by deb_infosec | Feb 19, 2023 | Governance
Security governance is the set of policies, procedures, and standards that an organization establishes to manage its cybersecurity risks. The compliance program ensures the confidentiality, integrity, and availability of its data and assets. To be successful, ensure...
by deb_infosec | Jan 27, 2023 | Compliance
Two Factor Authentication Did you know that you can prevent 99% of account attacks by using multi-factor authentication (MFA)? MFA also known as two factor authentication is one of the most important security measures you can take. 99.9% of account attacks are...
by deb_infosec | Dec 5, 2022 | Compliance
A virtual chief information security officer (vCISO) is a third-party cybersecurity expert who provides organizations with strategic advice and guidance on information security matters. Typically there are one of three reasons to hire a vCISO: Your company’s...
by deb_infosec | Sep 14, 2022 | Compliance
By Debra Baker CryptoDoneRight is now a nonprofit and has found a home at the Cloud Security Alliance. Ever wonder what cryptographic algorithms to use? What is better for symmetric encryption, AES-CTR or AES-CBC? For that matter what is symmetric...
by deb_infosec | Sep 13, 2022 | Compliance
Kaspersky released a 2021 Incident Response report on threats. The latest data it has on initial compromise shows that unpatched vulnerabilities are the number one attack vector. What this means is attackers are exploiting unpatched vulnerabilities on internet-facing...
