Although there were many different drivers of compliance projects, 64% of respondents found a common benefit from conducting audits -- winning new business, according to an A-LIGN survey. However, only 25% of respondents are using a software solution to prepare for audits and assessments such as an automated security, compliance or governance risk compliance (GRC) solution.
“As new threats evolved to take advantage of the pandemic, the need for companies to demonstrate they were protecting the data entrusted to them was as important as ever,” says Patrick Sullivan, author of the report and director of customer success at A-LIGN. “This report confirms how critical SOC 2, ISO 27001 and other attestations are to business relationships, while also revealing some significant ways organizations can save time and resources when conducting them.”
From Yahoo! News
● 85% of companies completed their audits as planned or with an extension, and 60% had no change to audit timing. Additionally, 71% continued with their audits and assessments remotely instead of in-person.
● 85% of respondents conduct more than one audit a year, yet only 14% consolidate audits into a single annual event. Consolidation is weakest in healthcare (only 6%) and highest among technology companies (still remarkably low at 26%).