Category: Regulatory Compliance

Business Continuity Awareness Week Blog

2021 Business Continuity Awareness Week (BCAW)

Have you been looking for a sign to reinforce business continuity and resiliency within your organization? Consider this it. This week (5/17 – 5/23) is Business Continuity Awareness Week (BCAW), an annual global event that is facilitated by the Business Continuity Institute (BCI). The Business Continuity Institute is a not-for-profit

Read More
Among Us Game

How ‘Among Us’ is a Tabletop Exercise in Disguise

Every gaming experience has valuable lessons to learn. In Among Us, players are unintentionally engaging in tabletop exercises similar to what businesses are conducting annually. This blog will show you how playing Among Us could be considered a tabletop exercise that can teach players business continuity, disaster recovery, and incident

Read More
Business Continuity

Maintaining A Compliant Business Continuity Environment

Do your business continuity plans account for your company’s compliance and regulatory requirements? For many, the answer to that question is “no”. An unfortunate reality encountered by companies across the globe in the past year. 2020 has been a year of growth and discovery in the world of business resiliency.

Read More
Security Awareness Training

Deliver Security Awareness Training Using Office 365

How to capitalize on your existing Microsoft environment to deliver security awareness training. Are you looking for an effective, easy to maintain, and low-cost solution to deliver security awareness training to your team? Have you read our previous guides providing an overview of what’s required for an effective security awareness

Read More

Asking Vendors the Right Questions

How is your company managing the security of your vendors? According to the 2018 Ponemon Institute Data Risk in the Third-Party Ecosystem study: 59% of companies have experienced a data breach caused by one of their vendors or third parties. Do you know how much is at stake if one of

Read More

A Red Teamer’s Trip to the Doctor

The things that go through a security professional’s head during a regular doctor’s visit, why they matter to the healthcare industry, and why they should matter to you. Healthcare organizations are the stewards of troves of very private and personal information. This makes them high-value targets of all sorts of

Read More

Performing Effective User Access Reviews

Correcting mistakes that arise in the day-to-day management of access control.   Organizations can take many steps to manage access, such as adopting documented registration and de-registration processes, maintaining a list of service accounts, and segmenting networks. While all are effective ways of managing access, they occasionally fail.   For

Read More

Craftsmanship in Music and Compliance

If you’ve been on stage for a speech or performing arts, you know stage fright is real. Businesses can get nervous when they hear the word “audit” in the same way musicians can get nervous before a performance. However, there is one great way to alleviate that fear: preparation. If

Read More

SEC Issues New Cybersecurity Guidance: What you need to know

On February 21, 2018, the SEC issued new guidance on cybersecurity disclosures for public companies. As an “interpretive release,” the new guidance interprets existing laws. In this case, the SEC has clarified the statutes that may affect the reporting of cybersecurity risks and incidents. The guidance also addresses various costs

Read More