CATEGORY:
security & business
Early Review of AICPA’s SOC for Supply Chain Criteria Part 1
Recently, the AICPA has released its exposure draft for the SOC for Supply Chain Description Criteria for public comment. In a follow-up to my recent blog summarizing the Description Criteria, this blog will be part of a 2-part series exploring the details. In the...
Early Review of AICPA’s SOC for Supply Chain Criteria
Recently, the AICPA has released its exposure draft for the SOC for Supply Chain Description Criteria for public comment. I reviewed the draft and summarized the overview and main points below. This is an introductory post. Stay tuned for a 2-part deep dive into the...
SOC 2 Criteria and Positive Cybersecurity Impacts
In January 2018, the AICPA released detailed guidance on its newest SOC 2 Common Criteria (based on COSO 2013 Framework for an entity-wide reporting level). The new framework officially went into effect on December 15, 2018. Many organizations, including some of my...
Cybersecurity Lessons from WWII
NIST Upcoming Mobile Security Recomendations
Turning Attention to Mobile Applications NIST 800-163, Vetting the Security of Mobile Applications, was recently revised from its 2015 version to address the evolving landscape of mobile application security. NIST provides details and clarity on how exactly...
The Drive to Number One
NIST for Cybersecurity: Understanding the Framework
Leave It Better Than You Found It
As often as we can, my wife and I like to steal away to the great outdoors for some camping and hiking. The fresh air, beautiful creation, and peace and quiet are a welcome change from what can sometimes be a very busy pace. a simple phrase We’ve been to a lot...
Under The Surface: Cybersecurity Risks
