Why Doesn’t Anyone Agree? NIST, ISO, ISACA, and HiTrust disagree on what maps to what.
How do you reconcile between frameworks? Watch Now
Compliance frameworks sometimes look good on the surface, with each one trying to convince you that they’re the real deal. But just because one looks good, it doesn’t mean that it is an accurate representation.
There are many people out there telling you that they use a compliance framework, but that’s not necessarily true. These might even say “framework” in the title but were written as standalone documents. Consider, is your framework static or dynamic? Are they taking a “best guess” or have a scientific approach and show proof of their mapping skills? To be a framework, it should supply a structure, a methodology, and the evidence you need to prove compliance. Does yours?
Don’t be fooled by appearances! Sriram Uppalapati, Securelink Manager of Strategic Risk, and Dorian Cougias, Unified Compliance co-founder and Compliance Scientist, presented on September 16, 2020 at 6:00 am PT, 9:00 am ET, an educational webinar that will demystify compliance frameworks!
To watch this webinar, click here. It could change how you look at compliance forever!
How Should an Organization’s Compliance Department Respond to a Pandemic?
Unified Compliance’s Lynn Heiberger did an informative live webinar for ServiceNow’s GRC community. In this ‘Ask the Expert’ webinar, Lynn offered timely suggestions on what compliance regulations will help you manage:
• Cybersecurity: Mitigating the impact of millions of employees connecting to networks remotely and accessing sensitive data over the Internet, along with huge numbers of employees using video collaboration platforms.
• Third-party Supply Chain: What impact will supply chain disruptions have on your business? Have you vetted their preparedness plans?
• IT Services: Which controls do you need to implement in support of multiple IT services?