IT Audit Blog
The latest insights on IT audits, compliance, cybersecurity and certifications. Practical knowledge for information security professionals.
4 articles found
Cyber Essentials and Cyber Essentials Plus: A Complete Certification Guide for UK Organisations
Everything you need to know about Cyber Essentials certification in the UK: what it covers, who needs it, and how to achieve CE and CE Plus accreditation.
UK GDPR Compliance Audit: What Has Changed Post-Brexit and How to Prepare
A practical guide to UK GDPR compliance audits: understand the differences from EU GDPR, ICO enforcement powers and what auditors examine during a data protection assessment.
CREST Penetration Testing in the UK: Why Accreditation Matters and What to Expect
An in-depth guide to CREST-accredited penetration testing: what the accreditation means, the types of tests available, and why UK organisations should insist on CREST-certified testers.
NHS Data Security and Protection Toolkit (DSPT): A Guide for Organisations and Their Auditors
Everything you need to know about the NHS DSPT: who must complete it, what the annual submission involves, and how an IT audit supports compliance with NHS data security standards.