SEC Proposes New Rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure

by Pivot Point Security | Apr 22, 2022 | InfoSec Strategies

Reading Time: 4 minutes     On March 9, 2022, the US Securities and Exchange Commission (SEC) proposed sweeping new rules (available here) to standardize and improve public companies’ disclosures on cybersecurity incident reporting, governance,...

Cloud Controls Matrix

by Pivot Point Security | Apr 22, 2022 | Cloud Security

Reading Time: 3 minutes         Leverage the leading cloud security attestation framework to achieve “provable security and compliance” for your SaaS environments As software-as-a-service (SaaS) offerings explode in popularity and...

The OMB’s Final Zero Trust Strategy: 8 Key Takeaways

by Elzar Camper | Mar 15, 2022 | InfoSec Strategies

Reading Time: 5 minutes         The US government’s Office of Management and Budget (OMB) sent a 29-page memorandum to all federal agencies and departments on January 26, 2022, finalizing a “Federal zero trust architecture strategy.” All...

John Verry’s 2022 InfoSec Prediction #3: Supply Chain Risk Management Will Continue to Grow in Importance

by Pivot Point Security | Mar 4, 2022 | Privacy

Reading Time: 2 minutes         John Verry, Pivot Point Security CISO and Managing Partner, invokes his Nostradamus avatar on a recent episode of The Virtual CISO Podcast to foretell 2022’s key cybersecurity and privacy trends and...

John Verry’s 2022 InfoSec Prediction #2: Cyber Liability Insurance Premiums and Due Diligence Will Increase Significantly

by Pivot Point Security | Mar 3, 2022 | InfoSec Strategies

Reading Time: 3 minutes         On a recent episode of The Virtual CISO Podcast, host John Verry invokes his inner Nostradamus to forecast the most significant information security and privacy developments coming in 2022. “I don’t think...