Skip to content
🚨 Master Security Compliance: Join our upcoming webinar! 🚨

Resources

Curated content for the cyber, risk and compliance professional: We cover the latest on cybersecurity, frameworks, risks, and compliance trends.

Show filters
All
Answers
Framework comparisons
Events
Glossary
Guides
Analyst research
eBooks
Datasheets
Pitch decks
Responding to Australia's new critical infrastructure laws
On-demand Webinar

Responding to Australia's new critical infrastruct...

Join industry experts Andrew Robinson, Matthew Chantrell and Ryan Turan to share their insights into how to automate and manage your compliance with A...

On-Demand Webinars

Delivering Hub & Spoke GRC in Distr...

On-demand Webinar

Delivering Hub & Spoke GRC in Distributed & Autonomous Business

Internationally renowned GRC analyst Michael Rasmussen has performed a deep dive on our Hub and Spoke architecture and i...
date-icon

Jan 1, 2023

location

Virtual

Register Now
Using Zero Trust Architecture to Ba...

On-demand Webinar

Using Zero Trust Architecture to Balance Cyber Security Risks

While the concept of "Zero Trust" is not new among enterprises, however, the modern workplace has changed radically in r...
date-icon

Jan 3, 2023

location

Virtual

Register Now
How Can a vCISO Help Protect Your N...

On-demand Webinar

How Can a vCISO Help Protect Your Network?

With the threat landscape growing by the hour, the role of CISO has never been more important. Yet high demand and massi...
date-icon

Jan 5, 2023

location

Virtual

Register Now
See all webinars

Latest Answers

ASD Essential 8

Who has to comply with ASD Essential 8?

What is ASD Essential 8? The Australian Signals Di...

NIST Cybersecurity Framework (CSF)

Is NIST a standard or framework?

What is NIST? NIST, which stands for the National ...

ASD Essential 8

What is the ASD Essential Eight model?

What is the ASD essential eight model? The ASD Ess...

