Skip to content
Master Security Compliance: Join our upcoming webinar!

Resources

Curated content for the risk and compliance professional: We cover the latest on cybersecurity, frameworks, risks, and compliance trends.

Show filters
All
Answers
Framework comparisons
Events
Glossary
Guides
Analyst research
eBooks
Datasheets
Pitch decks
Ready or not, here comes CMMC 2.0
On-demand Webinar

Ready or not, here comes CMMC 2.0

Join our esteemed panel of presenters for an informative session on the new Cybersecurity Maturity Model Certification (CMMC) 2.0 standards. Dr. Heath...

On-Demand Webinars

Delivering Hub & Spoke GRC in Distr...

On-demand Webinar

Delivering Hub & Spoke GRC in Distributed & Autonomous Business

Internationally renowned GRC analyst Michael Rasmussen has performed a deep dive on our Hub and Spoke architecture and i...
date-icon

Jan 1, 2023

location

Virtual

Register Now
Using Zero Trust Architecture to Ba...

On-demand Webinar

Using Zero Trust Architecture to Balance Cyber Security Risks

While the concept of "Zero Trust" is not new among enterprises, however, the modern workplace has changed radically in r...
date-icon

Jan 3, 2023

location

Virtual

Register Now
How Can a vCISO Help Protect Your N...

On-demand Webinar

How Can a vCISO Help Protect Your Network?

With the threat landscape growing by the hour, the role of CISO has never been more important. Yet high demand and massi...
date-icon

Jan 5, 2023

location

Virtual

Register Now
See all webinars

Latest Answers

ASD Essential 8

Who has to comply with ASD Essential 8?

What is ASD Essential 8? The Australian Signals Di...

NIST Cybersecurity Framework (CSF)

Is NIST a standard or framework?

What is NIST? NIST, which stands for the National ...

ASD Essential 8

What is the ASD Essential Eight model?

What is the ASD essential eight model? The ASD Ess...

{tableName=glossary, name=ISO/IEC Internal Audit, description= ISO/IEC Internal Audit is a systematic and independent assessment of an organization's quality management system, processes, and activities, to determine whether the organization is meeting its objectives and conforming to applicable standards and regulations. It includes a review of the organization's policies, procedures, and processes, and an assessment of the effectiveness of the organization's quality management system. It also includes an evaluation of the organization's internal control systems, risk management processes, and the accuracy and completeness of the organization's records. The internal audit process is designed to identify areas of non-conformance, areas of improvement, and to provide recommendations for corrective action. The objective of ISO/IEC Internal Audit is to ensure that the organization has effective quality management systems in place that meet its objectives and comply with applicable standards and regulations., topic=null, hs_path=iso-iec-internal-audit}--
{tableName=glossary, name=Compliance Risk, description= Compliance risk is the risk of legal or regulatory sanctions, financial loss, or loss of reputation a business may face as a result of its failure to comply with laws, regulations, codes of conduct, or standards of practice. Compliance risk can arise from a variety of sources, including government regulations, industry standards, contractual obligations, and internal policies. It is important to note that compliance risk is not limited to legal and regulatory requirements, but also includes a company’s ethical and moral obligations. Companies must be aware of and manage their compliance risk in order to protect their brand, reputation, and bottom line. Compliance risk management involves identifying potential compliance risks, assessing their potential impact, and developing strategies to mitigate them. This includes developing policies and procedures to ensure compliance, training staff on the policies, and implementing systems to monitor and report on compliance., topic=null, hs_path=compliance-risk}--
{tableName=guides, name=Center for Internet Security (CIS) Framework, description= Get the most out of the CIS Framework with this comprehensive guide. Learn best practices for implementing the framework and how to secure your organization's IT infrastructure., topic=null, hs_path=center-for-internet-security-cis-framework}--
{tableName=guides, name=ISO 27000, description= This guide is designed to help you understand the fundamentals of ISO 27000, the international standard for Information Security Management Systems. Learn how to create a secure framework to protect your data and assets., topic=null, hs_path=iso-27000}--
{tableName=glossary, name=Data Leak, description= Data leak is the intentional or unintentional release of sensitive data to an unauthorized recipient. It can occur through a variety of methods, including hacking, malware, poor security practices, physical theft, or accidental disclosure. Data leaks can have serious consequences, including financial losses, reputational damage, and legal liabilities. In some cases, data leaks can even lead to the loss of life. Data leaks can be particularly damaging to organizations that handle sensitive information, such as healthcare providers, financial institutions, and government agencies. Organizations should take steps to ensure the security of their data, such as encrypting sensitive data, implementing access controls, and regularly monitoring for potential data leaks., topic=null, hs_path=data-leak}--
{tableName=comparison, name=APRA CPS 234 vs NIST SP 800-53, description=APRA CPS 234 and NIST SP 800-53 are cybersecurity standards that provide guidance on how to protect information systems from cyber threats. , topic=[{id=97620570527, createdAt=1673040885446, updatedAt=1683947990333, path='apra-cps-234', name=' APRA CPS 234 Guide: Cyber Security Requirements', 1='{type=string, value=APRA CPS 234}', 2='{type=string, value= This guide provides a comprehensive overview of APRA CPS 234, the Australian Prudential Regulation Authority's (APRA) requirements for information security management. Learn how to protect your organisation's data}', 5='{type=string, value=The APRA CPS 234 Guide provides authoritative guidance to help organizations implement effective cybersecurity strategies. Written by the Australian Prudential Regulation Authority (APRA), this guide outlines the essential elements of a cyber security framework and outlines best practices for protecting data and systems from cyber threats. It provides detailed guidance on how to assess risk, implement safeguards, and respond to cyber incidents. The guide also includes information on how to develop policies and procedures, educate staff, and monitor cyber security performance. With this guide, organizations can ensure that their systems are secure and their data is protected.}'}], hs_path=apra-cps-234-vs-nist-sp-800-53}--
ISO/IEC Internal Audit

ISO/IEC Internal Audit is a systematic and independent assessment of an organization's quality manag...

Compliance Risk

Compliance risk is the risk of legal or regulatory sanctions, financial loss, or loss of reputation ...

Center for Internet Security (CIS) Framework

Get the most out of the CIS Framework with this comprehensive guide. Learn best practices for implem...

ISO 27000

This guide is designed to help you understand the fundamentals of ISO 27000, the international stand...

Data Leak

Data leak is the intentional or unintentional release of sensitive data to an unauthorized recipient...

APRA CPS 234
APRA CPS 234 vs NIST SP 800-53

APRA CPS 234 and NIST SP 800-53 are cybersecurity standards that provide guidance on how to protect ...

eBooks

GRC Buying Guide

eBook

GRC Buying Guide

In this eBook, we have covered the GRC buying basics including: knowing when to employ a new GRC capability, baseline ex...
Download
Artificial Intelligence and Robust ...

eBook

Artificial Intelligence and Robust Content

Written by 6clicks CISO, Andrew Robinson, this eBook covers the interconnection of Artificial Intelligence and Machine L...
Download
Everything You Need to Know About 6...

eBook

Everything You Need to Know About 6clicks

Learn more about 6clicks as an organization and GRC SaaS provider including a platform overview, our solutions, a deeper...
Download
See all eBooks