NIST Risk Management Framework 2.0: What you Need to Know

The National Institute of Standards and Technology (NIST) recently released version 2.0 of its Risk Management Framework (RMF). The RMF addresses security, privacy, and supply chain risk in an integrated manner. One of the significant additions to the RMF is a step called Prepare. Prepare is intended to help organizations

Read More

Tips to Stay Clear of Business Email Compromise Scams

Gift cards, bonuses and incentives are very popular throughout the end of the calendar year and in the opening months of the new year. Unfortunately, scammers are well aware of this, and they’re looking to cash in. As a result, companies are more vulnerable to Business Email Compromise (BEC) scams.

Read More

New SOC 2 Changes Now in Effect

As of December 15, 2018, the 2017 Trust Services Criteria are officially in effect. Organizations that are issuing System and Organization Controls (SOC 2) Reports will need to ensure that their reports reflect the changes from the previous Trust Services Criteria and Principles. How these changes impact your SOC 2

Read More

Department of Education Tightens Data Requirements

Cyber attacks on universities and colleges have been on the rise over the past few years. As a result, the Department of Education (DoE) has released guidance that will regulate data security practices in the education industry under the Gramm-Leach-Billey Act (GLBA). The DoE will require universities and colleges to

Read More