.webp?width=2169&height=526&name=Compass%20regular%20transparent%20website%20(1).webp "Compass IT Compliance Logo")
-1.webp?width=2169&height=620&name=Compass%20regular%20transparent%20website%20smaller%20(1)-1.webp "Compass IT Compliance")
HIPAA Compliance in 2025: What’s Changing & Why It Matters
by Kelly O’Brien on July 10, 2025 at 2:22 PM
Healthcare privacy is evolving rapidly, and 2025 is poised to be a year of significant developments. From how artificial intelligence is handled to increased scrutiny around reproductive health data, the boundaries of HIPAA compliance are expanding. This blog post highlights the most …
Why the ‘CISO’ in Virtual CISO Services Shouldn’t Scare You
by CJ Hurd on July 8, 2025 at 1:00 PM
For many small and midsize businesses, the term Virtual CISO (or vCISO) can be a little off-putting. It sounds big, corporate, and expensive—like something built for Fortune 500 companies, not organizations with lean teams, tight budgets, and practical day-to-day needs. After all, the …
What Is a Managed Security Service Provider (MSSP)?
by Geoff Yeagley on July 1, 2025 at 4:53 PM
As cyber threats continue to evolve and become more sophisticated, organizations across every industry are realizing that protecting their digital assets isn’t just an IT concern—it’s a business imperative. Unfortunately, many companies lack the in-house expertise, tools, or bandwidth …
The SOC for Cybersecurity Report: A Complete Guide
by Derek Boczenowski on June 26, 2025 at 10:53 AM
In a business environment where cyber threats are constant and trust is currency, organizations need a way to clearly demonstrate the strength of their cybersecurity programs. While many have turned to frameworks like SOC 2 for this purpose, there’s a growing recognition that these tr …
How to Report Your SPRS Score for DoD CMMC Self-Assessment
by Kelly O’Brien on June 10, 2025 at 2:59 PM
%20Score.jpg)
If you contract with the Department of Defense (DoD)—directly or indirectly—you’re likely required to report a cybersecurity self-assessment score to the Supplier Performance Risk System (SPRS). SPRS is a web-based system used by the DoD to track and assess contractor performance and …
How Much Does Penetration Testing Cost In 2026? Full Transparency
by Jesse Roberts on June 3, 2025 at 11:30 AM
Penetration testing is no longer a “nice-to-have” service. For many organizations, it’s a vital part of maintaining security, meeting compliance requirements, and demonstrating due diligence to leadership, customers, and regulators. But despite its growing importance, many IT and secu …