Blog

Insights and expertise from Thoropass

Latest posts

What is GDPR compliance: A comprehensive guide

GDPR, or the General Data Protection Regulation, sets the bar for privacy and data protection worldwide. Complying with GDPR means ensuring that personal data is processed lawfully, transparently, and…

Mastering BCDR: Essential strategies for effective business continuity and disaster recovery

There are many threats to your normal business operations: Those threats can include everything from a natural disaster that causes unexpected power interruptions to the ever-present threat of cyber…

Understanding ISO 27001 vs 27002: A comprehensive guide

When securing an organization’s information, ISO 27001 and 27002 are critical standards but serve different purposes. Companies often grapple with choosing between them or understanding how they complement each…

Thoropass announces revolutionary new multi-framework support

You got your SOC 2 report. Now what? You have to take care of your data. And you have to convince others that you are doing it correctly. If…

Thoropass partners with DynamoFL to pioneer application pentests for GenAI systems

Thoropass continues to lead the compliance industry forward by announcing a partnership with DynamoFL that will advance the protection of sensitive data related to AI LLMs. Already a leader in infosec compliance…

What is GDPR compliance: A comprehensive guide

GDPR, or the General Data Protection Regulation, sets the bar for privacy and data protection worldwide. Complying with GDPR means ensuring that personal data is processed lawfully, transparently, and…

Mastering BCDR: Essential strategies for effective business continuity and disaster recovery

There are many threats to your normal business operations: Those threats can include everything from a natural disaster that causes unexpected power interruptions to the ever-present threat of cyber…

Understanding ISO 27001 vs 27002: A comprehensive guide

When securing an organization’s information, ISO 27001 and 27002 are critical standards but serve different purposes. Companies often grapple with choosing between them or understanding how they complement each…

Understanding the GDPR breach notification timeline: A step-by-step guide

In the event of a data breach, the GDPR breach notification timeline is straightforward: you must notify the relevant authorities within 72 hours.  This blog post outlines the critical…

Your comprehensive guide to a business impact analysis (BIA)

The Business Impact Analysis (BIA) is a critical tool designed to help organizations identify and address potential disruptions before they wreak havoc. Think of a BIA as a framework…

Thoropass announces revolutionary new multi-framework support

You got your SOC 2 report. Now what? You have to take care of your data. And you have to convince others that you are doing it correctly. If…

Thoropass partners with DynamoFL to pioneer application pentests for GenAI systems

Thoropass continues to lead the compliance industry forward by announcing a partnership with DynamoFL that will advance the protection of sensitive data related to AI LLMs. Already a leader in infosec compliance…

Compliance automation done the OrO Way

Two-way Jira sync and auditor-approved integrations—it’s game-changing compliance Compliance automation software like Thoropass considerably reduces the time and effort required for certification or attestation. But as important as Thoropass…

Product Spotlight: Project Management Bundle

There is no doubt that achieving security compliance is a collaborative effort. Stakeholders, contributors, and other roles have to understand what’s being asked of them, the deliverables, the timelines,…

Product Spotlight: Security Questionnaire Tools

Enterprises use security questionnaires to assess data safety when it’s in the vendors’ hands. They want to see honest, direct, complete responses––but most questionnaires range from 80-500 or more…
  • 1
  • 2

You’re doing performance reviews wrong (and so were we)

Joe Bast is the VP of People & Operations at Thoropass I recently hosted a panel discussion with Confirm, People People, and HR Chief entitled “You’re Doing Performance Reviews…

3 reasons why we’re crushing on our customers for Valentine’s Day

Securing new partnerships is always exciting. But there’s nothing more rewarding than exceeding the expectations of our current customers. At Thoropass, we’re lucky to have handfuls of devoted customers-turned-evangelists…

Real Automation + Real Audits: Renewing our commitment to being your favorite compliance platform

From Thoropass co-founders Sam Li and Eva Pittas: Thoropass was founded nearly five years ago on the principle that true compliance innovation would only be served by seamlessly providing…

Two examples of how leader engagement can lead to employee engagement 

As a company, one of our core values is “Be Curious, Ask & Learn.”  Consequently, we strive to create a place where feedback is not just valued and solicited…

2023 Wrapped: A playlist for CISOs

In the dynamic world of information security and data privacy, Chief Information Security Officers (CISOs) find themselves at the forefront of the digital battlefield, tirelessly defending their organizations against…

Black History Month Spotlight: Meet Corey White of Cyvatar

As we wrap up Black History Month, Thoropass wanted to shine a spotlight on one of the rising stars and black-owned businesses in our Partnership Ecosystem. Meet Corey White…

#ThoropassInTheWild: The need for speed

In the fast-paced world of B2B SaaS, every second counts. B2B companies are constantly seeking innovative ways to accelerate their processes and gain a competitive edge. However, this “need…

Thoropass leads automated infosec compliance solutions by becoming a QSAC for PCI payments

NEW YORK, NEW YORK, USA, January 24, 2024 /via EINPresswire.com/ Thoropass, an industry leader in infosec compliance and audits, announces that it is now a Qualified Security Assessor Company…

The future of healthcare compliance: HITRUST as the foundation of a multi-framework approach

As we enter 2024, Healthcare Technology (HealthTech) Infosec Teams will be asked to do more with less.  Cyber threats for HealthTech continue to grow at a rapid pace. As…

Thoropass Achieves AWS Healthcare Competency

In the ever-evolving landscape of healthcare technology, ensuring the security of patient data is of paramount importance. Recognizing this need, Amazon Web Services (AWS) has established the AWS Competency…