ISO/IEC 27035-1:2023— Information Security Management
A single cyber attack, such as data breach, malware, ransomware or DDoS attack, cost companies in the U.S. a median of $18,000 in 2022. That…
ISO/IEC 27005:2022 – Information Security Risk Management
People often say that the world is changing, and technology is painted as the catalyst for this rapid progression. In truth, the world has always…
Around the World in Privacy Laws
In 1991, the World Wide Web went live. In the thirty years since, the world has forever changed — right down to the legal landscape. …
Basics of the California Consumer Privacy Act (CCPA)
In June of 2018, the California Consumer Privacy Act (CCPA) was signed into law. The landmark privacy legislation passed on the heels of the European…
ISO/IEC 27701:2019 – Privacy Management Systems
Like a shadow of pixels, your digital presence is an extension of you. Unfortunately in the first six months of 2019 alone, there were over…
ISO/IEC TS 27008:2019 – Technical Specification on the Assessment Of Information Security Controls
An ISO technical specification, ISO/IEC TS 27008:2019 – Information Technology – Security Techniques – Guidelines For The Assessment Of Information Security Controls, has been released….
ISO/IEC 27018:2019 – Code Of Practice For Protecting Personally Identifiable Information (PII) In Public Clouds
The Internet has advanced the global economy immensely, and the emergence of various web-connected devices or “things” accelerates the delivery of technology’s many benefits for…
ISO/IEC 29147:2018 – Vulnerability Disclosure in Information Technology
Vulnerabilities are undesirable in all facets of life. In fact, the word “vulnerable” derives from the Latin vulnus, meaning “wound.” For information technology and cybersecurity…
IEEE 1012-2016: Verification and Validation (V&V)
Salt and pepper, Batman and Robin, and verification and validation (V&V) have more in common than one might think. For instance, all three of these…