Cybersecurity Archives

Webinar: How to Build a Security Program Budget

Check out our webinar from Shane Peden and Christian Hyatt in which they discuss how to design a security program budget and get it approved. https://youtu.be/Q4LAtW5WqYk

By Christian Hyatt|2020-11-02T16:46:40+00:00October 30th, 2020|Webinars|0 Comments

How to Recruit, Develop, and Keep Top Cybersecurity Talent (Part 5)

This blog post on developing and retaining security professionals at your high growth technology company is part of a multi-part series on designing an information security program in alignment with [...]

By Christian Hyatt|2020-12-08T19:01:30+00:00October 5th, 2020|CISO Discussions|0 Comments

Webinar: Security is Table Stakes for Healthcare Technology

Check out our webinar from Christian Hyatt and Shane Peden where they discuss roadmaps and business cases for security, privacy, and compliance for healthcare technology companies. https://youtu.be/z4aFZnPWGRU

By Shane Peden|2020-08-15T13:37:29+00:00June 1st, 2020|CISO Discussions, Cyber Risk Management, Privacy Compliance, Webinars|0 Comments

How to Read a HITRUST Validated Assessment

Understanding the results of a HITRUST engagement and how to use them. During your vendor due diligence process, a vendor sends you their HITRUST report. What exactly does this report [...]

By Kendall Morris|2020-08-25T15:40:54+00:00March 4th, 2020|HITRUST, IT Audit and Compliance|0 Comments

Sudo: Its History and How to Abuse It

A quick explanation of one of the most influential and misconfigured computing utilities. A classic view into some of the tools use by pentesters at risk3sixty. You’re a [...]

By Asher Andree|2020-08-25T16:54:11+00:00January 27th, 2020|CISO Discussions, Penetration Testing|0 Comments

So, you got a pentest. Now what?

How to progress toward a truly secure organization and infrastructure after penetration testing. You did it – you paid for penetration testing services. Whether it was to fulfill a potential [...]

By Ryan Basden|2020-08-25T16:54:11+00:00December 9th, 2019|Penetration Testing|0 Comments

Past to Present – Lessons From the NotPetya Ransomware

And how they are still relevant today. On a warm, sunny day in July 2017, one of the world’s most catastrophic and rampant demonstrations of ransomware began. Commonly referred to [...]

By Asher Andree|2020-08-25T16:53:45+00:00November 25th, 2019|Cyber Risk Management, Penetration Testing|1 Comment

An Introduction to Active Defense

Global research and advisory firm, Gartner, forecasts that information security spending will exceed $124 billion in 2019, yet cyber defenses continue to fail. Organizations large and small continue to experience [...]

By Shane Peden|2020-01-31T01:10:36+00:00November 18th, 2019|Cyber Risk Management, Penetration Testing|0 Comments

If It Can Talk to Networks, It Can Walk Across Them

Why the Internet of Things is a penetration tester’s most valuable asset. As technology moves at a seemingly exponential rate of growth and changes every day, more and more devices [...]

By Asher Andree|2020-01-17T21:16:57+00:00October 21st, 2019|Cyber Risk Management, Penetration Testing|0 Comments

ISO 27001: Understanding Security Roles and Responsibilities and Why They Are Vital to the Success of Your Security Program

When building your Information Security Management System (ISMS) as part of ISO 27001 program implementation one of the most important elements of the system of management for your security program [...]

By Christian Hyatt|2020-08-25T19:03:19+00:00September 3rd, 2019|CISO Discussions, Cyber Risk Management, ISO 27001 Compliance|0 Comments