information security risk management Archives

Organization with strong cyber security management, adhering to incident management approach in ISO/IEC 27035-1:2023.

ISO/IEC 27035-1:2023— Information Security Management

March 1, 2023February 24, 2023Alexandra Schirn

A single cyber attack, such as data breach, malware, ransomware or DDoS attack, cost companies in the U.S. a median of $18,000 in 2022. That […]

Blue information security box showing the cloud and software attestation following OMB M-22-18.

Software Attestation & Supply Chain Security (OMB M-22-18)

November 28, 2022March 21, 2023Keith Mowry, Senior Manager of Accreditation, Product Certification

President Biden issued Executive Order 14028, Improving the Nation’s Cybersecurity, on May 12, 2021 to address “persistent and increasingly sophisticated malicious cyber campaigns that threaten […]

Managing information risk while hanging on cliff to represent ISO/IEC 27005:2022.

ISO/IEC 27005:2022 – Information Security Risk Management

October 31, 2022January 9, 2023Brad Kelechava

People often say that the world is changing, and technology is painted as the catalyst for this rapid progression. In truth, the world has always […]

Information Technology programmers setting up an information security management system for an organization that adheres to ISO/IEC 27001:2022.

ISO/IEC 27001:2022 – Information Security Systems

October 31, 2022March 6, 2023Alexandra Schirn

Due to the pervasiveness of hackers, implementing a strong information security system that adheres to the requirements in ISO/IEC 27001:2022 – Information Security, Cybersecurity And […]