What is the NIST Cybersecurity Framework? The National Institute of Standards and Technology (NIST) is a government entity with a mission to promote innovation and industrial competitiveness. They created the Cybersecurity Framework as a voluntary set of standards, guidelines, and practices designed to help organizations manage IT security risks. Companies can utilize this framework to […]
The fight against cyber threats continues to grow more difficult every day, particularly in the financial sector. In fact, the threat of cyber security may very well be the biggest threat to the U.S. financial system. It’s best to mitigate this risk with a complete defense-in-depth program involving threat identification, protection, detection, response and recovery. […]
We often talk about the hard costs of lost data as a result of ransom amounts, use of resources, legal fees, and regulatory fines, but these are only the short term costs. In the long term, the soft costs are more troubling. These costs include customer loss, tarnished brand reputation, and productivity loss. While soft […]
THE 411 ON PENETRATION TESTING Organizations everywhere are being asked to build a stronger security posture to protect their company data. There are many aspects to doing this and they are different for every organization. One way to determine the gaps in your current security posture is by performing something called a penetration test. A […]
The healthcare industry has traditionally been slow to respond and has lagged behind other industries when it comes to cybersecurity. However, within the past year, cybersecurity budgets have increased, new technology has been purchased, and healthcare organizations are getting better at keeping their networks secure. Organizations are no longer questioning whether or not cybersecurity is […]
During tax season, cyber criminals target taxpayers by the masses. Each year, many taxpayers are fooled into disclosing their personal information. Organizations also fall victim to these scams while accidentally disclosing the tax information of employees to scammers. The IRS Tax Season “Dirty Dozen” Each year, the IRS launches its “Dirty Dozen” campaign warning taxpayers […]
Cyber risk is often unaddressed in the due diligence process of vetting or monitoring a third party. Therefore, transfer of cyber risk is an afterthought and a common blind spot. With the ease and accessibility of outsourcing core competencies, this risk continues to be a big issue. It’s not enough to strengthen your own cybersecurity […]
If your idea of cybersecurity is a firewall and anti-virus then your organization is at extreme risk. Data breaches are no longer isolated cases in today’s ever-evolving threat landscape. Anything from misconfiguration, patch lags, and unsecure software or system components can lead to unsecure breach points. Bridging security gaps, responding to threats, and remediating data […]
The risk of having your personal information stolen is ever present, regardless of how carefully you guard your information. Without proper security measures, your intellectual property, reputation and brand are at risk. This risk includes the dark web; the part of the internet that is intentionally hidden from search engines and is only accessible through […]
The News The news is notoriously famous for covering large enterprise stories but very rarely talks about the small practices. This leads many to believe that small organizations are ignored by hackers and very rarely susceptible to malware attacks. It is commonly believed that only large organizations are the target of cyber attackers due to […]
