Blog

Insights and expertise from Thoropass

Featured

Introducing NIST CSF, CMMC Level 1 and Cyber Essentials

Strengthen your baseline security posture and align with the latest industry guidance. Our platform and experts are here to help you move forward with clarity and speed.

Learn More

Latest posts

Audit

The ultimate cyber IT audit glossary for security leaders

January 23, 2026
|
Audits can involve a seemingly endless amount of confusing terms and concepts. We've compiled them all here in one place, to make your next audit easier.
Read more

AI

Choosing an AI-powered compliance tool: A practitioner’s guide

January 23, 2026
|
Learn how to evaluate AI powered compliance tools, manage data privacy risks, and select a platform that satisfies real-world auditors.
Read more

Audit

10 Things I’ve Learned from Thousands of IT Audits

January 15, 2026
|
IT audits don't have to cause sleepless nights. Thoropass' Chris Beiro outlines 10 things to consider to ensure your next audit is as stress-free as possible.
Read more

Compliance automation

When Compliance Becomes Theater, Everyone Loses

January 12, 2026
|
Security compliance and audit are at risk of becoming commoditized, where speed and time are the only considerations. What risks does this pose and how can they be avoided?
Read more

SOC 2

Has SOC 2 been commoditized? How to ensure your SOC 2 report helps you strengthen your posture and improve your commercial prospects

December 29, 2025
|
Has SOC 2 been commoditized? It depends. Here's how to ensure your SOC 2 report actually helps you strengthen your security posture.
Read more

ISO 42001

Responsible AI usage: where to begin for security leaders

November 18, 2025
|
Thoropass Team
Getting a handle on AI usage in your organization can be challenging. Learn more about how to get started.
Read more

Audit

Workflows to transform your GRC and audit program

October 7, 2025
|
Thoropass Team
Read more

News and Events

Thoropass recognized by Frost & Sullivan for customer value leadership

September 30, 2025
|
Thoropass Team
Read more

Audit

How Sinch modernized their audit process with Thoropass

September 23, 2025
|
Thoropass Team
We spoke with Dan Ross, Sinch's Director GRC, to learn more about how they improved their audit process and reduced team frustration.
Read more

Compliance

Reducing risk and increasing ROI: why new industries are increasingly turning to HITRUST for certification

September 19, 2025
|
Thoropass Team
Read more

Compliance

InfoSec as a strategic initiative

September 18, 2025
|
Thoropass Team
Read more

Pentesting

Red Team vs. Pentesting: What’s the difference and why it matters for your business

September 3, 2025
|
Thoropass Pentest Team
Explore the differences between penetration testing and red teaming. Learn how each approach works, their unique goals and which is right for your security needs.
Read more

Compliance

Multi-framework compliance: the key to reducing audit fatigue and enabling strategic improvements to your security posture

September 3, 2025
|
Matthew Udicious
A multi-framework approach to compliance can help your teams save time and money while avoiding audit fatigue.
Read more

Compliance

A guide to HITRUST compliance

September 3, 2025
|
Thoropass Team
Learn more about the different HITRUST certifications and how they can help your organization improve its security posture.
Read more

Compliance

How AI changes compliance

September 3, 2025
|
Thoropass Team
From the EU AI Act to ISO 42001, AI is already changing compliance. Learn more about how AI can help elevate the role of of compliance.
Read more
Curated by experts

We provide the compliance expertise, so you don’t have to

At Thoropass, we’re more than a readiness solution. Our team of experts are equipped with insight and hands-on experience to provide you with industry-leading perspective and guidance.

Meet the Experts

Stay connected

Subscribe to receive new blog articles and updates from Thoropass in your inbox.

Thank you for subscribing! Be on the lookout for confirmation in your inbox!
Oops! Something went wrong while submitting the form.

Want to join our team?

Help Thoropass ensure that compliance never gets in the way of innovation.

View open roles

Have any feedback?

Drop us a line and we’ll be in touch.

Contact us
Get Started

Products

Thoropass AuditCompliance Automation
PentestingThoropass AIAccess ReviewsSecurity QuestionnairesRisk AssessmentTrust CenterIntegrations and APIs

Solutions

Get CompliantMaintain ComplianceIT Security AuditsThoropass vs. Audit FirmsThoropass vs. Vanta

Frameworks

SOC 1SOC 2HIPAAHITRUSTCyber EssentialsGDPRISO 27001ISO 27018ISO 42001CMMC Level 1NIST CSF 2.0PCI DSSOther Frameworks

Resources

Case Studies
BlogGuidesEventsHelp Center

Industries

HealthcareSaaSFinTechOther Industries

Company

Our DifferenceMeet the ExpertsNewsroomCareersIndependence and ExcellenceBecome a PartnerTrust CenterContact us

Legal

MSADPAReport an IssueTerms and ConditionsPrivacy Policy

Certifications:

Laika Compliance, LLC dba Thoropass Assurance is a licensed certified public accounting firm registered with the American Institute of Certified Public Accountants (AICPA). Thoropass, Inc. dba Thoropass is a leading cybersecurity and compliance professional services and technology firm.

© Copyright 2025 Thoropass, Inc.

Linkedin Logo Streamline Icon: https://streamlinehq.com
X Logo Streamline Icon: https://streamlinehq.com
Video Player 1 Streamline Icon: https://streamlinehq.com