If we would like to establish effective security controls to protect our information assets, we should first start by classifying those assets. Like the controls in place to protect the information, the respective classification follows a process where we evaluate Read more…
What is vulnerability scanning? Vulnerability scanning is the process of examining external and internal attack surfaces to identify weaknesses that will be exploited by malicious actors who attempt to infiltrate an organization’s systems, data, network, infrastructure, web page, or application. Read more…
The HR team may not be the first group that comes to mind when the Information Security topic surfaces. However, Human Resources plays a significant role in the protection of sensitive information in all stages of an employment life cycle. Read more…
Personally Identifiable Information: Personally Identifiable Information (PII) is any data that could potentially identify a specific individual. Any information that can be used to distinguish one person from another and can be used for de-anonymizing anonymous data can be considered Read more…
In the previous bulletin, we offered guidance on preparing and developing a plan to prepare for and address an information security incident, should it occur. Once the plan has been developed, how do we verify that it is effective and Read more…
We implement controls to prevent security incidents. Despite these efforts, Information Security Incidents occur. These incidents can be caused by both internal and external factors and can be unintended or intentional. There are generally four stages in the incident Read more…
Every year in October, we observe Cybersecurity Awareness Month. Many companies leverage this opportunity to provide additional training and other valuable resources to protect their information and continue to create a culture of awareness. As you consider how to Read more…
I am considering using AI in my information security controls. How can it help? Last month, we discussed some of the basics around how to protect and make available information generated from AI in Information Security. This month, we Read more…
I am considering using AI in my business. What basic cybersecurity components should I factor into my decision? Artificial Intelligence has become a hot topic recently. The basic concept of Artificial Intelligence is that it uses computers and automated methods Read more…
Documentation is one of the least favorite activities in IT. It always seems to get prioritized down in lieu of other more critical and current activities. However, in the process of establishing a strong cybersecurity posture, one of the key Read more…