The world of cybersecurity has had some fundamental shifts in the past few years that have made the vast majority of companies unprepared for today’s threats. The proliferated use of malware, for example, has dramatically reduced the intrinsic value of traditional security solutions, such as firewalls, IDS/IPS, and anti-virus software. These solutions that used to…

Modern information security breaches follow a very specific pattern and most organizations are simply not designed to stop these attacks, and unfortunately not even able to detect them for months and sometimes years later.  In short, hackers today use malware rather than direct attacks to compromise organizations like Equifax, Uber, Anthem, Target, Home Depot, JP…

A huge industrial fire breaks out at a warehouse in the lower east side of the city. Black smoke billows high into the air which can be seen for miles around as people evacuate to safety. Part of the building collapses and screams can be heard from inside. Several fire trucks are there. The truck…

The state of information security for companies in the U.S. is scary.  2014 was a record setting year in terms of data breaches with a staggering 783 breaches reported.  That means on average more than 2 breaches were reported every day in 2014. The percentage by industry sector remained about the same as previous years…

As the threat of a potentially devastating data breach continues to proliferate, and with the deadline of GDPR enforcement looming, companies are focusing more intently on how they secure their data. What should be at the heart of any serious effort is an Information Security Management System (ISMS) – a system of processes, documents, technology…

An Information Security Management System (ISMS) is a system of processes, documents, technology and people that helps to manage, monitor, audit and improve your organization’s information security. It helps you manage all your security practices in one place, consistently and cost-effectively.

How ISO 27001 will help your business This post outlines the benefits of achieving certification to the international information security management standard, ISO/ IEC 27001. Accredited certification to ISO 27001 demonstrates to existing and potential clients that an organization has established and implemented best-practice information security processes.

Almost all of our clients have questions about the role of security in the organization, regardless of industry. Although size plays an important part in determining the composition of a security team, there are three primary examples that we frequently see in terms of security organization.

Chief Information Security Officers are feeling less confident than ever about cyber-risk and data security this year, a new survey from data and privacy research leader Ponemon Institute shows. As today’s climate of high-profile data breaches continues, 67% of respondents believe their companies are more likely to fall victim to a cyber attack or data…

For many months now, countdown clocks across the market research and analytics space, as well as in much of the business world at large, have been set to May 25, the date the EU’s General Data Protection Regulation (GDPR) comes into effect. It’s a significant deadline.