by Bob Cohen | Oct 16, 2019 | Business Continuity Management
Recently I’ve been working on a business impact analysis (BIA) with a major law firm. A contact on the client side was responsible for scheduling the BIA interviews. He mentioned that he planned to schedule shorter, 30-minute interviews with the practice support and... by Ryan Buckley | Oct 9, 2019 | InfoSec Strategies
If customers or other stakeholders are asking you for an information security attestation (my guess is they are), which of the leading frameworks do you pick—SOC 2 or ISO 27001? Both enable your organization to demonstrate your IT operations and information security... by John Verry | Oct 4, 2019 | ISO 27001 Certification
Recently I joined a vCISO call with one of our SaaS clients. They are considering ISO 27001 certification and immediately presented us with the question: “Do we need AlienVault (now called AT&T Cybersecurity) to be ISO 27001 certified?” Nothing like going from... by John Verry | Oct 2, 2019 | CCPA
Cue Celine Dion, because I’m going to make a bad Titanic analogy (although thankfully it isn’t a “king of the world” one). The visible portion of the iceberg that sank the titanic stood about 75 feet above the water. When you consider that the total mass of an iceberg... by Andrew Frost | Sep 27, 2019 | ISO 27001 Certification
One of the mainstays of an ISO 27001 Information Security Management System (ISMS) is document, document, document. To do that, we develop auditable artifacts; and let’s face it, there are many. So why create another artifact that isn’t required? I’m talking about an...
