alt Hacker NewsIf the megacorps are going in that direction of being strictly regulated, the rest of the industry will follow. It's the general movement of the Overton Window that's the underlying issue.
If the megacorps are going in that direction of being strictly regulated, the rest of the industry will follow. It's the general movement of the Overton Window that's the underlying issue.
No, they won't. No one in their right mind "wants" ISO27001, ISO9001, SOC or multiple PITA certifications.
Companies do that because they want to attract certain kind of customers and have enough spare manpower and money to go through this all year long.
....or they want to hold a very sensitive data that requires *proven* processes, trainings and skills.
My firm has several of these and we have to keep full compliance team and *always* have some auditor on site.
No one does it just because.