Collaborate Disseminate
I am in the process of reviewing a SOC2 audit report. From what I can tell, the audit findings all seem straight forward – almost like check boxes. Is it normal to push back and request additional supporting documentation for… Continue reading SOC2 Audit review
A few days ago I was invited to a party. Party invites are always good, and if I can make it to this one I’ll definitely go. It’s from a continental European hackerspace, and it’s for their tenth birthday party. As I spent a while checking ferries and flights it …read more
Continue reading Reflection On A Decade Of Hackerspace Expansion
With a well-written scope document, your team can work through a creative process that helps everyone come to the same understanding, share their opinions, work out tensions and feel heard.
The post A Well-Written Scope Document Can Save Your Security Project appeared first on Security Intelligence.
Continue reading A Well-Written Scope Document Can Save Your Security Project
Quoting the FedRAMP official FAQ:
FedRAMP requirements include additional controls above the standard NIST baseline controls in NIST SP 800-53 Revision 4. These additional controls address the unique elements of cloud com… Continue reading What are the FEDRAMP "complementary controls"?
The post Compliance is Only the Tip of the Cloud Security Iceberg appeared first on DivvyCloud.
The post Compliance is Only the Tip of the Cloud Security Iceberg appeared first on Security Boulevard.
Continue reading Compliance is Only the Tip of the Cloud Security Iceberg
A recent National Association of Corporate Directors and Marsh & McLennan Companies report offered recommendations that CISOs can use to help their organizations manage digital transformation.
The post How to Improve Your Board’s Oversight of Digital Transformation Efforts appeared first on Security Intelligence.
Continue reading How to Improve Your Board’s Oversight of Digital Transformation Efforts
What is the difference between Identity Management products (such as Forefront/MIM, PicketLink, OpenIDM) and Identity Access Governance tools (such as Sailpoint,Savyint, CyberArk)?
Apologies for another one of these terminol… Continue reading Difference between IAG and IDM
The half-year point has passed meaning that Azure (and Windows/Windows Server) are into a new planning & development cycle.
The post Everything You Need to Know About Azure Infrastructure – August 2019 Edition appeared first on Petri.
Continue reading Everything You Need to Know About Azure Infrastructure – August 2019 Edition
Reading Time: 5 minutes Does your CISO have the leadership and business qualities necessary to drive effective management of cyber risks? Let’s explore four dimensions that CISOs must learn to master.
The post The Many Dimensions of Effective CISO Leaders appeared first on Security Intelligence.
Continue reading The Many Dimensions of Effective CISO Leaders
Microsoft today announced that it has acquired BlueTalon, a data privacy and governance service that helps enterprises set policies for how their employees can access their data. The service then enforces those policies across most popular data environments and provides tools for auditing policies and access, too. Neither Microsoft nor BlueTalon disclosed the financial details […] Continue reading Microsoft acquires data privacy and governance service BlueTalon