by deb_infosec | Dec 5, 2022 | Compliance
A virtual chief information security officer (vCISO) is a third-party cybersecurity expert who provides organizations with strategic advice and guidance on information security matters. Typically there are one of three reasons to hire a vCISO: Your company’s...
by deb_infosec | Sep 7, 2022 | Compliance
Hello and welcome to TrustedCISO! I have 30 years of experience in information security. Having been a Chief Information Security Officer (CISO) at RedSeal, Inc, I decided to launch my own vCISO consulting company in 2022. I am experienced in building SOC2 and...
by deb_infosec | Dec 9, 2024 | Corporate, Threats
Stoli Group’s Bankruptcy: A Cautionary Tale of Cyber Resilience and Geopolitical Risk The Stoli Group, renowned for its premium vodka, has recently filed for bankruptcy in the United States, showcasing the dual threats organizations face in today’s complex global...
by deb_infosec | Nov 4, 2024 | Threats
In today’s complex digital landscape, cybersecurity threats are not just a corporate problem—they’re a matter of national security. This week, significant news surrounding two major cyber issues demands attention: a breach of U.S. telecommunications...
by deb_infosec | May 20, 2024 | Business, Corporate
Did you know you can manage multiple emails by using Outlook? As a Virtual Chief Information Security Officer (vCISO), I work with multiple customers on a fractional basis. I end up having multiple emails. I order to make these manageable I add them to Outlook. This...
by deb_infosec | May 17, 2024 | Compliance, Threats
🌐💡 The staggering rise of #Cybercrime costs is a wake-up call for us all. According to Cybercrime Magazine, these costs are expected to grow by 15% per year, reaching a mind-boggling $10.5 trillion annually by 2025. 📈 #SmallBusinesses, in particular, are prime targets...
by deb_infosec | Apr 8, 2024 | Compliance, Threats
After a debilitating ransomware attack at United Healthcare that has caused some health care providers to lose up to $1 billion a day, the US Office of Health and Human Resources is investigating the hack. United Healthcare paid $22 million to the Russian ransomware...
by deb_infosec | Nov 14, 2023 | Threats
In an era where digital information is king, the recent data breach at McLaren Healthcare serves as a stark reminder of the vulnerability of our personal data. In this incident, over 2 million individuals were impacted, marking it as one of the most significant...
by deb_infosec | Mar 8, 2023 | Compliance
A business continuity or incident response table top is a simulated scenario-based exercise designed to test an organization’s ability to respond to a potential crisis or disaster situation. The exercise typically involves a group of key stakeholders and...
by deb_infosec | Feb 28, 2023 | Compliance
SOC2 (Service Organization Control 2) has become the de facto audit requirement for the cloud in the commercial space. Whether your company has a SaaS product or you are evaluating a cloud service offering, you need to understand what SOC2 is and how to evaluate a...
by deb_infosec | Feb 25, 2023 | Threats
Holiday Inn Ransomware Attack One thing is for sure, you don’t want to be a victim of ransomware. Almost daily, there is another breach and ransomware was deployed as part of the hack. For instance, the Holiday Inn or IHG hack is another example of not being...
by deb_infosec | Feb 20, 2023 | Cloud
Here are the best practices for securing cloud serverless architecture: Implement proper access controls: Use identity and access management (IAM) to set up fine-grained permissions for resources and APIs. Secure data in transit and at rest: Encrypt sensitive data and...
