Content Icon

Audits, Assessments and Testing: Know the Differences

September 15, 2020 | Ask-An-Expert Writeups | Auditing | By Rich Guida, IANS Faculty

The terms “audits,” “assessments” and “testing” have both legal and common-usage distinctions. This report ensures you understand the differences.


Already a client?

Log In to Continue

Not a client?

Request More Information

Related Research

CCPA Finalization: How the August 2020 Changes Affect Compliance

This month, the state of California released the final changes to the California Consumer Privacy Act (CCPA). This report provides an overview of the most important changes and explains how they may affect your compliance efforts.

Exceptions vs. Deviations: Get Your Terms Straight

The terms “exceptions” and “deviations” are used widely in IT security and compliance, with little standardization. This report offers clear definitions for each term and explains how to use them correctly within standards and compliance processes.

Create NIST-Compliant CUI Data Flows

All Department of Defense (DoD) contractors that process, store or transmit controlled unclassified information (CUI) must meet the Defense Federal Acquisition Regulation Supplement (DFARS) minimum security standards or risk losing their DoD contracts – and documenting CUI data flows is an important requirement. This report provides a step-by-step process for creating NIST-compliant CUI data flows.