Resources

Here’s what we’re thinking about, writing about, and reading about.
We hope you find it helpful.

In the News

Mike DeKock on Building Competitive AdvantageMike DeKock on Building Competitive Advantage
How do the value creation principles of subjective value, entrepreneurship and creativity apply in a highly technical rules-based environment like SOC Compliance audits. These are objective validations of data security measures based on customer-defined criteria similar to traditional financial audits but more specific and subjective.
READ MORE
READ MORE
Everything you know about audits and compliance is changingEverything you know about audits and compliance is changing
Throughout history, the prevailing narrative surrounding compliance has been one of necessity, not choice, and audits are approached with a sense of inevitability rather than opportunity.
READ MORE
READ MORE

Written by us

GRC SuperheroesGRC Superheroes
Putting the right team together can be exciting and challenging. It's something we think about a lot, so we decided to share the superheroes that make up our GRC dream team.
READ MORE
READ MORE
Understanding the Nuances: Privacy and ConfidentialityUnderstanding the Nuances: Privacy and Confidentiality
Within the SOC 2 framework, two crucial categories—privacy and confidentiality—play distinct roles in safeguarding sensitive data. Our latest article outlines each category and the differences between the two.
READ MORE
READ MORE
Does MJD offer SOC 2® readiness assessments?Does MJD offer SOC 2® readiness assessments?
Find out why we don't offer SOC 2 readiness assessments, and how we approach the early phases of a SOC 2 report instead.
READ MORE
READ MORE

Recommended by us

ChatGPT and SecurityChatGPT and Security
Jemurai shares their ideas and research to present a balanced view on the security implications of using ChatGPT
READ MORE
READ MORE
The Truth About AuditsThe Truth About Audits
Jemurai talks about the good, bad, and ugly they see around cybersecurity audits.
READ MORE
READ MORE
ISO/IEC 27001: 2022 - Your Guide to the Updates and How to Get (and Stay) CompliantISO/IEC 27001: 2022 - Your Guide to the Updates and How to Get (and Stay) Compliant
Echelon Risk + Cyber, in this article, breaks down everything you need to know about the ISO 27001: 2022 updates.
READ MORE
READ MORE

If you have questions or content you’d like to see, email us at info@mjd.cpa.
For more information on SOC report types and usage, please visit the American Institute of Certified Public Accountant's (AICPA) website.