Newsroom

2020 was not a good year for cybersecurity. In the first half of that year alone, ransomware (a special kind of malware) attacks increased by 715 percent from the prior year’s levels. A ...

Data classification refers to the process of analyzing data (both structured and unstructured) and then organizing that data into defined categories based on its contents, file type, and oth ...

Cloud service providers (CSPs) that want to compete for U.S. federal government contracts must first obtain FedRAMP certification — akin to a seal of approval from the federal government, ...

As data breaches become more widespread, most businesses are prioritizing information security. According to a study by IBM and Ponemon Institute, the worldwide average cost of a data breach ...

Businesses rely on third-party vendors to streamline day-to-day operations and assure sustained functionality now more than ever. This is seen by the rise of cloud computing, data centers, a ...

Where data security and financial integrity are paramount, understanding the nuances of compliance reports like SOC 1 and SOC 2 is crucial for businesses across all sectors. These reports, c ...

The best time to get a SOC 3 audit is…when you get a SOC 2 audit because the audits are the same. Why, then, are there two kinds of reports? Because there are two kinds of audiences for ...

Compliance testing, also known as conformance testing, is a type of software testing to determine whether a software product, process, computer program, or system meets a defined set of inte ...

When managing your supply chain, you rely on many external vendors to keep your operations running smoothly. However, not all vendors pose the same risk to your organization. You must identi ...

Cybersecurity risks have proliferated ceaselessly over the years, and state governments have been a prime target of those attacks. State governments handle vast troves of personal, financial ...

If your enterprise is a service provider that handles customer data, it should have a System and Organization Controls for Service Organizations 2 (SOC 2) report attesting to its SOC 2 compl ...

Regarding enterprise architecture frameworks, The Open Group Architecture Framework (TOGAF) and Control Objectives for Information and Related Technologies (COBIT) complement each other to g ...