by John Verry | May 7, 2021 | ISO 27001 Certification
Reading Time: 4 minutes
Over the last 20+ years, one of the most frequent questions I’ve answered for clients that need to move to a (more) “provably secure” state (e.g., ISO 27001 certification, CMMC compliance, SOC 2 attestation) is “Why don’t you just...
by John Verry | Mar 23, 2021 | InfoSec Strategies
Reading Time: 3 minutes
Cyber attacks against higher education institutions continue to escalate, and the reason is simple: these organizations remain vulnerable. Technology use on campus is evolving faster than corresponding data protections, exposing...
by John Verry | Jun 25, 2020 | ISO 27001 Certification
Reading Time: 3 minutes
No offense, but your ISMS Internal Audit approach/program probably sucks. How would I know? Because Pivot Point Security performs 100+ ISO 27001 ISMS Internal Audits each year for companies across different verticals. What makes them...
by Richard Stever | Nov 7, 2019 | InfoSec Strategies
Reading Time: 2 minutes
Recently I had a hypothetical conversation with our marketing director about “what if” a spokesperson or responsible party for a government agency, local municipality, regulated organization or business of any size stood up in public...
by Aurore Watts | Aug 28, 2019 | ISO 27001 Certification
Reading Time: 3 minutes
Recently we have been seeing a lot of interest among clients and prospective clients in working towards SOC 2 attestation and ISO 27001 certification at the same time. This isn’t unexpected given how much the new SOC 2 framework...
