by Jeremy Sporn | Jun 3, 2019 | Business Continuity Management, Disaster Recovery, InfoSec Risk Assessment, InfoSec Strategies, ISMS Consulting, ISO 22301
Reading Time: 4 minutes
The SaaS model depends on trust. As a SaaS provider, are potential customers confident they can trust you with their data? Despite massive and growing investments in cloud applications and services, a McAfee study on the state of...
by John Verry | Mar 8, 2018 | InfoSec Risk Assessment
Reading Time: 2 minutes
One thing many of our customers struggle with is integrating ongoing risk assessments into their cybersecurity programs. That’s a real problem, as an optimized cybersecurity program is fully reliant on understanding risk and putting...
by Andrew Shumate | Feb 28, 2017 | InfoSec Risk Assessment
Reading Time: 2 minutes
This post has been brewing for some time. I decided for sure to write it after digesting the press fallout from the most recent series of vulnerability research trade shows, colloquially known as hacker summer camp. With RSA behind...
by Peter Alexander | Jan 10, 2017 | InfoSec Risk Assessment
Reading Time: 3 minutes
As the Internet of Things continues to grow, how can businesses protect themselves against IoT vulnerabilities? Recent hacks prove the need to prepare, and businesses need to plan ahead for IoT-related attacks that might come out of...
by Andrew Shumate | Aug 16, 2016 | InfoSec Risk Assessment
Reading Time: 3 minutes
Risk assessment is a fascinating activity that is relevant to everyone, all the time, and involves both our individual, subjective interpretation and the pure objectivity of statistics. Money, power, security, survival, rationality,...
by John Verry | Oct 25, 2010 | InfoSec Risk Assessment
Reading Time: 4 minutes
Just finished my nth (non-fulfilling) conversation on our approach to Information Security Risk Assessments with our Audit Lead. It still amazes me that something so fundamentally logical/right is so challenging to execute well. It...
