Mimi Pham

TrustCloud

At TrustCloud, we’re on a mission to democratize compliance, so we’re kicking off GRC Newsflash – a series where our experts give you a quick rundown on the latest buzz happening in the GRC, security, and privacy world. Today’s edition features our Compliance Specialist Frank Kyazze, and covers updates of ... Read More

TrustCloud is proud to present the 2023 Security SaaS Leaderboard – a list of the most commonly used vendors for security- and trust-related programs, based on analysis of the software platforms our customers are connecting to on the path to trust assurance. Note: this list is not exhaustive, nor is ... Read More

This is a guest post from Michael Marrano, MS, CISSP, CISM, CISA, at Riskigy.  There is a widespread misunderstanding regarding cloud services, particularly in relation to Software as a Service (SaaS). Many organizations mistakenly believe that once they migrate to the cloud, the responsibility for all aspects of security and ... Read More

This is a guest post from Michael Marrano, MS, CISSP, CISM, CISA, at Riskigy.  There is a widespread misunderstanding regarding cloud services, particularly in relation to Software as a Service (SaaS). Many organizations mistakenly believe that once they migrate to the cloud, the responsibility for all aspects of security and ... Read More

For startups looking to win business and build trust with potential clients, a robust security program and effective response to security questionnaires are essential. Whether you’re new to security questionnaires or just need a refresher, we have you covered. With that, let’s get started.  What are security questionnaires? Security questionnaires ... Read More

For startups looking to win business and build trust with potential clients, a robust security program and effective response to security questionnaires are essential. Whether you’re new to security questionnaires or just need a refresher, we have you covered. With that, let’s get started.  What are security questionnaires? Security questionnaires ... Read More

If you’re like 98% of organizations, you have at least one vendor that’s had a breach in the last two years. Although this doesn’t necessarily mean affiliated organizations were affected by the breaches, it does emphasize the extensive range and proximity of potential exposure to indirect risks.  Vendors must develop ... Read More

TrustCloud teamed up with Dansa D’Arata Soucia on our Risk Rodeo webinar, to discuss everything you need to know to wrangle up risks with confidence.  Our panelists weighed in on the four things that auditors look for in risk management processes: Clear Process Documentation & Monitoring Rationalization Over Time Executive ... Read More

Effectively utilizing a risk register allows your organization to anticipate and overcome challenges with confidence. No GRC program is failproof, which is why it’s so critical to take a thorough look at potential risks and remediations.  To make sure you’re starting on the right foot, we’ve provided a free, downloadable ... Read More

How to ISO 27001 Welcome to our guide on ISO 27001 compliance! We’ll cover everything you need to know about ISO 27001, including its clauses, the preparation & audit processes, costs, and best practices. Let’s get started!  The Basics of ISO 27001 Before diving into the details of ISO 27001 ... Read More