Concepts & Best Practices

Start to finish. A workflow for a cybersecurity compliance program
Common workflow Here is a very helpful and commonly used workflow by our customers planning a SOC 2 audit or ISO 27001 certification. The end-to-end wor...
Wed, 27 Oct, 2021 at 3:38 PM
Automating your compliance operations
Why automation?   You can save hundreds of hours of manual work every month collecting, managing, and maintaining evidence that you will be required to mai...
Wed, 27 Oct, 2021 at 3:59 PM
Syncing Employee / HR system with ControlMap
Why connect your HR system to ControlMap A large number of evidence requests from the auditors for SOC 2 audits or for ISO 27001 certifications are r...
Wed, 27 Oct, 2021 at 7:21 PM
Understanding Risks, Vulnerabilities and Threats
In our system, adding a Threat to Risk does not automatically mean that all Vulnerabilities exploited by the Threat are associated with the Risk.  The follo...
Mon, 27 Mar, 2023 at 3:10 PM