.webp?width=2169&height=526&name=Compass%20regular%20transparent%20website%20(1).webp "Compass IT Compliance Logo")
-1.webp?width=2169&height=620&name=Compass%20regular%20transparent%20website%20smaller%20(1)-1.webp "Compass IT Compliance")
Domain Name Server (DNS) Hijacking Defined
by Peter Fellini on January 6, 2025 at 11:43 AM
The Domain Name System (DNS) serves as the backbone of internet communication, translating human-readable domain names into machine-readable IP addresses. Despite its importance, DNS is often targeted by malicious actors due to vulnerabilities that can compromise its integrity. One of …
Do SOC 2 Auditors Read and Review Code?
by Bernard Gallagher on December 26, 2024 at 1:04 PM
For organizations pursuing SOC 2 compliance, understanding the scope and focus of the audit process is crucial. A common question that arises is whether auditors review source code as part of the SOC 2 audit. Having clarity on this topic is essential, and organizations can benefit fro …
The Value of Penetration Testing in SOC 2 Audits
by Jerry Hughes on October 18, 2024 at 10:00 AM
Where data breaches and cyber threats have become increasingly common, organizations adopt robust security measures to protect their sensitive information. For businesses seeking SOC 2 compliance, penetration testing (pen testing) serves as an invaluable tool in assessing and enhancin …
Penetration Testing Phases: Steps in the Process
by Jesse Roberts on September 6, 2024 at 1:00 PM
As cyber threats continue to grow in complexity and frequency, the need for regular penetration testing has become more critical than ever for organizations aiming to safeguard their sensitive data and systems. A well-executed penetration test follows a structured process designed to …
How Small Businesses Can Mitigate Cyber Risks
by Nicholas Foisy on August 12, 2024 at 10:51 AM
What drives business success today? While there are many answers to this, one common response that applies to every industry is technology. From streamlining operations to enhancing customer engagement, the benefits are undeniable. However, as businesses increasingly rely on digital t …
What Is a Firewall? Definition & Best Practices
by George Zapata on August 6, 2024 at 1:15 PM
At the forefront of this cybersecurity arsenal stands the firewall—an indispensable component for network security. But what exactly is a firewall, and how does it protect our digital resources? In this blog post, we explore the role of firewalls in information security, discussing th …