Lead Auditor

A Lead Auditor is a professional who is trained and qualified to conduct audits of an organization’s management systems to ensure that they meet the requirements of a specific standard, such as ISO 9001, ISO 27001, or SOC 2. The role of a Lead Auditor is to plan, execute, and report on the results of […]

The Information Security Standards for Securities (ISSS) – Israel

The Information Security Standards for Securities (ISSS) is a standard in Israel that provides guidelines for organizations that issue or trade securities to manage and protect against cyber threats. This standard is intended to help organizations in the securities market to protect sensitive information and comply with relevant regulations and laws. The ISSS includes guidelines […]

The Information Security Standards for the Capital Market (ISSCM) – Israel

The Information Security Standards for the Capital Market (ISSCM) is a standard in Israel that provides guidelines for organizations in the capital market to manage and protect against cyber threats. This standard is intended to help organizations in the capital market to protect sensitive information and comply with relevant regulations and laws. The ISSCM includes […]

The National Cyber Security Framework (NCSF) – Israel

The National Cyber Security Framework (NCSF) is a standard in Israel that provides a framework for organizations to manage and protect against cyber threats. The standard is based on the international standard ISO/IEC 27001 and is designed to help organizations establish, implement, maintain, and continually improve their information security management systems (ISMS). The NCSF includes […]

ISO27799

ISO 27799 is an international standard for information security management in the healthcare industry. It provides guidelines for establishing, implementing, maintaining, and continually improving an information security management system (ISMS) specifically for healthcare organizations. The standard is based on the ISO 27001 standard, but includes additional requirements and controls that are specific to the healthcare […]

HIPAA

The Health Insurance Portability and Accountability Act (HIPAA) is a federal law that was enacted in 1996 to protect the privacy and security of individually identifiable health information. The law applies to a wide range of entities, including healthcare providers, health plans, and healthcare clearinghouses, known as covered entities. HIPAA includes two sets of regulations: […]

GDPR

The General Data Protection Regulation (GDPR) is a regulation of the European Union (EU) that came into effect on May 25, 2018. It replaces the 1995 EU Data Protection Directive and strengthens EU data protection rules. The GDPR applies to any organization that processes personal data of individuals in the EU, regardless of whether the […]

PCI-DSS

PCI-DSS (Payment Card Industry Data Security Standards) is a set of security standards designed to ensure that all companies that accept, process, store or transmit credit card information maintain a secure environment. The PCI-DSS standards were created by major credit card companies such as Visa, MasterCard, American Express and Discover to protect sensitive cardholder data […]

SOC2

SOC 2 (System and Organization Control) is a set of standards and guidelines for assessing and reporting on the controls at a service organization related to security, availability, processing integrity, confidentiality and privacy. SOC 2 reports are intended to provide assurance to customers, regulators, and other stakeholders that the service organization has effectively designed and […]

ISO27001

ISO 27001 is an international standard for information security management. It provides a framework for establishing, implementing, maintaining, and continually improving an information security management system (ISMS). The standard is designed to help organizations protect their sensitive information from unauthorized access, disclosure, alteration, or destruction. ISO 27001 is based on a risk management approach, which […]

Skip to content