by John Verry | Aug 21, 2019 | Security Awareness Training
If you’ve been following along with this multi-part post, you’ve seen how to mitigate about 80% of your InfoSec risk with 20% of the effort by systematically tackling your biggest risk—social engineering/phishing attacks. In this part 4, I’ll cover the final 3... by John Verry | Aug 20, 2019 | Security Awareness Training
In part 1 of this post I applied “the 80/20 rule” to cyber security. The goal is to mitigate about 80% of your InfoSec risk with 20% of the effort, by addressing the biggest risk—social engineering and especially phishing attacks. Starting in part 2, I’m explaining... by Aurore Watts | Aug 19, 2019 | InfoSec Strategies
Why should security attestations be different from clothing, shoes, bank accounts and, well, a lot of things… You may not like it but you can’t get around it. The simple fact is that going after big clients means you need big attestations. If you’re selling software... by Kevin Hermosura | Aug 15, 2019 | Third Party Risk Management
With the average cost of a vendor data breach reaching $3.92 million, organizations are looking for stronger vendor risk management (VRM). If your organization is looking to address VRM but you’re new to the process, a vendor security questionnaire (also referred to... by Larry Moore | Aug 14, 2019 | InfoSec Risk Assessment
“Not to worry, our data is safe; it’s in the cloud!” Famous last words that should be filed alongside with, “This ship is unsinkable” prior to this impending collision with an iceberg. Brian Krebs reported recently that Capital One experienced a data breach and that...
