To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Got it!
Search a title or topic

Over 20 million podcasts, powered by 

Player FM logo
Artwork

Tech Higher Education Podcasting Education Dr Jason Edwards CCISO Certification Cybersecurity Government Risk Management Compliance Security Controls Audit Strategic Planning Budget Incident Response Threat Intelligence Vendor Management Cloud Security Executive Leadership
Content provided by Dr Jason Edwards. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Dr Jason Edwards or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Certified: The CCISO Audio Course « »
Episode 25: Compliance Auditing Standards and Frameworks

18:53
 
Play
Playing
Share
 

MP3Episode home
Manage episode 493005522 series 3676011
Content provided by Dr Jason Edwards. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Dr Jason Edwards or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

In this episode, we take a comprehensive look at the major compliance standards and audit frameworks that govern information security practices across industries and geographies. You’ll gain insight into how standards such as ISO 27001, NIST SP 800-53, SOC 2, PCI DSS, HIPAA, and COBIT are used as the foundation for both internal and third-party audits. We break down the core structure of each framework, including how controls are defined, evaluated, and certified.

Equally important is understanding the strategic purpose of compliance auditing—not just to pass an audit, but to create defensible evidence that the organization is meeting its legal, regulatory, and risk-related obligations. We explore how CISOs prepare for audits, align documentation with control objectives, and engage auditors in a way that demonstrates maturity without revealing unnecessary weaknesses. This episode prepares you to lead enterprise compliance initiatives and interpret exam questions that test your ability to manage oversight relationships with confidence and clarity.
Ready to start your journey with confidence? Learn more at BareMetalCyber.com.

  continue reading

71 episodes

#Tech #Higher Education #Podcasting Education #Dr Jason Edwards #CCISO #Certification #Cybersecurity #Government #Risk Management #Compliance #Security Controls #Audit #Strategic Planning #Budget #Incident Response #Threat Intelligence #Vendor Management #Cloud Security #Executive Leadership
Artwork

Episode 25: Compliance Auditing Standards and Frameworks

Certified: The CCISO Audio Course

published

Play Playing
iconShare
 
MP3Episode home
Manage episode 493005522 series 3676011
Content provided by Dr Jason Edwards. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Dr Jason Edwards or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

In this episode, we take a comprehensive look at the major compliance standards and audit frameworks that govern information security practices across industries and geographies. You’ll gain insight into how standards such as ISO 27001, NIST SP 800-53, SOC 2, PCI DSS, HIPAA, and COBIT are used as the foundation for both internal and third-party audits. We break down the core structure of each framework, including how controls are defined, evaluated, and certified.

Equally important is understanding the strategic purpose of compliance auditing—not just to pass an audit, but to create defensible evidence that the organization is meeting its legal, regulatory, and risk-related obligations. We explore how CISOs prepare for audits, align documentation with control objectives, and engage auditors in a way that demonstrates maturity without revealing unnecessary weaknesses. This episode prepares you to lead enterprise compliance initiatives and interpret exam questions that test your ability to manage oversight relationships with confidence and clarity.
Ready to start your journey with confidence? Learn more at BareMetalCyber.com.

  continue reading

71 episodes

#Tech #Higher Education #Podcasting Education #Dr Jason Edwards #CCISO #Certification #Cybersecurity #Government #Risk Management #Compliance #Security Controls #Audit #Strategic Planning #Budget #Incident Response #Threat Intelligence #Vendor Management #Cloud Security #Executive Leadership

All episodes

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Listen to 500+ topics
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play
icon
Help/FAQ | Advertise with Us
Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion
Science|Soccer|Sports|Storytelling|Technology|True Crime
Copyright 2025 | Privacy Policy | Terms of Service | | Copyright
Episode being played series thumbnail
icon icon
Speed
Series settings
1x
1x
Volume
100%
icon
icon icon
/

View Player FM in...
Player FM
Browser
Chrome
Safari
Firefox
Listen to this show while you explore
Play