28 Apr InfoSec Risk Assessment Security Risk Assessment – How to Rank Your Risks April 28, 2021 By Richard Barrus 0 comments The "Goldilocks and the Three Bears" Approach I’m sure most people are familiar with the children’s tale of “Goldilocks and the Three ...Continue reading
28 Jun Third Party Risk Management Hiring Security Talent? Give Professional Certifications the Weight They Deserve (Not More) June 28, 2019 By Richard Barrus 0 comments Recently I earned a Certified Third Party Risk Assessor (CTPRA) designation from the Shared Assessments Program. This certification int...Continue reading
16 Apr Third Party Risk Management Agreed Upon Procedures (AUP) vs. SOC 2 April 16, 2019 By Richard Barrus 1 comment Editor’s Note: This post was originally published in April 2017. It has been updated to reflect the name change from AUP to SCA. A Stan...Continue reading
17 Jan InfoSec Strategies Cloud Security: Is Your Public Cloud Storage Raining Sensitive Data? January 17, 2018 By Terry Crowley 0 comments As organizations of all sizes flock to public cloud environments like Amazon S3 and Microsoft Azure, an incredible number (one report s...Continue reading
20 Apr Government 6 Eye-Opening Findings About Local Government Cyber Security April 20, 2017 By Richard Barrus 0 comments For the past several months I’ve been working on a cyber loss control project performing risk assessments for over 100 New Jersey munic...Continue reading