As we enter the new year, many of us will start the annual third-party attestations. It’s important to remember that holding a third-party attestation provides a baseline assurance on the effective implementation of management, operational, and technical controls. Compliance demonstrated by a clean SOC 2 report, ISO 27001 certification, HITRUST certification, etc. does not equate to…
Compliance ≠ Security
Posted on