When it comes to ISO/IEC 27002:2022 recently, it feels a bit like a game of Red Light, Green Light—you know, the childhood game where everyone runs to the finish line upon Green Light being called, but you had to stop on a dime when you heard “Red Light!” and await the next, random declaration of Green so you could move forward again.
Chances are, if you know anything about our space program, you know that when we send a manned mission beyond our atmosphere, those astronauts remain in constant communication with their fellows back at Mission Control.
Our Story Many who know me have also probably met my two-year-old twins, Everly and Porter (a girl and a boy). Over this past year, many others have probably witnessed my kids charging into my office to make several, mostly surprise, appearances during Zoom happy hours and client meetings. But what most do not know, however, are the struggles my wife, Brittany, and I went through on our journey to have them. How we got to this point with two happy, healthy children is not a short story or answer—as anyone affected knows, infertility can create so many hardships for couples, and I hope that this blog and our fundraising campaign detailed below will shed some light on the widespread impact it really can have.
With the rising popularity of compliance efforts today driven by factors such as customer demands, regulatory requirements, and/or a company’s willingness to demonstrate their internal control environment to external parties, the question often arises as to which compliance undertaking is the most beneficial for organizations to undergo. Lately, we’ve noticed a large surge in both our SOC 2 and ISO 27001 service lines, but which is the better for your organization? To begin to tackle this question, it’s important to first get some background information on both SOC 2 and ISO 27001 to understand their differences, similarities, and how they could potentially complement each other.
For human bodies, the spine serves as our backbone—our central support structure. But the spine is also scaffolding—it’s broken into different areas that have different specific names and functions. The lumbar spine carries the weight of the upper body and helps us bend, whereas the thoracic spine isn’t designed to move much and instead provides stability. You get the gist.
When conducting an audit, an auditor must obtain an understanding of a client’s internal control environment, including the use, applicability and nature of any manual and automated controls, in order to design appropriate procedures to test such controls.
During the course of an audit, there are instances when findings can come to the auditor’s attention. If the finding is discovered prior to the report date (Type 1 reports) or end of the report period (Type 2 reports), a client will have the opportunity to remediate the finding.