Compliance & Auditing
Checking access...
Compliance ensures organisations meet regulatory, industry, and contractual security requirements. Auditing provides the evidence that controls are working. Together, they form the governance layer that validates security investments.
Module Pages
| Page | Description |
|---|---|
| Regulatory Frameworks | GDPR, HIPAA, PCI DSS, SOX, ISO 27001 — requirements, penalties, scope |
| SOC Reports | SOC 1/2/3, Type I vs Type II, audit evidence, report interpretation |
| Audit Process | Audit lifecycle, evidence collection, managing findings |
| Compliance Automation | Policy-as-code, continuous monitoring, automated evidence collection |
| Data Privacy | Privacy principles, data mapping, DSARs, privacy-by-design |
| Compliance Lab | Hands-on: map controls to framework, collect audit evidence |
| Flashcards | Test your knowledge |