• Home
  • David Pahlman
  • AI
  • Business Continuity
  • Frameworks
  • HIPAA
  • Kids Online Safety
  • Risk Management
  • Security Compliance
  • Security Governance
  • Small Business
We Make Sure
How to Build a Culture of Compliance in Your Organization

How to Build a Culture of Compliance in Your Organization

by David Pahlman | Dec 8, 2025 | Risk Management, Security Compliance, Security Governance, Small Business

5 min readCompliance is often viewed as a restrictive set of rules enforced by a single department. This narrow perspective not only hinders business agility but also leaves an organization vulnerable to significant risks, including financial penalties, operational...
The Future of GRC: Trends to Watch in 2026

The Future of GRC: Trends to Watch in 2026

by David Pahlman | Nov 2, 2025 | AI, Risk Management, Security Compliance, Security Governance

3 min readFor Chief Information Officers (CIOs) and Chief Information Security Officers (CISOs), understanding these shifts is critical. Navigating new regulations, managing emerging threats, and aligning GRC with business objectives requires foresight and strategic...
Business Associates Who Need to Become HIPAA Compliant

Business Associates Who Need to Become HIPAA Compliant

by David Pahlman | Jul 2, 2025 | HIPAA, Security Compliance

7 min readThe landscape for HIPAA Business Associates is undergoing its most significant transformation in over a decade. As the U.S. Department of Health and Human Services (HHS) doubles down on cybersecurity, the expectations for organizations that handle Protected...
The Role of GRC in Business Strategy

The Role of GRC in Business Strategy

by David Pahlman | May 14, 2025 | Frameworks, Risk Management, Security Compliance, Security Governance

4 min readAligning governance, risk, and compliance with business objectives enhances resilience and success. In today’s fast-paced business environment, organizations face increasing complexity due to evolving regulations, cyber threats, and market...
ISO 27001 vs. NIST: Which Framework is Right for Your Organization?

ISO 27001 vs. NIST: Which Framework is Right for Your Organization?

by David Pahlman | Mar 3, 2025 | Frameworks, Security Compliance

4 min readAs cybersecurity threats evolve, organizations must adopt robust security frameworks to protect their sensitive data, ensure regulatory compliance, and mitigate risks. Two of the most widely recognized frameworks are ISO 27001 and NIST (National Institute of...
Why are Security and Compliance So Important?

Why are Security and Compliance So Important?

by David Pahlman | Oct 1, 2024 | Security Compliance

3 min readI often get asked about Security and Compliance. They are often used interchangeably, and they are often not given the appropriate attention or priority. Everyone seems to know that they are necessary and that they are closely related. Most consider them a...
« Older Entries

Recent Posts

  • How to Build a Culture of Compliance in Your Organization
  • The Future of GRC: Trends to Watch in 2026
  • AI in Risk Management: Opportunities and Challenges
  • Business Associates Who Need to Become HIPAA Compliant
  • The Role of GRC in Business Strategy

Archives

  • December 2025
  • November 2025
  • October 2025
  • July 2025
  • May 2025
  • March 2025
  • October 2024
  • September 2024
  • August 2024
  • July 2024
  • June 2024
  • April 2024
  • March 2024

Categories

  • AI
  • Business Continuity
  • Frameworks
  • HIPAA
  • Kids Online Safety
  • Risk Management
  • Security Compliance
  • Security Governance
  • Small Business
  • RSS
We Make Sure | Your Security & Compliance Resource | Privacy Policy