Why are policies important? When an organization first undertakes the effort of implementing an Information Security Framework or Management System, a key step is the development of policies, procedures, and standards. Every information security framework requires the development and implementation of policies. NIST SP 800-171, HIPAA, ISO 27001:2013, PCI, SOC Read more…
Responding to Information Security Questionnaires Companies are placing an increased amount of attention on their information security exposure in the supply chain. While establishing a relationship and doing business with you, your customers have a vested interest in understanding the risk of exposing their protected information to additional downstream parties. Read more…
Collaboration Tools and Information and Security As we navigate our work environments through a pandemic, technology has certainly played a key role, contributing to our ability to meet and work collaboratively. We have seen file sharing, web conferencing, electronic mail, and other collaboration platforms take the place of water cooler Read more…
Disclosure of Information Enforcement Information Security focuses on the controls necessary to limit access to sensitive information and reduce fault tolerance with the objective of preventing associated incidents and breaches. However, at the same time we are working to reduce exposure, it is of vital importance to have this information Read more…