10 Essential Cybersecurity Questions for CISOs As the world becomes more interconnected and cyber threats grow more complex, having a strong and effective cybersecurity strategy is critical. However, many organizations struggle to stay ahead of emerging risks and may not know where to start when it comes to evaluating their cybersecurity strategy. CISOs: Ask These Questions … Read more
C3PAO Certification Is Coming. Are You Ready? By 2025, cybercrime is estimated to cause global losses of up to $10.5 trillion annually, affecting various industries such as federal contracting and national defense. The U.S. Department of Defense (DoD) created the Cybersecurity Maturity Model Certification (CMMC) in 2020 to ensure the security of its supply chain. … Read more
Does your website have a current SSL certificate? You may have noticed a little closed padlock icon next to the domain name of the website you’re visiting. This little lock displays whether or not the website you’re seeing is secure via an SSL certificate. SSL stands for Secure Sockets Layer, a security protocol that creates … Read more
Your router and network firewall security were fully compliant with industry and government standards, but does that mean your data is safe and secure?
Most organizations tend to focus on becoming compliant rather than being secure. And while meeting client requirements and industry regulations is very important, it does not necessarily guarantee that your organization is secure. If your entire information security program is based on “What must we do to be compliant?”, you’re probably missing some major holes … Read more
How should you prepare for passing your SOC 2 audit? The pressure is on as more and more service providers and service organizations are being asked by clients for a SOC 2 audit report. Are you prepared to demonstrate your commitment to security and privacy to your clients and prospects? Here are 5 things you … Read more
PCI DSS 3.2 Requirements and What’s New PCI DSS 3.2 includes some changes about which you should know. Many thanks to our auditor, KirkpatrickPrice, for explaining the details to folks via a new webinar. In this special session, Shannon Lane – a QSA, CISSP, and auditor with KirkpatrickPrice – discusses what’s new in PCI DSS … Read more
Becoming PCI Compliant for the First Time Becoming PCI compliant for the first time? Becoming PCI compliant can be an overwhelming undertaking if you are unsure of where to start. With approximately 394 controls, this comprehensive data security standard can be a large undertaking that is best tackled with expert assistance. The first step toward … Read more
Penetration tests and vulnerability scans, if performed regularly, will help your organization avoid a costly data breach. Did you know that? So why don’t more companies get on the ball and do this? Nearly every week, we read about a malicious hacker who has penetrated a security gap in an organization’s infrastructure to gain access to loads of … Read more
Cost of Downtime Ever calculate the cost of downtime? A major new survey by Veeam Software did, and the results reveal that there’s far more to system downtime than the bracing hard costs. In its fifth annual “Availability Report,” Veeam interviewed 1,140 senior IT staff in 24 countries, including 150 U.S. folks. All of the … Read more