{tableName=glossary, name=Compliance Automation, description= Compliance Automation is the process of automating the management of regulatory compliance requirements. It involves the use of software and other technology to automate the tracking, reporting, and enforcement of regulatory standards. Compliance Automation helps organizations reduce the costs associated with manual compliance management processes, while also helping them remain compliant with applicable laws and regulations. This can be accomplished by automating the collection and analysis of data, the creation of reports, and the enforcement of policies and procedures. In addition, Compliance Automation can be used to streamline the process of meeting legal and regulatory requirements, such as ensuring data privacy and security, as well as ensuring that the organization meets its obligations under applicable laws and regulations., topic=null, hs_path=compliance-automation}--
{tableName=comparison, name=NIST CSF vs ASD Essential 8, description= The NIST Cybersecurity Framework (CSF) and ASD Essential 8 are two of the most popular frameworks used for cybersecurity. Learn the differences between them., topic=[{id=97620570503, createdAt=1673040885296, updatedAt=1715624266851, path='nist-cybersecurity-framework-csf', name=' NIST Cybersecurity Framework: A Comprehensive Guide', 1='{type=string, value=NIST Cybersecurity Framework (CSF)}', 2='{type=string, value= A comprehensive guide to the NIST Cybersecurity Framework (CSF) and how to use it to protect your organization's IT infrastructure and data. Learn best practices and tips to help you improve}', 5='{type=string, value=This authoritative guide provides an overview of the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF). The guide will provide an in-depth look at the five core functions of the CSF, which are Identify, Protect, Detect, Respond, and Recover. It will also explain the importance of the CSF and how it can help organizations of all sizes to protect their networks and data from cyber threats. The guide will also provide an overview of the various tools and resources available to help organizations implement the CSF, as well as best practices for using the framework to ensure the security of their systems. Finally, the guide will provide a comprehensive look at the various roles and responsibilities associated with the CSF, including the roles of the organization, its employees, and external partners. This guide is an essential resource for any organization looking to protect its networks and data from the ever-evolving cyber threats.}', 15='{type=list, value=[{id=97620570503, name='NIST Cybersecurity Framework (CSF)'}]}'}], hs_path=nist-cybersecurity-framework-csf-vs-asd-essential-8}--
{tableName=comparison, name=SOC 2 vs NIST CSF, description=A comparison of SOC 2 and NIST Cybersecurity Framework (CSF). Learn the differences between the two frameworks, their security objectives., topic=[{id=97620570514, createdAt=1673040885366, updatedAt=1715624490265, path='soc-2', name=' SOC 2 Compliance: A Comprehensive Guide', 1='{type=string, value=SOC 2}', 2='{type=string, value= Compliance SOC 2 Compliance Guide: Learn the basics of SOC 2 compliance and how to ensure your organization meets the necessary standards. Get expert advice and resources to help you understand and implement the necessary}', 5='{type=string, value=This comprehensive guide provides an in-depth look at SOC 2, a set of standards used to assess the security, availability, processing integrity, confidentiality, and privacy of a service organization. It is designed to help service organizations understand the requirements of the SOC 2 framework, as well as how to implement and maintain the necessary controls to achieve compliance. This guide provides a detailed overview of the SOC 2 framework, including the five trust principles, the criteria used to evaluate those principles, and the process organizations must go through to become compliant. Additionally, this guide provides best practices for organizations to ensure they remain compliant, as well as advice on how to handle any non-compliance issues that may arise. With this guide, service organizations can gain a better understanding of the SOC 2 framework and how to use it to maintain the security and privacy of their customers' data.}', 15='{type=list, value=[{id=97620570514, name='SOC 2'}]}'}], hs_path=soc-2-vs-nist-cybersecurity-framework-csf}--
{tableName=glossary, name=Risk Management Framework, description= Risk Management Framework is a set of processes, policies, and tools used to identify, assess, monitor, and control risks associated with an organization’s activities. It is designed to help organizations manage the risks associated with their operations in order to minimize their potential impact on the organization's objectives. The framework typically includes the following components: risk identification, risk assessment, risk control, risk monitoring, and risk communication. Risk identification involves identifying potential risks and assigning them to specific categories. Risk assessment involves evaluating the probability and potential impact of the identified risks. Risk control involves implementing strategies to mitigate the identified risks. Risk monitoring involves tracking the progress of risk management activities. Risk communication involves informing stakeholders of the status of risk management activities. The Risk Management Framework is an integral part of an organization's overall risk management strategy and is necessary to ensure the organization is prepared to handle the risks associated with its operations., topic=[{id=97620570509, createdAt=1673040885334, updatedAt=1715624292575, path='enterprise-risk-management', name=' Enterprise Risk Management Guide: A Comprehensive Guide', 1='{type=string, value=Enterprise Risk Management}', 2='{type=string, value= This guide provides an overview of Enterprise Risk Management and its processes, enabling you to develop a risk management strategy and plan for your organization. Learn how to identify, assess, and mitigate risks.}', 5='{type=string, value=This authoritative guide provides an overview of enterprise risk management (ERM) and its essential components. It is designed to help business leaders understand the fundamentals of ERM and develop the skills and knowledge needed to effectively manage risk in their organizations. The guide begins by defining ERM and outlining its main objectives. It then examines the key elements of ERM, including risk identification, assessment, and management. It also covers the importance of risk culture and the role of technology in ERM. Finally, the guide provides best practices for implementing and maintaining an effective ERM program. With this guide, business leaders will gain the knowledge and tools needed to effectively manage risk in their organizations.}', 15='{type=list, value=[{id=97620570509, name='Enterprise Risk Management'}]}'}], hs_path=risk-management-framework}--
{tableName=glossary, name=Information Governance, description= Information Governance is the practice of managing, organizing, and protecting the data and information assets of an organization. It involves the development of policies, processes, and procedures that ensure the accuracy, quality, security, and availability of the organization’s data and information. It also involves the implementation of systems and technologies to monitor and protect the organization’s data and information. Information Governance helps organizations ensure compliance with laws and regulations, maximize the value of their data and information assets, and minimize the risks associated with their use. It also helps organizations achieve their business objectives and goals by enabling them to make informed decisions and take appropriate actions., topic=null, hs_path=information-governance}--
{tableName=guides, name=ENISA National Capabilities Assessment Framework, description= This guide provides an authoritative overview of the ENISA National Capabilities Assessment Framework. The guide is designed to help organizations assess their national cybersecurity capabilities, identify gaps, and develop strategies for addressing them, topic=[{id=97620570521, createdAt=1673040885410, updatedAt=1715624532253, path='enisa-national-capabilities-assessment-framework', name=' ENISA Nat'l Capabilities Assessment Framework Guide', 1='{type=string, value=ENISA National Capabilities Assessment Framework}', 2='{type=string, value= This guide provides an authoritative overview of the ENISA National Capabilities Assessment Framework. The guide is designed to help organizations assess their national cybersecurity capabilities, identify gaps, and develop strategies for addressing them}', 5='{type=string, value=This guide provides an overview of the European Union Agency for Network and Information Security (ENISA) National Capabilities Assessment Framework. It outlines the purpose, scope, and methodology of the Framework, including the methodology used to assess national cyber security capabilities. It also provides an overview of the key elements of the Framework, including the criteria used to assess national cyber security capabilities, the indicators used to measure performance, and the process for assessing national cyber security capabilities. The guide is intended to serve as an authoritative reference for governments and other stakeholders in the cyber security domain.}', 15='{type=list, value=[{id=97620570521, name='ENISA National Capabilities Assessment Framework'}]}'}], hs_path=enisa-national-capabilities-assessment-framework}--
Compliance Automation

Compliance Automation is the process of automating the management of regulatory compliance requireme...

NIST Cybersecurity Framework (CSF)
NIST CSF vs ASD Essential 8

The NIST Cybersecurity Framework (CSF) and ASD Essential 8 are two of the most popular frameworks us...

SOC 2
SOC 2 vs NIST CSF

A comparison of SOC 2 and NIST Cybersecurity Framework (CSF). Learn the differences between the two ...

Enterprise Risk Management
Risk Management Framework

Risk Management Framework is a set of processes, policies, and tools used to identify, assess, monit...

Information Governance

Information Governance is the practice of managing, organizing, and protecting the data and informat...

ENISA National Capabilities Assessment Framework
ENISA National Capabilities Assessment Framework

This guide provides an authoritative overview of the ENISA National Capabilities Assessment Framewor...

eBooks

GRC Buying Guide

eBook

GRC Buying Guide

In this eBook, we have covered the GRC buying basics including: knowing when to employ a new GRC capability, baseline ex...
Download
Artificial Intelligence and Robust ...

eBook

Artificial Intelligence and Robust Content

Written by 6clicks CISO, Andrew Robinson, this eBook covers the interconnection of Artificial Intelligence and Machine L...
Download
Everything You Need to Know About 6...

eBook

Everything You Need to Know About 6clicks

Learn more about 6clicks as an organization and GRC SaaS provider including a platform overview, our solutions, a deeper...
Download
See all eBooks