Cybersecurity Controls Archives

Performing Effective User Access Reviews

Correcting mistakes that arise in the day-to-day management of access control. Organizations can take many steps to manage access, such as adopting documented registration and de-registration processes, maintaining a [...]

By Kendall Morris|2020-10-13T16:02:03+00:00January 6th, 2020|Cyber Risk Management, IT Audit and Compliance, Regulatory Compliance|2 Comments

What Are Your Privacy KPIs?

Identifying and maintaining measures of success in privacy programs. The publication of ISO 27701 is an exciting development for all companies looking to enhance and potentially certify their privacy programs. [...]

By Philip Brudney|2021-01-28T19:38:39+00:00November 4th, 2019|ISO 27001 Compliance, Privacy Compliance|0 Comments

Managing an Organization’s Passwords

How to keep the keys to the kingdom from escaping the kingdom. Proper password management is a huge step that an organization can take to strengthen security. It also addresses [...]

By Kendall Morris|2020-01-23T16:17:32+00:00October 28th, 2019|Cyber Risk Management, ISO 27001 Compliance, IT Audit and Compliance, Penetration Testing|0 Comments

Beyond Vulnerability Scans: Mitigating and Monitoring for Malware Leveraging C2 Systems

Many modern forms of malware are now file-less and rely on Command & Control (C2) infrastructure to assist outsiders with gaining unauthorized access to networks. This malware “phones home” to [...]

By Christian Hyatt|2022-10-04T18:34:47+00:00March 12th, 2019|Cyber Risk Management, IT Audit and Compliance|0 Comments