#compliance

Security awareness tips, industry news, and product updates.

Business owner reviewing a cyber insurance application with security control documentation
Compliance & RegulationsFor MSPs & Partners

Cyber Insurance 2026: MFA and Training Requirements

In 2026, no MFA can mean no coverage, and underwriters now want documented awareness training and phishing simulations too. Here is what insurers look for and how to evidence it.

James Thornton·7/8/2026·7 min read
Financial services professionals reviewing digital operational resilience requirements in a meeting
Compliance & Regulations

DORA: Security Awareness and Training Requirements

DORA is best known for ICT risk and incident reporting, but it also makes security awareness training a compulsory module for staff and management. Here is what financial entities must do, and how to evidence it.

Sarah Mitchell·7/8/2026·6 min read
Department-level training analytics
Compliance & RegulationsProduct Updates

Department Training Management and Compliance Digests

empowsec lets you organize employees into departments, give managers scoped visibility into their team's training and phishing results, and deliver weekly compliance digests so nothing slips through the cracks.

Natalie Hoffmann·7/7/2026·7 min read
Compliance officer reviewing ISO 27001 awareness program documentation during an audit
Compliance & Regulations

ISO 27001 Security Awareness Requirements Explained

ISO/IEC 27001:2022 expects more than a once-a-year slideshow. Here is what the standard actually requires for security awareness, and how to prove it to your auditor.

Natalie Hoffmann·7/6/2026·7 min read
Employee processing a card payment at a point-of-sale terminal in a retail environment
Compliance & Regulations

PCI DSS 4.0 Security Awareness Training Requirements

PCI DSS v4.0 raised the bar for security awareness, naming phishing and social engineering explicitly. Here is what the standard now requires if you handle card data.

Lisa Brennan·7/4/2026·7 min read
Security and governance team reviewing AI policy implications around a conference table
Compliance & Regulations

EU AI Act: What Security and Awareness Teams Must Know

The EU AI Act is no longer theoretical. From the AI-literacy duty to deepfake transparency rules, here is what security and awareness teams need to act on now.

Daniel Okafor·7/3/2026·8 min read
Security awareness reporting dashboards
Compliance & RegulationsProduct Updates

empowsec Reporting Dashboards: Metrics That Drive Action

empowsec reporting dashboards consolidate training completion, phishing simulation results, and risk scores into a single view - filterable by user, department, or company - with the same data available via API for your existing BI tools.

David Kowalski·7/1/2026·7 min read
A security training completion certificate
Compliance & RegulationsProduct Updates

Training Completion Certificates: Proof for Audits

empowsec issues verifiable completion certificates every time a learner finishes an assignment or course, giving compliance teams clean, downloadable PDF evidence they can present to auditors without any extra effort.

Natalie Hoffmann·6/27/2026·7 min read
Managing training assignments and due dates
Security Awareness TipsProduct Updates

Training Courses, Due Dates, Escalation and Renewals

empowsec lets you bundle modules into courses, assign them to users or departments with due dates, automate reminders and manager escalations, and set up annual renewals - so compliance training runs itself rather than requiring manual follow-up.

Natalie Hoffmann·6/25/2026·9 min read
Delivering security training in multiple languages
Security Awareness TipsProduct Updates

Multi-Language Security Training with empowsec Translations

empowsec delivers training in each employee's own language: modules, courses, interactive lessons, and phishing templates all support per-language translations, with bulk import tooling and hreflang SEO for public pages.

Elena Vasquez·6/23/2026·7 min read