Blog

Insights and expertise from Thoropass

Latest posts

What is a SOC 2 bridge letter and why do you need one?

Every day counts when it comes to maintaining security and compliance. Indeed, the achievements of an entire fiscal year can be eclipsed by a single incident related to security…

Introducing support for 23 NYCRR Part 500:  Enhance cyber governance, mitigate risks, and protect your business from cyber threats

Thoropass now supports 23 NYCRR Part 500 cybersecurity regulation! Thoropass’ end-to-end compliance and audit solution can now guide you through the entire process. With everything in one place, achieving…

Leveraging AI in risk management: Essential benefits and challenges

Risk is the potential for loss or harm arising from uncertain events. Risk involves measurable factors, such as financial losses, probabilities, and statistical data, and less-quantifiable risks, such as…

Happy Hallow-Meme! Creepy compliance delights for infosec enthusiasts.

Who says infosec compliance and data privacy can’t be ferociously fun? To honor the spooookiest month of the year, we curated a delightfully creepy collection of compliance-themed memes for…

Scam Hunters episode 6: The Notorious Notary

In episode 6, Heidi and Ezra start to suspect that this scam is much more than just stolen credit cards, but it’s still unclear if it’s an insider job…

What is a SOC 2 bridge letter and why do you need one?

Every day counts when it comes to maintaining security and compliance. Indeed, the achievements of an entire fiscal year can be eclipsed by a single incident related to security…

Leveraging AI in risk management: Essential benefits and challenges

Risk is the potential for loss or harm arising from uncertain events. Risk involves measurable factors, such as financial losses, probabilities, and statistical data, and less-quantifiable risks, such as…

Happy Hallow-Meme! Creepy compliance delights for infosec enthusiasts.

Who says infosec compliance and data privacy can’t be ferociously fun? To honor the spooookiest month of the year, we curated a delightfully creepy collection of compliance-themed memes for…

Scam Hunters episode 6: The Notorious Notary

In episode 6, Heidi and Ezra start to suspect that this scam is much more than just stolen credit cards, but it’s still unclear if it’s an insider job…

How a robust compliance management system can transform your organization

In today’s rapidly evolving business landscape, compliance isn’t just a legal necessity; it’s a critical component of operational success. For organizations navigating complex regulatory environments, a Compliance Management System…

Introducing support for 23 NYCRR Part 500:  Enhance cyber governance, mitigate risks, and protect your business from cyber threats

Thoropass now supports 23 NYCRR Part 500 cybersecurity regulation! Thoropass’ end-to-end compliance and audit solution can now guide you through the entire process. With everything in one place, achieving…

Introducing: The Thoropass Integration Partner Program

Thoropass began with a clear vision: never let compliance be a blocker to innovation. That means removing unnecessary work, and automating tedious processes. Integrations have always been at the…

Product announcements unveiled at #ThoropassConnect: New Access Reviews & more!

Companies today are juggling an average of over 130 SaaS applications—nearly double the number from 2020. Managing who has access to what tools is no longer a simple administrative…

What to look for from your compliance management software in 2024

In 2024, the importance of cybersecurity, risk management, and compliance has never been more critical. As new regulations (e.g., EU AI Act) emerge and compliance regulations (PCI DSS, GDPR,…

Slash the time it takes to complete due diligence questionnaires with Thoropass DDQs powered by GenAI

Powered by GenAI,  Thoropass’s new Due Diligence Questionnaires product redefines how you respond to due diligence questionnaires, security surveys, and RFPs, saving time, reducing risk, and accelerating completion.  By…

Scam Hunters episode 6: The Notorious Notary

In episode 6, Heidi and Ezra start to suspect that this scam is much more than just stolen credit cards, but it’s still unclear if it’s an insider job…

Scam Hunters episode No. 5: The Priest with a secret? 

If you aren’t caught up, make sure to check out the previous episodes of Scam Hunters! In episode 5 of Scam Hunters, Ezra and Heidi turn their attention to…

Walking the walk: Thoropass is now ISO 42001 certified

As AI becomes increasingly integrated into business operations, maintaining trust, security, and responsibility is paramount. Over the past year, Thoropass has been at the forefront of AI innovation, developing…

Key Takeaways from Thoropass Connect: Ethical and Responsible Use of AI

With AI becoming a core part of enterprise strategy, cybersecurity professionals are wading through the multifaceted dimensions of responsible and ethical AI use. Meanwhile, executives across business functions are…

Key takeaways from Thoropass Connect 2024: Emerging threats and opportunities from AI

Thoropass recently held its first-ever Thoropass Connect, a one-day in-person event for infosec leaders and compliance professionals to network, safeguard their organizations for the future, and gain takeaways to…

Global compliance in HR and payroll 

As remote work and global business become more and more common, your company may be considering adding employees in another country, or maybe you already have an international team. …

Safeguarding Healthcare systems in the digital age: Navigating threats and new regulations

Healthcare has undergone a digital transformation over the past decade—electronic health record (EHR) adoption is at an all-time high, telehealth has become a key channel for patient care, and…

AWS Foundation Technical Review (FTR): Reducing risks and validating capabilities for growing companies. 

Any SaaS business should be putting high importance on optimizing and securing its AWS environments and making them operationally efficient, all while using best practices. This helps safeguard your…

Simplifying FinTech compliance auditing and implementation with DuploCloud

Financial Technology (FinTech) drives repeatable, secure processes that promote fast, safe, and user-friendly transactions. It is one of the most complex and highly volatile regulatory landscapes with significant stakes…

Your 180-day plan for BOI reporting

This article was contributed by Thoropass Partner, FileForms. Do you have a plan in place to ensure your compliance with the government? Over the next approximately 180 days, a…