Blog

Insights and expertise from Thoropass

Featured

Becoming the End-to-End Cybersecurity Auditor

Innovation has always been at the forefront for Thoropass, and with the introduction of the Audit Lifecycle Platform, we're the only end-to-end cybersecurity auditor built for the AI era.

Learn More

Latest posts

Compliance

What is GRC? A comprehensive guide to governance, risk, and compliance

January 18, 2024
|
Oro
Read more

Compliance

The role of a Data Protection Officer in GDPR compliance—a complete guide

January 12, 2024
|
Oro
Valuable insights into the data Protection officer role, its qualification requirements, and the crucial aspects of GDPR compliance.
Read more

Compliance

Your complete guide to GDPR Binding Corporate Rules

January 10, 2024
|
Oro
An overview of GDPR binding corporate rules to help you unpack when you are required to use them, the benefits they offer, and more
Read more

Compliance

The future of healthcare compliance: HITRUST as the foundation of a multi-framework approach

January 9, 2024
|
Thoropass Team
Highlights from a recent webinar featuring Thoropass experts, Leith Khanafseh and Zach Rutz, and HITRUST's VP of Adoption, Ryan Patrick.
Read more

Compliance

Compliance automation done the OrO Way

January 9, 2024
|
Scott West
Thoropass's integrations and monitors plug into your systems and pull all relevant data you need for your compliance efforts.
Read more

Compliance

Unraveling the HIPAA Privacy Rule: Your guide to protecting personal health information

January 8, 2024
|
Oro
How the HIPAA Privacy Rule safeguards PHI and ensures healthcare providers and their business associates maintain confidentiality.
Read more

Compliance

Essential guide to ace your PCI Audit: Preparation and tips

January 5, 2024
|
Oro
The PCI audit is a rigorous assessment process that ensures adherence to PCI DSS. But, fear not! This guide has all the info you need.
Read more

Compliance

CPRA cookie consent: Your ultimate guide for 2025

January 4, 2024
|
Oro
Read more

Compliance

HITRUST vs SOC 2: Key differences and which to choose

January 3, 2024
|
Oro
HITRUST? SOC 2? Both? Explore the differences, benefits, and common pain points so your organization can make a well-informed decision.
Read more

Compliance

Eyes on 2024: The red and green flags of doing business online

December 21, 2023
|
Bruce Edwards
Bruce Edwards, Thoropass' PCI DSS expert, offers some advice on how to set your online business up for success in 2024.
Read more

Compliance

Setting the record straight on independence

December 21, 2023
|
Eva Pittas
Read more

Compliance

PCI SAQ types: A comprehensive guide to PCI DSS self-assessment questionnaires

December 20, 2023
|
Oro
There are distinct SAQ types tailored to specific payment processing methods and scenarios. Learn which type you require in this guide.
Read more

News and Events

Thoropass Achieves AWS Healthcare Competency

December 18, 2023
|
Thoropass Team
Thoropass is thrilled to announce it has achieved the AWS Healthcare Competency in the Compliance Services category.
Read more

Compliance

What is penetration testing?

December 15, 2023
|
Oro
Penetration testing, known as pen testing, is a form of "ethical hacking." Testers attempt to exploit vulnerabilities in IT systems, etc.
Read more

Compliance

7 infosec trends in 2024 (& how they affect your business)

December 14, 2023
|
Thoropass Team
Thoropass experts weigh in on what to expect in 2024 and how to ensure you have all your infosec basis covered.
Read more
Curated by experts

We provide the compliance expertise, so you don’t have to

At Thoropass, we’re more than a readiness solution. Our team of experts are equipped with insight and hands-on experience to provide you with industry-leading perspective and guidance.

Meet the Experts

Stay connected

Subscribe to receive new blog articles and updates from Thoropass in your inbox.

Thank you for subscribing! Be on the lookout for confirmation in your inbox!
Oops! Something went wrong while submitting the form.

Want to join our team?

Help Thoropass ensure that compliance never gets in the way of innovation.

View open roles

Have any feedback?

Drop us a line and we’ll be in touch.

Contact us
Get Started

Products

Thoropass AuditCompliance Automation
PentestingThoropass AIAccess ReviewsSecurity QuestionnairesRisk AssessmentTrust CenterIntegrations and APIs

Solutions

Get CompliantMaintain ComplianceIT Security AuditsThoropass vs. Audit FirmsThoropass vs. Vanta

Frameworks

SOC 1SOC 2HIPAAHITRUSTCyber EssentialsGDPRCMMC Level 1NIST CSF 2.0PCI DSSOther Frameworks

Resources

Case Studies
BlogGuidesEventsGlossaryHelp Center

Industries

HealthcareSaaSFinTechOther Industries

Company

Our DifferenceMeet the ExpertsNewsroomCareersIndependence and ExcellenceBecome a PartnerTrust CenterContact us

Legal

MSADPAReport an IssueImpartiality and InquiriesTerms and ConditionsPrivacy Policy

Certifications:

Laika Compliance, LLC dba Thoropass Assurance is a licensed certified public accounting firm registered with the American Institute of Certified Public Accountants (AICPA). Thoropass, Inc. dba Thoropass is a leading cybersecurity and compliance professional services and technology firm.

© Copyright 2026 Thoropass, Inc.

Linkedin Logo Streamline Icon: https://streamlinehq.com
X Logo Streamline Icon: https://streamlinehq.com
Video Player 1 Streamline Icon: https://streamlinehq.com