Blog

ISO 27001 third-party risk management requirements

ISO 27001 supplier and third-party requirements—Annex A themes, ISMS processes, and evidence for certification audits.

ISO 27001 vs. ISO 27701: What's the difference? (security ISMS vs privacy PIMS)

ISO 27001 certifies your information security management system. ISO 27701 extends it for privacy (PIMS). Compare scope, controls, buyers, and when you need one or both.

ISO 42001:2023 controls: All you need to know (Annex A and Statement of Applicability)

ISO/IEC 42001:2023 Annex A lists AI governance controls for your AIMS. Learn control themes, how to select applicability, and evidence auditors expect.

ISO 42001 audits: Your 101 preparation guide (Stage 1, Stage 2, and evidence)

Prepare for ISO 42001 certification audits with this 101 guide—what auditors test, which AIMS records to prepare, and how Stage 1 differs from Stage 2.

ISO 42001 Vs ISO

ISO 42001 Vs ISO. ISO 27001 guide for security and GRC teams: controls, evidence, audit readiness, and continuous compliance with SecureSlate.

What are the key benefits of centralized risk management and compliance?

Centralization reduces contradictory answers, duplicate integrations, and 'which spreadsheet is right?' moments during audits.

Key CMMC documentation you need to demonstrate compliance

Essential CMMC documentation: SSP, policies, POA&M, network diagrams, evidence artifacts, and SPRS records. What DoD contractors need before assessment.

AI GRC — Manual Burden Kpi

AI GRC — Manual Burden Kpi. AI guide for security and GRC teams: controls, evidence, audit readiness, and continuous compliance with SecureSlate.

Assurance — Overview

Assurance — Overview. GRC guide for security and GRC teams: controls, evidence, audit readiness, and continuous compliance with SecureSlate.

Cmmc — Certification Explained

Cmmc — Certification Explained. CMMC guide for security and GRC teams: controls, evidence, audit readiness, and continuous compliance with SecureSlate.