1.888.749.9800

Monthly Archives: May 2014

Education is Key to Securing Online Identity

In the wake of yet another major hack announcement (this week it is Lowe’s, last week it was eBay), it is important to understand that you can have a secure online identity, but it takes work.

It starts with education:

  • Understanding that email is clear text (which means that it is not encrypted) and can be intercepted.
  • Appreciating the danger of using […]
By |May 27th, 2014|Blog, Penetration Testing|Comments Off on Education is Key to Securing Online Identity

What is the next Heartbleed in IT?

As IT security consultants, we are constantly surveying the landscape to see what the next threat will be for our clients. What made Heartbleed so dangerous is that it existed in a piece of software that most Internet users depend on (infrastructure) and that the exploit itself yielded immediately consumable security data (payload) like certificate keys, user names and […]

By |May 23rd, 2014|Blog, Penetration Testing|Comments Off on What is the next Heartbleed in IT?
  • Permalink Gallery

    Hybrid strategies common as organizations strive for cloud GRC

Hybrid strategies common as organizations strive for cloud GRC

By Christine Parizo, contributing writer, SearchCompliance – TechTarget         May 14, 2014

Businesses large and small have moved significant chunks of their operations into the cloud, enticed by its flexibility and easy access. But the cloud also opens up businesses to data security and compliance vulnerabilities.

Letting governance, risk management and compliance (GRC) fall by the wayside isn’t an option […]

By |May 18th, 2014|News & Events|Comments Off on Hybrid strategies common as organizations strive for cloud GRC

Cloud GRC: Maintaining security and compliance in the cloud

I was recently interviewed by Christine Parizo, SearchCompliance (a TechTarget publication) for an article on how to maintain security and compliance during public and private cloud deployment. The article covers cloud data monitoring strategies as well as cloud data regulatory management best practices.  I found the questions Christine recommends asking cloud providers when evaluating their […]

By |May 18th, 2014|Blog|Comments Off on Cloud GRC: Maintaining security and compliance in the cloud