Looking to streamline your TPRM? Join our Product Deep Dive Webinar with live Q&A!
Register Now
Resources
BlogEventsBreachesResourcesNews

Compliance and Regulations

Articles, news, and research on cybersecurity compliance and regulations.
Categories
View all
Attack Surface Management
Company news
Compliance and Regulations
Cyber Risk Posture Management
Cybersecurity
Data Breaches
DevOps
Human Cyber Risk
Risk Automations
Risks and Vulnerabilities
Third-Party Risk Management
Trust Exchange
Vendor Risk Management

Compliance and Regulations

Compliance and Regulations

ISO 27001 Audit: How to prepare and the critical next steps

Step-by-step guidance on ISO 27001 audit preperation, handling nonconformities, next steps, and tools that simplify certification.
Edward Kost
October 20, 2025
Compliance and Regulations

Free NIST CSF Vendor Questionnaire Template (PDF Download)

Use this free NIST CSF questionnaire template to get a high-level understanding of each vendor's degree of alignment with the framework.
Edward Kost
December 1, 2025
Compliance and Regulations

Free ISO 27001 Vendor Questionnaire Template (PDF Download)

Use this free template for a high-level evaluation of vendor alignment with ISO 27001.
Edward Kost
December 1, 2025
Compliance and Regulations

Understanding FedRAMP: What Federal Agencies Need to Know

Learn more about FedRAMP, a US government-mandated compliance standard for federal agencies that use cloud services.
Kyle Chin
July 3, 2025
Compliance and Regulations

Free PCI DSS Vendor Questionnaire Template (PDF Download)

Use this free template to get a sense of each vendor's degree of PCI DSS compliance in 2025.
Edward Kost
June 30, 2025
Compliance and Regulations

What is the Computer-Security Incident Notification Rule?

Find out what the Computer-Security Incident Notification Rule is and which organizations need to comply.
Kyle Chin
November 18, 2024
Compliance and Regulations

What is NIST 800-161? Guide & Compliance Tips

Learn why NIST SP 800-161 is important and how it can help your supply chain risk management practices.
Kyle Chin
December 2, 2025
Compliance and Regulations

SOCI Act Explained: Compliance Rules & Requirements

Explore Australia’s SOCI Act, compliance requirements, amendments, and reporting obligations for critical infrastructure organizations.
Leah Sadoian
December 2, 2025
Compliance and Regulations

How to Comply with Australia’s CIRMP Rules

Find out if your business falls under Australia's new CIRMP obligations and how businesses can comply with the new rules.
Kyle Chin
December 2, 2025
Compliance and Regulations

What is CIRCIA? How This Law May Affect Your Business

Find out how CIRCIA reporting requirements could affect critical infrastructure organization in the US.
Kyle Chin
June 30, 2025
Compliance and Regulations

What is the Digital India Act? India's Newest Digital Law

Learn about India's upcoming Digital India Act that aims to transform the digital landscape of the country for years to come.
Kyle Chin
January 7, 2025
Compliance and Regulations

FERPA Compliance Guide (Updated 2025)

Find out which requirements schools need to follow to become FERPA compliant.
Kyle Chin
December 2, 2025
Compliance and Regulations

Most Common HECVAT Violations (And How to Avoid Them)

Find out what the most common HECVAT violations are and how schools can avoid them.
Kyle Chin
April 7, 2025
Compliance and Regulations

The Difference Between a Regulation and Cyber Framework

The difference between a regulation and framework, plus other common cybersecurity misconceptions are addressed in this post.
Edward Kost
December 2, 2025
Compliance and Regulations

List of Cybersecurity Laws and Regulations in the UK

Learn about the most important cybersecurity laws and regulations in the UK.
Kyle Chin
December 2, 2025
Compliance and Regulations

What Are the Penalties for HIPAA Violations?

Find out the different tiers of HIPAA violations and the cost of each penalty.
Kyle Chin
January 8, 2025
Deliver icon

Sign up for our newsletter

UpGuard's monthly newsletter cuts through the noise and brings you what matters most: our breaking research, in-depth analysis of emerging threats, and actionable strategic insights.
Free instant security score

How secure is your organization?

Request a free cybersecurity report to discover key risks on your website, email, network, and brand.
  • Check icon
    Instant insights you can act on immediately
  • Check icon
    Hundreds of risk factors including email security, SSL, DNS health, open ports and common vulnerabilities
Free score
Website Security scan resultsWebsite Security scan rating