by John Verry | May 10, 2019 | Third Party Risk Management
Managed service providers (MSPs) are popular with SMBs/SMEs for good reason. They can often maintain an organization’s network, applications and/or security posture better than many in-house IT departments can, and at a lower cost. They benefit from economies of... by John Verry | May 9, 2019 | InfoSec Strategies
If your company is like many of our SMB/SME clients, GDPR was a short-lived event. You heard about the regulation, kicked-off a GDPR project, realized how significant the work effort was and how limited the likelihood of an action against your organization was, and... by John Verry | May 8, 2019 | ISMS Consulting
Even though having an information security plan is a foundational element of information security and a core concept to all information security frameworks (e.g., ISO 27001, NIST/FISMA, etc.), it’s still unusual for most SMBs/SMEs to have one. I think a big part of... by John Verry | May 3, 2019 | ISMS Consulting
By the time someone jumps on a phone call with us to discuss our Virtual CISO/Virtual Security Team offering, they generally understand its value proposition. But often they’re fuzzy on the mechanics of how it works: How much “vCISO” do we need? What will the vCISO be... by John Verry | May 2, 2019 | ISMS Consulting
What’s your initial response to the question posed in the title of this post? I bet most information security professionals would initially say “value preservation,” as the CISO’s “primary” responsibility is to manage information-related risk. But I see this as a...
