Security compliance management is that set of policies, procedures, and other internal controls that an organization uses to fulfill its regulatory requirements for data privacy and protection. Put another way,... Read More
NIST
NIST Cyber Risk Scoring
As companies continue to face new and increasing cybersecurity risks, the National Institute of Standards and Technology (NIST) has developed a cyber risk scoring methodology that helps organizations to assess,... Read More
How to Choose a Compliance Management Tool
Effective corporate compliance is an increasingly urgent issue for businesses. More regulations continue to increase across the landscape, and compliance obligations are becoming more complex. The need for an effective compliance management... Read More
3 Levels of FISMA Compliance: Low Moderate High
The United States enacted the Federal Information Security Management Act (FISMA) in 2002 as part of the E-Government Act of 2002 to enhance the administration of electronic government services and... Read More
What is an Internal Penetration Test and How Are They Done?
What Is an Internal Penetration Test, and How Is it Done? A famous 2011 article by security adviser Roger Grimes is intriguingly titled, “To beat hackers, you have to think like... Read More