Skip to content

Resources

Curated content for the risk and compliance professional: We cover the latest on cybersecurity, frameworks, risks, and compliance trends.

Show filters
All
Answers
Framework comparisons
Events
Glossary
Guides

Glossary

Topics
All ISO 27001 Right Fit For Risk (RFFR) PCI-DSS NIST Cybersecurity Framework (CSF) Information Security Management System (ISMS) ASD Essential 8 FedRAMP Defence Industry Security Program (DISP) Enterprise Risk Management Compliance Management Australian Financial Services Compliance Vulnerability Management Cybersecurity Compliance SOC 2 NIST SP 800-53 ISO 27000 NIST SP 800-171 HITRUST Common Security Framework Center for Internet Security (CIS) Framework MITRE ATT&CK ENISA National Capabilities Assessment Framework UK Cyber Essentials GDPR GRC Software Information Security Registered Assessors Program (IRAP) Vendor Risk Management APRA CPS 234 Cybersecurity Risk Management Environmental, Social, and Governance (ESG) CMMC ISO 27017 Distributed GRC
SSAE 16

Statement on Standards for Attestation Engagements (SSAE) No. 16 is an attestation standard issued b...

SOC Reports

SOC Reports, or Service Organization Control Reports, are independent third-party audit reports that...

SOC 3

SOC 3 is an internationally recognized standard that is used to assess and report on the security an...

SOC 2
SOC 1

SOC 1 is an abbreviation for Service Organization Controls 1 Report. It is a report issued by an ind...

Australian Securities and Investments Commission (...

The Australian Securities and Investments Commission (ASIC) is an independent Australian government ...

AFSL Authorised Representative

An AFSL Authorised Representative is an individual or organisation that has been authorised by an Au...

Vulnerability Management
Vulnerability

Vulnerability is a state of being open to potential harm, either physically, emotionally, or psychol...

Information Security Management System (ISMS)
Information Security Management System (ISMS)

An Information Security Management System (ISMS) is a comprehensive set of policies, procedures, con...

FedRAMP
FedRAMP

FedRAMP (Federal Risk and Authorization Management Program) is a government-wide program that provid...

Office of the Australian Information Commissioner ...

The Office of the Australian Information Commissioner (OAIC) is an independent statutory agency crea...

Vendor Risk Management
Health Information Trust Alliance (HITRUST)

The Health Information Trust Alliance (HITRUST) is a non-profit organization that was created to pro...

Vendor Risk Management
Third-party risk management

Third-party risk management is the process of identifying, assessing, and mitigating risks associate...

eBooks

GRC Buying Guide

eBook

GRC Buying Guide

In this eBook, we have covered the GRC buying basics including: knowing when to employ a new GRC capability, baseline ex...
Download
Artificial Intelligence and Robust ...

eBook

Artificial Intelligence and Robust Content

Written by 6clicks CISO, Andrew Robinson, this eBook covers the interconnection of Artificial Intelligence and Machine L...
Download
Everything You Need to Know About 6...

eBook

Everything You Need to Know About 6clicks

Learn more about 6clicks as an organization and GRC SaaS provider including a platform overview, our solutions, a deeper...
Download
See all eBooks