<img src="https://ws.zoominfo.com/pixel/6169bf9791429100154fc0a2" width="1" height="1" style="display: none;">
blog /
Understanding ISO 27001 Controls [Guide to Annex A]

Understanding ISO 27001 Controls [Guide to Annex A]

In this article, we’ll cover the 14 specific categories of the ISO 27001 Annex A controls. You'll learn how to decide which ISO 27001 framework controls to implement and who should be involved in the implementation process. By the end of this article, you'll have a basic understanding of ISO 27001 Annex A controls and how to implement them in your organization.
NIST 800-53 Compliance Checklist: Easy-to-Follow Guide

NIST 800-53 Compliance Checklist: Easy-to-Follow Guide

In this article, we’ll explore the basics of NIST 800-53 compliance and cover the complete list of NIST 800-53 control families. We’ll also provide a 5-step NIST 800-53 checklist and share some implementation tips. By the end of the article, you’ll know how organizations can use the NIST 800-53 framework to develop secure, resilient information systems and maintain regulatory compliance.
What Are the ISO 27001 Requirements in 2023?

What Are the ISO 27001 Requirements in 2023?

To become ISO 27001 certified, organizations must align their security standards to 11 clauses covered in the ISO 27001 requirements. In this article, you’ll discover what each clause in part one of ISO 27001 covers. We’ll also take a big picture look at how part two of ISO 27001—also known as Annex A—can help your organization meet the ISO/IEC 27001 requirements.
HIPAA Compliance Checklist: Easy to Follow Guide for 2023

HIPAA Compliance Checklist: Easy to Follow Guide for 2023

Following a HIPAA compliance checklist can help HIPAA-covered entities comply with the regulations and become HIPAA compliant. In this HIPAA compliance guide, we’ll review the 8 primary steps to achieving HIPAA compliance, tips on how to implement them, and frequently asked questions.
How to Maintain ISO 27001 Certification in 2023 and Beyond

How to Maintain ISO 27001 Certification in 2023 and Beyond

This article examines what happens after companies achieve IT security ISO 27001 certification. We’ll answer questions about how to maintain ISO certification, how long ISO 27001 certification is valid, and the costs and risks of failing to maintain compliance. By the end of this article, you’ll know the certifying body requirements and what your checklist should look like for staying on top of your ISO 27001 certification.
HITRUST vs. HIPAA: Understanding the Difference

HITRUST vs. HIPAA: Understanding the Difference

HITRUST and HIPAA often go hand-in-hand when talking about security compliance. But what are they, and how do they compare? In this article, we’ll review HITRUST vs. HIPAA, including their differences, similarities, and advantages, and we’ll explain how and when to use them in compliance efforts.
PCI Compliance Checklist: The 12 Requirements (Step-by-Step)

PCI Compliance Checklist: The 12 Requirements (Step-by-Step)

In this article, we will take a big-picture look at the Payment Card Industry (PCI) Data Security Standards (DSS). You’ll learn what is required to be PCI compliant and what’s involved in each of the 12 PCI DSS requirements. You’ll also find a handy PCI Compliance Checklist for easy reference, including new PCI compliance requirements.
What Are the Three Rules of HIPAA? Explained

What Are the Three Rules of HIPAA? Explained

While HIPAA rules benefit both patients and providers, failure to comply with these standards can have significant downsides for both parties. That’s why it is important to understand how HIPAA works and the key areas it covers. Read on to discover the three rules of HIPAA and how you can apply them to help your organization ensure compliance.
The HIPAA Minimum Necessary Standard Explained

The HIPAA Minimum Necessary Standard Explained

This article gives you a broad look at the Health Insurance Portability and Accountability Act (HIPAA) minimum necessary standard. You’ll learn about its requirements, exceptions, and how to implement it.
What Is a HIPAA Violation? 12 Most Common Examples

What Is a HIPAA Violation? 12 Most Common Examples

This article digs into Health Care Accountability and Portability Act (HIPAA) violations. Discover what they are and get examples of typical HIPAA violations in healthcare. Plus, learn how breaches are detected and reported and what you can do to protect your organization.
What Are the Penalties for Violating HIPAA? (Civil & Criminal)

What Are the Penalties for Violating HIPAA? (Civil & Criminal)

This article breaks down the different HIPAA penalties—including civil and criminal penalties—and the maximum penalties for HIPAA violations. Find out who is liable under HIPAA, what the most common HIPAA violations are, and how to ensure compliance and prevent HIPAA violations in your own organization.
NIST vs. ISO: Understanding the Difference

NIST vs. ISO: Understanding the Difference

As a business, you need to have benchmarks to work against in all facets of your work. That's especially true when it comes to cybersecurity. In this area, there are two main groups that offer guidelines: The National Institute of Standards and Technology (NIST) and the International Organization for Standardization (ISO). What's the difference between the two, and which one should you follow? Here's what you need to know.
ISO 27001 Audit: Everything You Need to Know

ISO 27001 Audit: Everything You Need to Know

In this article, we’ll cover everything you need to know about conducting ISO/IEC 27001 audits to receive and maintain your ISO 27001 certification. You’ll learn about ISO 27001 audit requirements, why an ISO 27001 audit is important, how long it takes to conduct audits, and who can conduct audits that prove your company follows up-to-date information security management best practices.
11 Common Authentication Vulnerabilities You Need to Know

11 Common Authentication Vulnerabilities You Need to Know

In this article, we’ll take a look at what authentication vulnerabilities are, how they emerge, and how these issues can affect your organization. Also, you’ll learn about the most common authentication-based vulnerabilities and their implications. By the end of this article, you’ll know the best practices to prevent these authentication issues and keep sensitive data safe.
StrongDM app UI showing available infrastructure resources
Connect your first server or database in 5 minutes. No kidding.