Information Security Archives

System Control Center Operator Working to implement security controls that adhere to ISO/IEC 27002:2022.

ISO/IEC 27002:2022— Information Security Controls

March 8, 2023March 2, 2023Alexandra Schirn

With the increasing use of technology and the world becoming more digital, organizations have collected more and more personal data to help them better understand […]

Organization with strong cyber security management, adhering to incident management approach in ISO/IEC 27035-1:2023.

ISO/IEC 27035-1:2023— Information Security Management

March 1, 2023February 24, 2023Alexandra Schirn

A single cyber attack, such as data breach, malware, ransomware or DDoS attack, cost companies in the U.S. a median of $18,000 in 2022. That […]

Basics of the California Consumer Privacy Act (CCPA)

November 6, 2019January 28, 2022Guest Contributor

In June of 2018, the California Consumer Privacy Act (CCPA) was signed into law. The landmark privacy legislation passed on the heels of the European […]

Robot made of various parts and exposed gears to symbolize ISO IEC 29147 2018

ISO/IEC 29147:2018 – Vulnerability Disclosure in Information Technology

November 16, 2018January 30, 2023Brad Kelechava

Vulnerabilities are undesirable in all facets of life. In fact, the word “vulnerable” derives from the Latin vulnus, meaning “wound.” For information technology and cybersecurity […]

Hands typing on the keyboard of a laptop that follows IEEE 1012 2016

IEEE 1012-2016: Verification and Validation (V&V)

October 2, 2018February 10, 2023Matthew Fowler

Salt and pepper, Batman and Robin, and verification and validation (V&V) have more in common than one might think. For instance, all three of these […]

GDPR and Privacy Law: A Paradigm Shift for Technology Companies

May 18, 2018January 28, 2022Guest Contributor

The technology sector is currently undergoing a regulation renaissance. Lawmakers are increasingly skeptical of Internet companies’ ability to handle their own affairs. The European Union’s […]

A man coding on a computer that has been assigned to him through Role Based Access Control INCITS 359

Role Based Access Control (RBAC)

May 17, 2018January 30, 2023Brad Kelechava

Role based access control (RBAC) is an approach in computer systems security in which each user is assigned one or more roles, and each role […]

ANSI X9.84-2018: Biometric Information Management and Security for the Financial Services Industry

May 8, 2018January 26, 2023Brad Kelechava

New Revision: ANSI X9.84-2018: Biometric Information Management and Security for the Financial Services Industry Verification and identification are concrete methods for proof. Authenticating individuals is […]

Red credit card on white background with numbers following ISO/IEC 7812-2017 for identification card issuers.

Identification Cards – Identification of Issuers (ISO/IEC 7812)

January 12, 2017February 7, 2023Brad Kelechava

Appearing in either physical or digital form, identification cards are integral to the operations of enterprises in numerous industries, serving the straightforward yet intricate purpose […]