SSAE-16 / SSAE-18: What's the Difference?
This past spring (as of May 1, 2017), the AICPA updated their Service Organization Controls testing standards from the SSAE-16 to SSAE-18.
Category One (3)
1 min read
3 Questions Successful Security Leaders Should Ask
Today's security executives are increasingly expected to possess a strong business acumen in addition to their expertise in managing risk. This means...
3 min read
What Benefit is there in a Business Impact Analysis?
So what Benefit is there in a Business Impact Analysis?
1 min read
Case Study: Supplemental CISO ($1.2 Billion in Assets)
This blog post is part two of a three-part series. It is an excerpt from our whitepaper on the Virtual Chief Information Security Officer concept. We...
6 Steps to Secure Remote Access
Remote access has been a concern since the dial-up days of the internet's infancy. But ubiquitous connectivity only increases enterprise security...
Understanding Small-Business Cyber-Insurance Marketplace
The cyber insurance universe is still in its infancy. There will be many changes over the next couple years on the coverage, reaction procedures,...
1 min read
Video Blog - CISO Intangibles: Understand the Business
This video is the first of a series on the intangibles of a good CISO, or as some may call them, the soft skills.
2 min read
FBI IC3 Report: Top Methods of Fraud = Focus on Customer Awareness
It's a bit dated, but a member of our team recently brought up a few statistics from the FBI IC3 2016 Internet Crimes Report (that can be found here:...
Rethinking what it means to win in security
Are you winning in cybersecurity? Michael Santarcangelo at CSO Online challenges us to rethink what "winning" actually means.