by John Verry | Oct 28, 2021 | Government
Reading Time: 3 minutes
Unless you have been living under the proverbial rock, you have heard about CMMC, the Cybersecurity Maturity Model Certification. This new cybersecurity standard is currently in the rollout phase for every organization in the US...
by John Verry | Oct 4, 2018 | ISMS Consulting
Reading Time: < 1 minuteRecently I discussed a potential vCISO engagement with a mid-size restaurant chain (500+ locations). They asked about our experience with, and our thoughts on, “threat hunting.” Threat hunting is loosely defined as “proactive incident...
by Taylor Smith | Aug 10, 2018 | InfoSec Strategies
Reading Time: 3 minutes
We tend to think of our world full of interconnected devices as fun and convenient. Why not monitor your toaster with a phone app—what could possibly go wrong? The downside, we now know, is that cybercriminals will quickly enlist...
by John Verry | Jul 23, 2018 | ISMS Consulting
Reading Time: 3 minutes
Over the last few years I have noticed that clients often struggle to understand how to obtain maximum value at the minimum possible cost from a virtual Chief Information Security Officer (vCISO). I think part of that confusion is...
by Andrea VanSeveren | Dec 13, 2017 | InfoSec Strategies
Reading Time: 3 minutes
We see plenty of organizations that are compliant—but not secure. Yet rarely, if ever, do we find an organization to be secure but not in compliance. Cybersecurity regulators care about compliance, but hackers are opportunistic and...
