45 PM
Data: The Secret Sauce to Surviving Business Disasters
September 18, 2024 at 12:30 PM
Big vs. Small CPA Firms: Which Fits Your SOC 2 Needs?
September 17, 2024 at 1:00 PM
What Platforms Are SOC 2 Compliant? Find Out Here!
September 13, 2024 at 1:20 PM
Understanding the Difference Between HIPAA & HITRUST
September 12, 2024 at 11:30 AM
ISO 27001 vs. SOC 2: Discover the Differences
September 10, 2024 at 1:00 PM
Penetration Testing Phases: Steps in the Process
September 6, 2024 at 1:00 PM
Exploring Rakuten Privacy and Data Collection Concerns
September 6, 2024 at 11:22 AM
Achieving SOC 2 Compliance for Artificial Intelligence (AI) Platforms
September 4, 2024 at 1:09 PM
Cyber Incidents - Not if, but When (And When Just Happened)
August 29, 2024 at 11:00 AM
How Long Is A SOC 2 Certification Good For?
August 27, 2024 at 1:00 PM
How Often Should a SOC 2 Report Be Updated?
August 20, 2024 at 1:00 PM
What to Do if Your Elderly Parent Is Being Scammed
August 16, 2024 at 10:45 AM
Penetration Testing: Black Box vs. White Box vs. Gray Box
August 13, 2024 at 1:15 PM
How Small Businesses Can Mitigate Cyber Risks
August 12, 2024 at 10:51 AM
Understanding SOC 2 Audit Opinions: An Auditor’s Perspective
August 8, 2024 at 12:45 PM
What Is a Firewall? Definition & Best Practices
August 6, 2024 at 1:15 PM
How Effective Is Truecaller at Protecting You from Scams?
July 31, 2024 at 1:42 PM
HITRUST Certification vs. SOC 2: A Simple Comparison
July 26, 2024 at 11:30 AM
Integrating Cybersecurity Education in the K-12 Curriculum
July 25, 2024 at 4:07 PM
Lessons Learned from the CrowdStrike Tech Outage
July 22, 2024 at 3:00 PM
Which NIST Standard Is Most Important for Small Businesses?
July 19, 2024 at 2:53 PM
Beyond Data Classification: Unlocking the Power of Data Insights
July 17, 2024 at 11:30 AM
Nobody Is Exempt from Vendor Security Questionnaires
July 12, 2024 at 12:00 PM
Once Human Terms of Service Highlights Growing Privacy Concerns
July 10, 2024 at 4:45 PM
What Are the 5 Trust Services Criteria (TSC) for SOC 2?
July 10, 2024 at 1:00 PM
Is a Cybersecurity Degree Worth It? Considering Pros & Cons
July 5, 2024 at 11:30 AM
A Detailed History of SOC 2 Compliance
July 2, 2024 at 12:30 PM
Protecting Seniors from Scams: Thelma Movie Lessons (2024)
June 28, 2024 at 4:30 PM
CDK Global Hit by Cyberattacks: The Impact on Auto Dealerships
June 27, 2024 at 2:45 PM
Brute Force Attacks: How To Safeguard Your Password
June 25, 2024 at 2:00 PM
Top 10 Benefits of Embracing Cloud Transformation in Your Business
June 20, 2024 at 1:30 PM
Human Risk Management (HRM) Defined: What You Need to Know
June 14, 2024 at 9:42 AM
10 Best Undergraduate Cybersecurity Programs in 2024
June 11, 2024 at 10:50 AM
How Data Classification Can Combat Data Sprawl & Enhance Efficiency
June 4, 2024 at 11:00 AM
Phishing vs. Pharming: What's the Difference?
May 29, 2024 at 4:43 PM
Baby Reindeer: What Can Be Done to Combat Cyber Stalking?
May 24, 2024 at 3:21 PM
What to Look for When Choosing a SOC 2 Audit Firm
May 23, 2024 at 9:30 AM
What Is the Dark Web? Everything You Need to Know
May 17, 2024 at 1:30 PM
Different Kinds of Hacker Hat Colors Explained
May 15, 2024 at 4:45 AM
Credential Stuffing: How To Protect Yourself from Attack
May 9, 2024 at 1:00 PM
How Much Does a SOC 2 Audit Cost In 2025?
May 7, 2024 at 1:15 PM
Privacy Concerns with Flock License Plate Recognition (LPR) Cameras
May 3, 2024 at 2:25 PM
VPNs – How Effective Are They at Protecting Your Data?
