Regulations & Frameworks

Compliance, GRC, Internal Audit, SOX

SOX Compliance – TDS Case Study

Manage all aspects of SOX Compliance and internal audit management. Learn how Telephone Data Systems (TDS) achieved results with Onspring.
Compliance, ISO, NIST

NIST CSF vs. ISO 27001

Discover the similarities and differences between NIST CSF vs. ISO 27001 in our comprehensive guide. And find out which framework suits your business best.
Compliance, GRC, NERC

How Automation Can Simplify Your Path to NERC Compliance

Digital tools for acheiving NERC compliance can streamline workflows, automate tasks, and deliver real-time insights—making compliance not just achievable, but efficient.
NERC

Top 5 NERC Certification Mistakes and How to Avoid Them

NERC certification mistakes can lead to delays, penalties or operational disruptions. Learn how to avoid these 5 common pitfalls.
Compliance, GDPR

A Quick GRC Guide to Retail Compliance Management in 2025

With AI, blockchain and evolving regulations reshaping the landscape, retail risk managers across sectors must stay agile and innovative in their compliance management this year. How well are you navigating these challenges?
Compliance, GRC, Internal Audit, Policy, Regulatory Change, Risk, SOX, Third-party / Vendor

3 Ways to Expand the Scope of Your GRC Strategy

Learn how organziations strategized and grew their GRC automations to enhance their overall governance, risk, and compliance efforts.
HIPAA, Regulatory Change

Decoding the Latest HIPAA Security Rule Proposals for 2025

Get our take on updates in the new HIPAA Security Rule proposals aimed at enhancing cybersecurity in healthcare, including mandatory written policies, asset mapping, business resiliency and improved business associate management.
GRC, NIST, Risk

Guide: What is NIST RMF?

Learn about NIST RMF and how it helps you identify, assess and manage cybersecurity risks, including how it can safeguard data and streamline compliance.
HIPAA

The Department of Health and Human Services Office for Civil Rights (OCR) “Wall of Shame” and Third-Party Involvement

Dive into the HHS OCR’s “wall of shame” to uncover key insights and learn how to better mitigate third-party risks in your organization.
GRC, Internal Audit, SOX

Guide: What is an Internal Audit?

Learn what an internal audit is, why it matters and how to create an effective audit process to ensure compliance and improve management practices.
CMMC, FedRAMP, GRC

Guide: What is CMMC Compliance?

With three certification levels, the CMMC ensures that all DoD contractors meet stringent cybersecurity standards. Learn how to get CMMC-certified to be eligible for defense contracts that deliver services while safeguarding national security.
CMMC, Policy

Avnet CMMC Management Case Study

Onspring CMMC Management helps Avnet centralize data collection, testing, and reporting for the DoD’s CMMC 2.0 assessments & certification.