Home » Compliance

Compliance

Get Ready for Updated NIST Compliance Requirements

Capital

Like so many areas of the American political system, federal cyber security regulation is in a period of transition. Some of the change is an effect of the presidential handoff to an administration with a markedly different agenda from the previous one. But an even greater driver has been the failure of some government agencies to protect highly sensitive data. ...

Read More »

Resistance is Futile; You Must Comply

personally identifiable information

No threat actor ever avoided attacking your system because you marked a control as compliant. Yet organizations today are spending ever increasing resources to remain compliant with a myriad of frameworks, including the National Institute of Standards and Technology’s (NIST) Risk Management Framework (RMF), International Standards Organization (ISO) frameworks, such as ISO 27001, and ISACA’s Control Objectives for Information and ...

Read More »

Hacking the Heartland (Part 2): Farming Intellectual Property

Traditional American Farm With Blue Sky

Having your trade secrets hacked is never a good thing, but there are certain areas within the U.S. economy where a hacked trade secret could lead way to an absolute disaster. One of those industries that many people don’t typically associate with highly sophisticated technology: agriculture. Nonetheless, the ag industry is currently a top concern in international cyber defense. Cyber ...

Read More »

What the New Cyber Incident Policy Directive Means for Your Organization

capitol

What exactly is the difference between a run-of-the-mill cyber incident and a “significant” cyber incident? Your organization may or may not have had to ponder this question in the past, but the federal government certainly has — and it’s an important question to boot. The distinction among severity levels will weigh heavily in the government’s response to cyber threats, and ...

Read More »