
In October of 2022, the American Institute of Certified Public Accountants (AICPA) released an updated SOC 2 guide that includes critical changes to the popular framework. According to the AICPA,…
In October of 2022, the American Institute of Certified Public Accountants (AICPA) released an updated SOC 2 guide that includes critical changes to the popular framework. According to the AICPA,…
By: Brianna Plush In today’s digital age, all organizations are exposed to some level of risk. As a baseline, companies are expected to have appropriate controls and safeguards in place…
By: Brett Davis Today’s modern enterprise is often fragmented, with businesses relying extensively on third-party vendors and partners. While these relationships are critical for the success of organizations of all…
By Cody Hewell and Brett Davis A report by Proofpoint indicated that nearly 70% of CISOs feel their organization is at risk of experiencing a material cyber attack in the…
According to the Cloud Security Alliance (CSA), the Security, Trust, Assurance, and Risk (STAR) program encompasses “key principles of transparency, rigorous auditing, and harmonization of standards outlined in the Cloud…
HITRUST recently announced a new program called The HITRUST AI Assurance Program, which provides a secure and sustainable strategy for trustworthy AI leveraging the HITRUST common security framework (CSF), AI-specific…
The Securities and Exchange Commission (SEC) recently announced charges against SolarWinds Corporation and its chief information security officer (CISO), Timothy G. Brown. The charges include fraud and internal control failures…
KANSAS CITY, Mo. — BARR Advisory has teamed up with a cohort of leading cybersecurity and technology solutions firms to release a collection of free resources aimed at educating middle…
My organization is based in Europe—do we need a SOC 2 report? At BARR Advisory, we hear this question often, and it’s important to know what compliance framework is best…
BARR Advisory has teamed up with a cohort of partners and clients to provide teachers, parents, and students with a comprehensive resource for starting thoughtful conversations about cybersecurity and internet…