by Jeremy Sporn | Mar 16, 2018 | ISMS Consulting
“Covered Entities” that have not yet submitted a certification of compliance for the New York Department of Financial Services’ NYDFS 500 Cybersecurity Regulation (also known as 23 NYCRR 500) received a none-too-gentle “reminder” earlier this month that they need to...
by Jeremy Sporn | Jul 25, 2017 | Government
On July 10, Connecticut Governor Dannel Mallow officially announced the release of the Connecticut Cybersecurity Strategy. The most far-reaching of its kind put forth at the state level, this strategy document outlines how the state expects both public and private...
by Taylor Smith | Apr 12, 2017 | InfoSec Strategies
On March 7, 2017, the self-described “not-for-profit media organization” and whistleblowing website WikiLeaks began releasing the Vault 7 series of documents, which allegedly contain details about activities and capabilities of the CIA to conduct electronic...
by Mosi Platt | Nov 10, 2014 | ISO 27001 Certification
A new version of the ISO 27001 information security standard came out about a year ago. While the new release addresses some of the changes in information security best practices since the previous release in 2005, it may not address one of the biggest challenges in...
by John Verry | Sep 13, 2012 | ISMS Consulting
Recently I have been discussing an interesting project with a potential client that is in the engineering business. This organization needs to provide attestation of their ability to secure critical engineering designs in both the private and public sector. A new...
