Blog

Insights and expertise from Thoropass

Featured

Becoming the End-to-End Cybersecurity Auditor

Innovation has always been at the forefront for Thoropass, and with the introduction of the Audit Lifecycle Platform, we're the only end-to-end cybersecurity auditor built for the AI era.

Learn More

Latest posts

Compliance

An overview of vendor risk management (VRM)

November 3, 2023
|
Oro
A vendor risk management strategy helps you identify, analyze, monitor, and mitigate risks posed by third-party vendors that can impact your security posture.
Read more

Compliance

The butterfly effect: Analyzing Okta’s data breach

November 2, 2023
|
Thoropass Team
Thoropass debriefs the Okta's data breach and the butterfly effect it has on stock price, third-parties, and customer trust.
Read more

Compliance

A breakdown of the ISO 27001 audit and certification process

November 1, 2023
|
Oro
Your ISMS is in place, controls are implemented, and risk assessment completed. It's time for your ISO 27001 audit ahead of certification.
Read more

Compliance

Tales from the compliance crypt: AI is the latest specter to haunt the world of cybersecurity

October 31, 2023
|
Thoropass Team
Thoropass's tales from the compliance crypt brings you an AI haunting, the scary side of AI we are now facing.
Read more

Compliance

RIP Passwords

October 30, 2023
|
Thoropass Team
Thoropass discusses how passwords are dead in this Halloween-themed blog post, 'RIP Passwords.'
Read more

Compliance

Compliance requirements for PCI DSS merchant levels

October 27, 2023
|
Oro
PCI DSS merchant levels are based on the volume of transactions processed and have their own requirements for staying compliant.
Read more

Compliance

How much does ISO 27001 certification cost?

October 25, 2023
|
Oro
Find out what ISO 27001 costs, the variables involved, and strategies your team can leverage to save time and money in the process.
Read more
Person writes a math formula on the whiteboard to calculate ISO 27001 certification cost

Compliance

Understanding GDPR Employee Data Protection

October 23, 2023
|
Oro
As an employer, it is crucial to understand how the GDPR affects the way you handle your employees' personal data.
Read more

Compliance

What is the SIG Questionnaire?

October 20, 2023
|
Thoropass Team
Easily build, customize, analyze, and store vendor assessments of third-party vendors and manage risk with the SIG Questionnaire.
Read more

Compliance

Unveiling dark HIPAA horrors: Beware of penalties and fines

October 17, 2023
|
Thoropass Team
Thoropass explains Tales from the Compliance Crypt. This week it's about HIPAA horrors and how to avoid penalties and fines.
Read more

Compliance

Understanding PCI DSS Encryption Requirements in 2025

October 16, 2023
|
Oro
Updated guide to PCI DSS encryption requirements for 2025: Key changes in version 4.0.1 and essential implementation strategies for compliance.
Read more

Compliance

Compliance FAQ: Answers to your GDPR questions

October 13, 2023
|
Oro
From who needs to be compliant with GDPR to the impact of non-compliance, get the answers to your GDPR questions here.
Read more

Compliance

Which compliance framework is best for your business? Take our quiz to find out

October 12, 2023
|
Thoropass Team
Thoropass's Compliance Multi-framework Quiz determines what frameworks accelerate growth, save money, and save time for your business.
Read more

Compliance

Unlocking the benefits of continuous security management

October 11, 2023
|
Oro
Continuous security management helps you stay on top of potential risk and monitoring your security posture in real-time.
Read more

Compliance

Your PCI DSS compliance checklist: The 12 essential requirements

October 6, 2023
|
Oro
Leverage this checklist to help your organization reach the 12 essential requirements for PCI DSS compliance.
Read more
Curated by experts

We provide the compliance expertise, so you don’t have to

At Thoropass, we’re more than a readiness solution. Our team of experts are equipped with insight and hands-on experience to provide you with industry-leading perspective and guidance.

Meet the Experts

Stay connected

Subscribe to receive new blog articles and updates from Thoropass in your inbox.

Thank you for subscribing! Be on the lookout for confirmation in your inbox!
Oops! Something went wrong while submitting the form.

Want to join our team?

Help Thoropass ensure that compliance never gets in the way of innovation.

View open roles

Have any feedback?

Drop us a line and we’ll be in touch.

Contact us
Get Started

Products

Thoropass AuditCompliance Automation
PentestingThoropass AIAccess ReviewsSecurity QuestionnairesRisk AssessmentTrust CenterIntegrations and APIs

Solutions

Get CompliantMaintain ComplianceIT Security AuditsThoropass vs. Audit FirmsThoropass vs. Vanta

Frameworks

SOC 1SOC 2HIPAAHITRUSTCyber EssentialsGDPRCMMC Level 1NIST CSF 2.0PCI DSSOther Frameworks

Resources

Case Studies
BlogGuidesEventsGlossaryHelp Center

Industries

HealthcareSaaSFinTechOther Industries

Company

Our DifferenceMeet the ExpertsNewsroomCareersIndependence and ExcellenceBecome a PartnerTrust CenterContact us

Legal

MSADPAReport an IssueImpartiality and InquiriesTerms and ConditionsPrivacy Policy

Certifications:

Laika Compliance, LLC dba Thoropass Assurance is a licensed certified public accounting firm registered with the American Institute of Certified Public Accountants (AICPA). Thoropass, Inc. dba Thoropass is a leading cybersecurity and compliance professional services and technology firm.

© Copyright 2026 Thoropass, Inc.

Linkedin Logo Streamline Icon: https://streamlinehq.com
X Logo Streamline Icon: https://streamlinehq.com
Video Player 1 Streamline Icon: https://streamlinehq.com