Compliance

7 articles

25 Mar 2026 · 14 min

A Practical Guide to Information Security Audits

Complete guide to information security audits: types of audits, process phases, evidence management, ISO 19011 and ISACA frameworks, tools, and automation.

GRC Audit Compliance

20 Mar 2026 · 15 min

Information Security Policies: How to Create Them from Scratch

Complete guide to creating information security policies: types of policies, drafting and approval process, employee communication, review cycle, and templates aligned with ENS and ISO 27001.

GRC Policies Compliance

12 Mar 2026 · 1 min

How a Fintech Achieved ISO 27001 and DORA Compliance in 6 Months

Real case study: a 180-employee Spanish fintech implemented ISO 27001, DORA and SOC monitoring with Riskitera, reducing certification time by 65%.

GRC ISO 27001 Fintech

10 Mar 2026 · 11 min

DORA: The Regulation Reshaping Financial Cybersecurity in Europe

A complete guide to the DORA Regulation: what it is, who it affects, the five pillars of digital operational resilience, deadlines, penalties, and how to prepare for compliance.

DORA Fintech Compliance

5 Mar 2026 · 11 min

NIS2: What It Is, Who It Affects, and Compliance Deadlines

A complete guide to the NIS2 Directive: which companies must comply, key requirements, transposition deadlines in Spain, penalties, and steps to prepare.

NIS2 Compliance EU

28 Feb 2026 · 11 min

What Is Spain's National Security Framework (ENS): A Complete 2026 Guide

Everything you need to know about Spain's Esquema Nacional de Seguridad (ENS): security levels, who must comply, key measures, and steps to implement it in your organization.

ENS Compliance Spain

22 Feb 2026 · 3 min

A Practical Guide to ISO 27001 for Startups

How startups can achieve ISO 27001 certification without the enterprise overhead. Step-by-step approach, common pitfalls, and practical advice.

GRC ISO 27001 Compliance