6 Expert Tips to Help Craft Your Information Security Policy

by Mike Wise / April 5, 2023

When someone mentions the term “information security policy,” images of an archaic document held in a vault covered in dust, containing hollow words that no one actually knows come to mind. But is that what an information security policy is? The short answer is no. Building a culture of security at your organization really does start with an information security policy. Here are six key ways to help your organization…

6 Common Information Security Compliance Risks To Avoid

by Hannah Grace Holladay / February 22, 2023

Your business is at risk.  Information security compliance may be the key to protecting your valuable data and reputation.  Most  businesses are likely required to comply with one or more information security regulations and industry standards, whether it’s PCI DSS, HIPAA, FERPA, FISMA, GDPR, SOX, or other regulations with information security components.  Information security compliance should be a priority in your organization, especially if your company handles personally identifiable information,…

6 AWS Cloud Security Features You Should Be Using

by Hannah Grace Holladay / April 12, 2023

The security of your AWS cloud environment is your responsibility. Partly. Amazon Web Services (AWS) shares security responsibility with users. They are responsible for configuring and using cloud services securely and in compliance with information security regulations and standards.  But AWS doesn’t leave its users high and dry where security and compliance are concerned. The platform offers an array of cloud security features and tools to help users with AWS…

Making Sure Your Risk Management Isn’t a Wreck

by Mary Beth Warner / May 22, 2023

We’re all bad at risk. There, I said it. We as humans are fundamentally bad at the concept of gauging risk. Now, before the pitchforks and CRISC certifications get raised, let me give you a real-life example of why that is. Imagine you’re a seventeen-year-old, fresh out of high school and enjoying the summer before college. You’ve got a part time job, you’re participating in a few extracurriculars around town,…

How to Write a Cloud Security Policy for Your Business

by Hannah Grace Holladay / June 14, 2023

The major cloud computing platforms are more secure than the average on-premises infrastructure deployment. But “more secure” isn’t the same as “sufficiently secure.” Cloud security is a shared responsibility: cloud vendors provide the foundations, but it’s up to cloud customers to build secure systems. That’s unlikely to happen without a well-documented, comprehensive, and enforced cloud security policy (CSP). A cloud security policy sets security parameters for managers and employees, and…