(270) 506-5140 CONTACT US
Login

Venminder Blog

Dec 31, 1969 by

Aaron Kirkpatrick

Aaron Kirkpatrick
Aaron is a Certified Information Systems Security Professional (CISSP) who has acquired a wide range of organizational, technical and compliance knowledge, applying it within data center and financial institution services sectors. He’s created and successfully led security, risk and audit programs, including SOC engagements, for data centers and a financial application company, transitioning to Internal Audit at one of the largest financial system providers. He has paired a technical degree in Network Administration and Engineering with a Bachelor’s degree in Management Information Systems. Relevant professional certifications include: Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), GIAC Certified Incident Handler (GCIH) and GIAC Critical Controls Certification (GCCC). He is a member of ISACA and (ISC)2.
Find me on:

Recent Posts

SOC Reports

6 Tips to Understanding a SOC 1 Report

Sep 3, 2019

SOC 1 reports can be confusing. There can be multiple types, some reports have fourth parties involved, you may have the right vendor but wrong report, you may be trying to determine what the [...]

Read More

Cybersecurity

What Are ISO Certifications and Should Your Vendor Have One?

Jun 26, 2019

ISO certifications, specifically ISO/IEC 27001:2013, will inform you on a vendor’s information security. They’re a great indicator of internal process maturity at an organization. The result of [...]

Read More

SOC Reports

What to Know About SSAE 18 for Your Vendor Management

Jun 5, 2019

We had SAS 70, then SSAE 16... now we have the SSAE 18. SSAE 18 is a little different, so we’ve outlined some key points for you below to assist with your understanding.

Read More

SOC Reports

6 Things to Do with a Vendor SOC Report Once You Have it

Aug 2, 2017

You're required to collect SOC Reports on your vendors. So, once you've determined which SOC report you need, make the request and receive it back...what's the next step? We'll explain now. 

Read More

SOC Reports

SSAE 18 Now In Effect

May 3, 2017

With it being the first week of May, there's an important reminder to point out to the financial industry regarding SOC reports for vendor management. As of Mon, May 1, SSAE 18 is now in effect.

Read More

Cybersecurity

Addressing Insider Threats, Cyber Attacks & Data Security

Oct 19, 2016

As tiring as it may sound, training is still the most important risk mitigation factor in reducing the number of insider threats. Insider threats originate either through the vulnerability of [...]

Read More

Written by

Follow
Subscribe--Bg.jpg

Subscribe to the Venminder Blog