Compliance

Sick of that Security Questionnaire? Automation is the Answer

Mar 10, 2023 By Richa Tiwari In TrustCloud

Security questionnaires (SQs) are not fun. They’re time-consuming, tedious work and sometimes, they’re the one thing standing between you and a closed deal. Fortunately, the emergence of AI in the security space has resulted in many day-to-day workflows being streamlined – with SQs being one of them. Security questionnaire automation solutions have been on the rise.

Read Post

TrustCloud

Read more about Sick of that Security Questionnaire? Automation is the Answer

Testing and Assessment for High Assurance

Mar 9, 2023 By Tom Miller In SecuritySenses

Tom Miller from AMR CyberSecurity discusses the cyber security testing types and techniques that give systems and products a higher level of assurance.

Read Post

SecuritySenses

Read more about Testing and Assessment for High Assurance

Centralized Log Management for NIS2 Directive Compliance

Mar 8, 2023 By The Graylog Team In Graylog

As digital transformation expands the threat landscape, compliance mandates adapt to meet new challenges. In 2020, the European Commission announced its decision to accelerate its revision of the Directive on Security of Network and Information Systems (NIS2). When carrying out its impact assessment, the Commission realized that it needed to update the NIS Directive in response to new risks.

Read Post

Graylog

Read more about Centralized Log Management for NIS2 Directive Compliance

How kobalt.io provides big security for small businesses with Vanta

Mar 8, 2023 By Vanta In Vanta

Kobalt.io is a Managed Security Service Provider (MSSP) with the mission of developing and managing cybersecurity programs for small and mid-sized businesses, making big-budget security affordable to smaller organizations. It builds on world-class frameworks and toolsets, combining the power of the cloud and data at scale to address the complexity of cybersecurity for small businesses.

Read Post

Vanta

Read more about How kobalt.io provides big security for small businesses with Vanta

New in Vanta | February 2023

Mar 6, 2023 By Vanta In Vanta

February’s product update includes many exciting announcements from Vanta. We announced Custom Frameworks and Controls and other improvements to the Vanta experience: ‍ ‍

Read Post

Vanta

Read more about New in Vanta | February 2023

Getting Started on Governing AI Issues

Mar 6, 2023 By RiskOptics In RiskOptics

Today we are going to keep looking at artificial intelligence and how corporations can get ahead of the risks thereof. Our previous post on AI was primarily a list of potential risks that could run rings around your company if you’re not careful; so what steps can the board and senior executives take to prevent all that? Well, first things first. AI is a new technology.

Read Post

RiskOptics

Read more about Getting Started on Governing AI Issues

What Does it Cost to Get ISO 27001 Certified? A Full Breakdown

Mar 3, 2023 By Satya Moutairou In TrustCloud

Businesses looking for serious compliance street cred often turn first to ISO 27001. ISO 27001 is a globally recognized framework that outlines and defines information security management system (ISMS) requirements. Because being ISO 27001 certified demonstrates an organization meets best practices for information security, ISO certification can give businesses a significant competitive advantage. If you’re weighing ISO 27001 vs.

Read Post

TrustCloud

Read more about What Does it Cost to Get ISO 27001 Certified? A Full Breakdown

How Tines achieved SOC 2 compliance in record time, saving 250+ human hours

Mar 2, 2023 By Brandon Maxwell In Tines

Achieving any kind of compliance can be grueling. Ensuring your organization is SOC 2 compliant is often a particularly laborious endeavor, requiring extensive resources to obtain and maintain. SOC 2 is a comprehensive cybersecurity compliance framework developed by the AICPA (American Institute of Certified Public Accountants). It helps guarantee third-party service providers handle customer data with appropriate security measures.

Read Post

Tines

Read more about How Tines achieved SOC 2 compliance in record time, saving 250+ human hours

7 keysteps for PCI DSS 4.0 readiness assessment

Mar 2, 2023 By VISTA InfoSec In VISTA InfoSec

PCI DSS 4.0 Transition may seem like a daunting task for most organizations. However, you can ensure the process is a hassle-free one for you by following certain important tips and guidelines. Organizations need to undergo a PCI DSS Readiness Assessment to embrace the transition from PCI DSS 3.2.1 to PCI DSS 4.0. So, for those looking to conduct this readiness assessment, here are some useful tips that can help you make this assessment and the transition a success for your organization.

View Video

VISTA InfoSec

Read more about 7 keysteps for PCI DSS 4.0 readiness assessment

How to Comply with Australia's CIRMP Rules

Mar 2, 2023 By Kyle Chin In UpGuard

The Australian Cyber and Infrastructure Security Centre (CISC) recently announced that the Critical Infrastructure Risk Management Program (CIRMP) obligation had entered into effect. The Minister for Home Affairs, the Hon Clare O’Neil, signed the CIRMP Rules as the final part (Section 61) of the Security of Critical Infrastructure Act 2018 (SOCI Act) on 17 February 2023, effective immediately.

Read Post