CATEGORY:
security & business

Free Cybersecurity Training Resources
Continuously Updated. Current as of June 26, 2020. Whether it's the post-pandemic landscape requiring you go digital for CPE/CEU or you just want to learn more about cybersecurity, I've got you covered. Here are the courses I've gathered along with whether CPE...
COVID-19 Impacts on HIPAA: Maintaining Security and Privacy for Your Organization
COVID-19 has changed the HIPAA landscape in the short term, and some of these changes will undoubtedly echo long after the pandemic has ended. We’ve summarized the latest changes and how you can maintain the security goals for your organization and stay in compliance....
NIST’s Privacy Framework: An Enterprise-Wide Approach to Protecting Individual Privacy
Framework Overview In January, NIST launched version 1.0 of its Privacy Framework - a voluntary tool to help companies identify and manage their products and services while protecting their customers’ individual privacy. The Framework considers privacy events as...
Cybersecurity and The Power of Belief
"Belief" Defined It should come as no surprise to us that belief drives everything we do as humans. In honor of the New Year and resolutions, I’d like to bring a little philosophy to the table and show you how it can improve your organization’s cybersecurity posture....
Early Review of AICPA’s SOC for Supply Chain Criteria Part 1
Recently, the AICPA has released its exposure draft for the SOC for Supply Chain Description Criteria for public comment. In a follow-up to my recent blog summarizing the Description Criteria, this blog will be part of a 2-part series exploring the details. In the...
Early Review of AICPA’s SOC for Supply Chain Criteria
Recently, the AICPA has released its exposure draft for the SOC for Supply Chain Description Criteria for public comment. I reviewed the draft and summarized the overview and main points below. This is an introductory post. Stay tuned for a 2-part deep dive into the...
SOC 2 Criteria and Positive Cybersecurity Impacts
In January 2018, the AICPA released detailed guidance on its newest SOC 2 Common Criteria (based on COSO 2013 Framework for an entity-wide reporting level). The new framework officially went into effect on December 15, 2018. Many organizations, including some of my...
Cybersecurity Lessons from WWII
In honor of National Cybersecurity Awareness Month, let’s look at how principles from World War II propaganda can teach us valuable lessons today.
NIST Upcoming Mobile Security Recomendations
Turning Attention to Mobile Applications NIST 800-163, Vetting the Security of Mobile Applications, was recently revised from its 2015 version to address the evolving landscape of mobile application security. NIST provides details and clarity on how exactly...
The Drive to Number One
Domino’s is the number one pizza company in the world. Truly, their drive seems unstoppable, which makes us ask: how do we drive to number one?