Data Security Strategy

| Information Security, Managed Security

When you are on the front lines charged with the critical duty of ensuring that your company’s information and systems are as protected as possible from risk, your data security strategy needs to be complex and multi-layered. Threats can come in numerous forms:...

Information Security Audit Checklist

| Blog, Managed Security

Blog  Information Security Audit Checklist Information Security Audit Checklist Having a robust cybersecurity infrastructure isn’t just a luxury—it’s a necessity. Because cyber risks are ever-changing, it takes planning and awareness to stay ahead....

Third Party Risk Management Certification

| Third Party Risk Management

There is nothing revolutionary about companies enlisting the services of outside vendors, suppliers, providers and contractors; companies have been engaging in this practice for generations. However, modern businesses do need to confront additional challenges when it...

PCI Compliance for Small Business

| Blog, PCI

When customers’ sensitive information is stolen during a data breach, the financial and resource costs to those buyers as well as to the retail merchants involved can be significant. In an effort to protect customer information during the payment transaction process,...

FFIEC Cybersecurity Assessment Tool

| Information Security, Managed Security

The Federal Financial Institutions Examination Council (FFIEC) is a governmental body made up of five banking regulators. Its objective is to promote uniformity in the supervision of financial institutions. To that end, it provides organizations with a FFIEC...

Red Flags Rule Compliance Tips

| Managed Security

Identity theft takes a massive toll on millions of Americans each year. It also has a devastating financial effect on the merchants and credit organizations who constantly struggle to avoid breaches and pay the costs involved in dealing with the aftermath of the...

Massachusetts Data Security Laws

| Information Security, Managed Security

Regardless of where you do business in the United States, you already know that the security of your stored and transmitted private data is of paramount importance. However, individual states implement their own laws to ensure that this sensitive information is...

Artificial Intelligence in Cyber security

| Blog, Managed Security

Blog  Artificial Intelligence in Cyber security Artificial Intelligence in Cyber security Without artificial intelligence (AI), we would not have speech recognition technology such as Siri, search engines like Google or facial recognition capabilities. What’s more,...

SOC 2 vs. ISO 27001: Key Differences

| Blog, ISO 27001, SOC, SOC 2

Blog  SOC 2 vs. ISO 27001: Key Differences SOC 2 vs. ISO 27001: Key Differences Deciding between SOC 2 and ISO 27001 certifications can be like choosing the correct key for a specific lock. One focuses on managing how service providers handle customer data, while the...

AWS Penetration Testing

| Blog, Managed Security, Penetration Testing

Blog  AWS Penetration Testing AWS Penetration Testing Amazon Web Services (AWS) platform supports a wide variety of business activities that include data storage, web application services, networking and code development. Unfortunately, it has recently become all too...

Information Security Program

| Information Security, Managed Security

Any management or human resource professional knows that standards and practices can never be truly implemented and enforced unless and until they are thoroughly documented. As you might imagine, this maxim also holds true when it comes to protecting your network,...

Security Maturity Model

| Managed Security

There are two complementary objectives of any cybersecurity operation. Tools both automated and human must be in place to monitor network systems, scan for vulnerabilities and predict threats. Additionally, reaction measures must be available should your data come...