Carol Amick
For businesses operating in the current B2B environment, being asked for a SOC 2 report (or compliance with a similar…
A SOC 2 bridge letter, also known as a gap letter, is a document organizations provide to customers to assure them they are…
The Health Sector Coordinating Council (HSCC) Cybersecurity Working Group (CWG) is urging the Trump administration to halt proposed updates to…
A SOC 2 audit is designed to show your customers that you have implemented security controls that will result in…
The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) issued a Notice of Proposed Rulemaking…
If you have a HITRUST Assessment you may be wondering how much more effort would be required to also obtain…
In December 2024, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) issued a Notice…
The HIPAA Privacy and Breach rules apply to healthcare providers, health plans, and healthcare clearinghouses that transmit data electronically. So…
HITRUST introduced a “combined assessment” option for e1 and i1 assessments. This option allows organizations to have authoritative source requirements…
Healthcare supply chain organizations and their partners have been issued a cybersecurity alert after a string of Russian ransomware attacks…
Finding a credible expert with the appropriate background, expertise, and credentials can be difficult. CompliancePoint is here to help.