Accreditation, Audit and Management - Continuity Professionals Pulse

Third-Party Due Diligence Best Practices

LogisManager

JULY 22, 2025

Third-Party Due Diligence Best Practices Last Updated: July 22, 2025 Managing third-party relationships is a crucial part of your operational risk strategy. This outcome highlights the need for robust risk management practices. Without a formal process, companies may fall short during audits or regulatory reviews.

Audit

Audit Cybersecurity Evaluation Mitigation

Security Industry Association Earns American National Standards Institute Reaccreditation for SIA Standards

Security Industry Association

MAY 30, 2023

This milestone highlights SIA’s long-term commitment to being ANSI accredited across the standards we develop, promote and advocate, which foster interoperability and information sharing in the security industry. SIA is pleased to announce the ANSI reaccreditation of our robust industry standards program,” said SIA CEO Don Erickson.

Accreditation

Accreditation Security Architecture Activation

“Prepare for” an Audit or “We are Ready” for an Audit – Big Difference!

Prism International

OCTOBER 16, 2019

Early Monday morning an email from the Compliance Officer (CO) of a large client organization has been received by the Operations Manager (OM). Audit Challenges. Audits by a CE are evidence-based. Audit Focus. As with any compliance program, performing mock audits to include walk-through and interviews are beneficial.

Audit

Audit Accreditation Transportation Response Plan

The Added Value of Security Data for Proptech

Security Industry Association

OCTOBER 14, 2022

How are we currently tracking all our network-connected assets, managing product life cycle and assigning accountability for management and maintenance of these devices? Is this transparent to the wider business and in particular cybersecurity teams?

Accreditation

Accreditation Security Audit Asset Management

When is an ISO not an ISO?

Plan B Consulting

NOVEMBER 17, 2017

This week PlanB Consulting are celebrating passing part 2 of our audit and being certified to ISO 9001. With an ISO, you are regularly audited and it keeps you honest. The main certification bodies; BCI, Certification Europe and LRQA, which are usually the ones we go with, had an additional level of checking called UKAS accreditation.

Accreditation

Accreditation Advertising Audit Consulting

When is an ISO not an ISO?

Plan B Consulting

NOVEMBER 17, 2017

This week PlanB Consulting are celebrating passing part 2 of our audit and being certified to ISO 9001. With an ISO, you are regularly audited and it keeps you honest. The main certification bodies; BCI, Certification Europe and LRQA, which are usually the ones we go with, had an additional level of checking called UKAS accreditation.

Accreditation

Accreditation Advertising Audit Consulting

The 7 Best Data Protection Officer Certifications Online for 2023

Solutions Review

APRIL 19, 2023

Data protection is a broad field encompassing backup and disaster recovery, data storage, business continuity, cybersecurity, endpoint management, data privacy, and data loss prevention. You will also learn about strategies for risk evaluation, security review, and audit.

Cybersecurity

Cybersecurity Accreditation Disaster Recovery Evaluation

7 mistakes that ISO 27001 auditors make

IT Governance BC

OCTOBER 17, 2019

A good auditor will use the checklist as a summary at the beginning or end of their audit, with a more detailed assessment in their report, or they’ll use a non-binary system that doesn’t restrict them to stating that a requirement either has or hasn’t been met. They allow cost-cutting to starve the audit. Good auditing practices.

Audit

Audit Accreditation Consulting Government

ISO 27001 Certification Requirements & Standards

Reciprocity

DECEMBER 21, 2022

If using an ISO audit software tool to achieve ISO certification is on your compliance roadmap, here’s a quick primer to get you up to speed and jumpstart your ISO compliance efforts. The 27001 standard provides requirements for businesses to implement and operate an Information Security Management System, or ISMS.

Audit

Audit Accreditation Gap Analysis All-Hazards

SOC 2 vs ISO 27001: Key Differences Between the Standards

Reciprocity

SEPTEMBER 23, 2022

Designed by the International Standards Organization (ISO), ISO 27001 spells out industry standards for an information security management system (ISMS). The ISO 27001 statement of applicability focuses on preserving the confidentiality, integrity, and availability of information as part of the risk management process.

