Remove Asset Management Remove Audit Remove Evaluation Remove Vulnerability

ISO 27001 Requirements Checklist: Steps and Tips for Implementation


The ISO 27001 standard for management of information systems helps organizations of any size to manage the security of data assets such as employee information, financial information, intellectual property, and third-party information. Annex A.8 – Asset Management.

Adversarial Risk Management


You can hire a professional audit firm to benchmark the bucket against peer buckets. We chase concepts that seem simple, such as "basic" network hygiene, asset management, and patching. To avoid becoming a headline tomorrow, we must practice adversarial risk management.

The Colonial Pipeline Hack: Failure in Risk Management


Colonial Pipeline Hack: Failure in Risk Management. For example, a forensic finding made during an evaluation of Colonial Pipeline noted numerous known and preventable vulnerabilities, such as unpatched and outdated systems, that likely led to the security breach.