.webp?width=2169&height=526&name=Compass%20regular%20transparent%20website%20(1).webp "Compass IT Compliance Logo")
-1.webp?width=2169&height=620&name=Compass%20regular%20transparent%20website%20smaller%20(1)-1.webp "Compass IT Compliance")
Security Consulting Firms Offering Virtual CISO Services Stand Out
by William DePalma on March 20, 2026 at 11:47 AM
The cybersecurity services market has become increasingly specialized. Some providers focus exclusively on technical testing, conducting penetration tests, vulnerability assessments, and red team exercises. Others concentrate entirely on governance, risk, and compliance (GRC), offerin …
What the SEC Wants to See in Your 10-K Cybersecurity Disclosure
by CJ Hurd on March 2, 2026 at 2:00 PM
If you follow publicly traded companies closely, you may have noticed something tucked into their annual reports over the past few years that wasn't always there before: a section called "Item 1C – Cybersecurity." For investors, compliance professionals, and business leaders alike, th …
Pen Testing Automation Problem: Why Human Expertise Matters
by Patrick Laverty on February 20, 2026 at 4:44 PM
The cybersecurity industry has a new buzzword problem, and this one could leave your organization dangerously exposed.
What to Expect When Working with an IT Compliance Partner
by Nicholas Foisy on February 18, 2026 at 4:20 PM
Bringing on an IT compliance partner is a significant decision, one that often comes with as many questions as it does relief. Whether your organization has just experienced a security incident, is preparing for an audit, or has simply reached a point where internal resources can no l …
Cybersecurity Due Diligence for Mergers & Acquisitions (M&A)
by Nicholas Foisy on January 23, 2026 at 2:25 PM
.jpg)
Mergers and acquisitions represent pivotal moments for any organization. Whether you're expanding your market share, acquiring valuable intellectual property, or absorbing a competitor's customer base, the financial and strategic considerations typically dominate boardroom discussions …
Which Industries Need Cybersecurity Risk Assessments Most?
by Jake Dwares on December 5, 2025 at 12:20 PM
Cybersecurity isn't just a concern for tech companies anymore. In today's interconnected world, every organization that handles digital data faces potential threats from hackers, ransomware, phishing attacks, and insider threats. While all businesses should prioritize cybersecurity, c …