Blog

Who’s Enforcing GDPR?

July 19, 2018/0 Comments/in Blog /by Jenna Kersten

GDPR enforcement requires a collaboration of all participants – data subjects, controllers and processors, data protection officers, supervisory authorities, the European Data Protection Board, and the European Commission.

How to Scope a HITRUST Engagement

July 17, 2018/0 Comments/in Blog /by Ashlyn Burgett

Scope impacts everything that you do in a HITRUST CSF. It’s imperative that you narrow your scope as much as possible to ensure that your assessment most acutely aligns with the parts of your organization that you want to certify.

Components of a Quality Penetration Test

July 12, 2018/0 Comments/in Blog /by Jenna Kersten

What would it cost you if your top client was not satisfied with the quality of your penetration test? How would it impact your job if you did not receive thorough penetration testing services? In a day and age when security controls must be strong and effective against advanced threats, we’ve made it our mission to deliver quality services – and that includes penetration testing services.

Password Expiration Policy and Best Practices

July 5, 2018/0 Comments/in Blog /by Ashlyn Burgett

What password best practices does your organization follow? NIST and Microsoft guidance promote a no-expiration policy – how can this help or hurt your organization?

The Dangers of Remote Cloud Audits

June 26, 2018/0 Comments/in Blog /by Jenna Kersten

Even if you’re a cloud-based organization, everything can’t possibly be in the cloud. How does your data get into the cloud?How do your employees support the applications in the cloud?