April 30, 2024 at 1:18 PM
What Is a Whaling Attack? (With Examples)
April 25, 2024 at 5:21 PM
Enhancing Cloud Security Posture Management (CSPM)
April 19, 2024 at 12:23 PM
Guarding the Gates of Digital Identity with Image Analysis
April 18, 2024 at 11:58 AM
Cyber Safe Scholars: Developing IT Security Awareness Among Students
April 17, 2024 at 10:15 AM
CCPA vs. GDPR: A Comprehensive Comparison
April 11, 2024 at 2:15 PM
Dictionary Attacks: What They Are and How to Avoid Them
April 10, 2024 at 4:51 PM
5 Signs Your Phone Has a Virus
April 4, 2024 at 1:48 PM
Is BetterHelp a Scam? Unpacking The Truth
April 3, 2024 at 3:55 PM
What Is Ethical Hacking? A Comprehensive Guide
April 2, 2024 at 1:45 PM
What Is a SOC 2 Report and Who Needs One?
March 29, 2024 at 11:43 AM
Is Fetch Rewards App Safe? Exploring Data Privacy Concerns
March 26, 2024 at 1:53 PM
What Is DNSSEC, and How Does It Secure Your DNS?
March 22, 2024 at 1:30 PM
New CJIS Requirements: What You Need to Know
March 20, 2024 at 2:45 PM
Staying HIPAA Compliant While Leveraging Telehealth
March 13, 2024 at 3:00 PM
NIST Cybersecurity Framework 2.0 – Key Takeaways
March 7, 2024 at 1:30 PM
Multi-Factor Authorization (MFA) During Cellular Network Outage
February 28, 2024 at 4:15 PM
How to Identify Phishing & Online Security Breach Attempts
February 26, 2024 at 2:00 PM
2FA vs. MFA: What's the Difference?
February 16, 2024 at 11:30 AM
Understanding AI-Powered Social Engineering Attacks
February 13, 2024 at 4:45 PM
Can Neuralink Be Hacked? Cybersecurity Experts Weigh-In
February 7, 2024 at 4:30 PM
Understanding the Key Differences Between IT Governance & Compliance
February 2, 2024 at 3:00 PM
Super Bowl Ticket Scams to Look Out For
January 26, 2024 at 2:04 PM
The SEC Cybersecurity Rules Are Now Effective – What You Need to Know
January 24, 2024 at 1:00 PM
vCISO vs. CISO: What's the Difference?
January 11, 2024 at 11:19 AM
What is Protected Health Information (PHI)?
January 3, 2024 at 4:30 PM
The Crucial Role of SSL Certificates in Cybersecurity
December 22, 2023 at 3:38 PM
Securing Your eCommerce Website From Hackers
December 20, 2023 at 2:15 PM
Leave the World Behind – Could the Cyberattack Blackout Really Happen?
December 13, 2023 at 4:31 PM
Distributed Denial of Service (DDoS) Attacks Defined
December 5, 2023 at 1:00 PM
Cell Phone Usage at Work & HIPAA Compliance: Uncovering the Risks
November 20, 2023 at 1:00 PM
TISAX Compliance: A Comprehensive Guide to Certification
November 9, 2023 at 3:42 PM
Cybersecurity for Law Firms: Where Is Your Firm At Risk?
November 2, 2023 at 3:30 PM
How Secure Is MFA Based on SMS?
October 27, 2023 at 1:15 PM
10 Tips for Choosing a Managed Service Provider (MSP)
October 18, 2023 at 1:00 PM
How to Avoid Concert and Event Ticket Scams
October 13, 2023 at 2:21 PM
The Future of Cloud Archiving: Transforming Cybersecurity & Compliance
September 27, 2023 at 1:00 PM
Man in the Middle (MITM) Attacks: What Are They & How to Prevent Them
September 7, 2023 at 1:00 PM
SOC 1 vs SOC 2 Reports - What's the Difference?
September 1, 2023 at 3:00 PM
What is Flipper Zero? Portable Hacking “Multi-Tool” Explained
August 24, 2023 at 1:00 PM
Understanding USB Flash Drive Security Risks and Forensics
August 15, 2023 at 1:00 PM
Your Guide to Drafting a Data Retention Policy
August 9, 2023 at 1:00 PM
Cl0p’s MOVEit Attack Victim Count Continues to Climb
August 2, 2023 at 2:00 PM
A Comprehensive Guide to Data Center Outsourcing (DCO)
July 27, 2023 at 1:00 PM
What to Look for When Hiring a Virtual CISO (vCISO)
July 19, 2023 at 2:30 PM
Meta's Threads Collects More Data Than You May Know
July 10, 2023 at 1:00 PM
How Secure Is Your Crypto Wallet?
July 7, 2023 at 12:00 PM
Temu App Poses Potential Data Risk for Consumers
June 30, 2023 at 11:00 AM
Safeguard Your Website From SEO Poisoning
June 27, 2023 at 2:15 PM
Cybersecurity Controls – Good, Cheap, Fast: Pick Two
June 22, 2023 at 3:15 PM
Insider Threats – Your Employee May Be Your Greatest Risk
June 12, 2023 at 10:30 AM
Vishing: Over-the-Phone Scamming
June 8, 2023 at 5:00 PM
Different Types of Social Engineering Attacks Explained
June 2, 2023 at 9:30 AM