AICPA’s New SOC for Cybersecurity Examination

As the data breach occurrences increase, organizations continue to struggle to demonstrate and maintain security of their data. To ensure that all appropriate measures are being taken, executives and senior management have begun requesting that their organizations demonstrate the effectiveness of their cybersecurity risk management programs through …

Read More

2017 Cyber Defense Guide: Part 2 [Free Download]

Malware and Social Engineering As industries see an influx use of technology in day-to-day business operations, the cybersecurity landscape struggles to keep up and stay ahead of attackers. Read more: Cyber Defense Guide: Part 1 Data breaches can happen anywhere at any time. A common misconception is …

Read More

Third-Party Vendor Management Best Practices

The new SOC 1 standard, SSAE 18, was made effective May 1, 2017. This standard requires that service organizations implement and describe their vendor management practices for third-party service organizations. Read more: Making the Switch from SSAE 16 to SSAE 18 In order to help organizations meet these …

Read More

A-LIGN Introduces Privacy Assessment Offerings to Respond to the Growing Concern for Data Privacy

As the data privacy landscape evolves, A-LIGN is committed to providing solutions that assist organizations in safeguarding their client’s data. A-LIGN now offers privacy assessment and compliance services that assist organizations in adhering to the following standards: EU-U.S. Privacy Shield General Data Protection Regulation (GDPR) HIPAA Privacy Rule “Privacy is …

Read More

Becoming Certified to Access the Limited Access Death Master File

What is the Limited Access Death Master File (LADMF)? The LADMF, or Limited Access Death Master File, contains sensitive information that cannot be disclosed during the three-year period following an individual’s death, including: Social Security Number Name Date of Birth Date of Death Read now: [Whitepaper]: Cyber …

Read More

How A-LIGN Gives Back to the Community in More than One Way

At A-LIGN, one of our main core values is to Be All In – whether it is providing quality work for our clients, relentlessly exceeding expectations, or giving back to our community we stay true to our commitments day in and day out. We pride ourselves in making a positive …

Read More

Family Affair: Using ISO 27001 to conform to ISO 27017 and ISO 27018

ISO 27000 Family – Information Security Management Systems The ISO 27000 family of standards is related to an organization’s information security management systems, or ISMS. This international standard helps organizations by providing a clear set of requirements that can be used to manage the security of the business’ assets. An …

Read More

2017 Cyber Defense Guide: Part 1 [Free Download]

Don’t be ambushed by a cyberattack. In 2016, there were more than 4 billion data records stolen globally. Organizations at every level have been breached by hacks over the course of last year, but are there signs of hacks slowing down? So far in 2017, the following hacks and …

Read More

HITRUST Updates: CSFBASICs, HITRUST CSF v8.1, HITRUST CSF v9

On March 1, 2017, HITRUST announced its roadmap for 2017, which included improvements to the HITRUST CSF and a renewed focus on smaller healthcare organizations. The roadmap focuses on combating cyber threats and information risks while advancing protection standards regarding healthcare data through CSFBASICs, HITRUST CSF v8.1, HITRUST CSF v9, …

Read More

New York Instates First Mandated Cybersecurity Law

Due to the increasingly significant threat of cybercrime on businesses and consumers, New York has released cybersecurity requirements for financial services companies in the state of New York. While the SEC currently mandates that organizations need to implement “reasonable safeguards to protect a client’s nonpublic information,” the new law provides …

Read More