Audit Evaluation Publishing 
LogisManager
SEPTEMBER 24, 2021
It’s no question that they’ve got a lot to share, so we’ll be publishing these insights to our blog to help you make more informed business decisions. Services are available to collect and review key vendor documents like contracts and SOC 2s, and they can even evaluate a vendor’s financial statements against its industry peers.
Pure Storage
SEPTEMBER 21, 2022
The term ESG was coined by the investment industry as a way of evaluating businesses on non-financial metrics that can provide insights into unforeseen risk and explored growth opportunities. Are the vendor assumptions substantiated and validated by a 3rd party audit—and are they reflective of the published information?
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Reciprocity
DECEMBER 21, 2022
If using an ISO audit software tool to achieve ISO certification is on your compliance roadmap, here’s a quick primer to get you up to speed and jumpstart your ISO compliance efforts. The ISO 27001 family, published by the International Organization for Standardization, includes a set of standards for information security.
LogisManager
MAY 9, 2023
They evaluate their vendor and partner communities to identify the third parties they depend on the most and map them to the business risks, controls, and testing that rely on them. For example, SVB had a Moody’s A1 issuer rating and KPMG signed off on SVB’s bank’s audit just 14 days before it declared bankruptcy.
Reciprocity
SEPTEMBER 12, 2024
One of the most versatile and widely used frameworks for internal control is the one published by COSO, the Committee of Sponsoring Organizations. COSO first published its internal control framework in 1992, followed by a modern-day overhaul in 2013. A system of internal control based on the COSO framework will have five components.
Reciprocity
OCTOBER 7, 2024
Audit third-party vendors for compliance An audit is the only way to see what’s really happening with your vendor’s security, so perform those audits whenever necessary (say, with particularly high-risk data you’re entrusting to a vendor). Hold quarterly reviews to evaluate your vendor’s performance metrics and security posture.
LogisManager
MAY 20, 2021
For example, a forensic finding made during an evaluation of Colonial Pipeline noted numerous known and preventable vulnerabilities, such as unpatched and outdated systems, that likely led to the security breach. Risk Assessments & User Access Reviews. Steven is a frequent speaker in the Energy , Financial Services and Cyber industries.
Expert insights. Personalized for you.
104 
Let's personalize your content