Audit

Audit Accreditation Acceptable Risk Security

The Key Differences between FedRAMP A-TO & P-ATO

Reciprocity

OCTOBER 7, 2024

The Federal Risk and Authorization Management Program ( FedRAMP ) helps U.S. FedRAMP standardizes security requirements and authorizations for SaaS, PaaS, and IaaS cloud services per the Federal Information Security Management Act ( FISMA). The FedRAMP Program Management Office (PMO) manages the program’s day-to-day operations.

Accreditation

Accreditation Authorization Government Security

Microsoft misfire: what can be learnt from the tech giant’s cybersecurity failings

SRM

APRIL 24, 2024

The CSRB states that “throughout this review, the Board identified a series of Microsoft operational and strategic decisions that collectively point to a corporate culture that deprioritised both enterprise security investments and rigorous risk management.” More than half of that total revenue – $33.7

Cybersecurity

Cybersecurity Accreditation Risk Management Authentication

Storage and Data Protection News for the Week of February 23: Updates from Clumio, Constellation Research, Hitachi Vantura, and More

Solutions Review

FEBRUARY 23, 2024

million eye care patients are being notified that their Social Security numbers and other confidential information were compromised when hackers orchestrated a cyber-attack against Medical Management Resource Group, L.L.C. Under the alliance, Kyndryl will now be a Veeam Accredited Service Partner (VASP). Million Approximately 2.3

Accreditation

Accreditation Backup Evaluation Cyber Resilience

IRM, ERM, and GRC: Is There a Difference?

Reciprocity

AUGUST 24, 2022

The various niches of risk management have become a veritable alphabet soup of acronyms. As such risks proliferate and evolve, so do the ways to manage them. As a result, we now have: Enterprise risk management (ERM). Governance, risk management, and compliance (GRC). Integrated risk management (IRM).

Risk Management

Risk Management Audit Insurance Insurance

Guide: Complete Guide to the NIST Cybersecurity Framework

Reciprocity

OCTOBER 9, 2024

How to prepare for a NIST Audit: Checklist What is a security impact analysis? For almost ten years, NIST has been at the forefront of developing comprehensive cybersecurity risk management frameworks. Additionally, we’ve included links for deeper exploration and a practical guide to preparing for a NIST compliance audit.

Cybersecurity

Cybersecurity Audit Risk Management Vulnerability

Guide: Complete Guide to the NIST Cybersecurity Framework

Reciprocity

OCTOBER 9, 2024

How to prepare for a NIST Audit: Checklist What is a security impact analysis? For almost ten years, NIST has been at the forefront of developing comprehensive cybersecurity risk management frameworks. Additionally, we’ve included links for deeper exploration and a practical guide to preparing for a NIST compliance audit.

Cybersecurity

Cybersecurity Audit Risk Management Vulnerability

Continuity Professionals Pulse

Third-Party Due Diligence Best Practices

Security Industry Association Earns American National Standards Institute Reaccreditation for SIA Standards

Trending Sources

“Prepare for” an Audit or “We are Ready” for an Audit – Big Difference!

The Added Value of Security Data for Proptech

When is an ISO not an ISO?

When is an ISO not an ISO?

The 7 Best Data Protection Officer Certifications Online for 2023

7 mistakes that ISO 27001 auditors make

ISO 27001 Certification Requirements & Standards

SOC 2 vs ISO 27001: Key Differences Between the Standards

The Key Differences between FedRAMP A-TO & P-ATO

Microsoft misfire: what can be learnt from the tech giant’s cybersecurity failings

Storage and Data Protection News for the Week of February 23: Updates from Clumio, Constellation Research, Hitachi Vantura, and More

IRM, ERM, and GRC: Is There a Difference?

Guide: Complete Guide to the NIST Cybersecurity Framework

Guide: Complete Guide to the NIST Cybersecurity Framework

Stay Connected