Customers globally are requesting – and often requiring – SaaS providers to demonstrate their commitment to security, availability, confidentiality, and privacy. While attaining global security certifications has become table-stakes for many to do business, it’s no easy feat. Many organizations struggle to keep pace with this resource- and time-intensive process. As the … [Read more...] about Announcing the public availability of the Cisco Cloud Controls Framework (CCF)
Controls
Why Implementation Groups Are So Important to CIS Controls v8
Scratch two things off the list! The Center for Internet Security (CIS) recently dropped the number of Critical Controls from 20 to 18. Some of us still think of them as the SANS Top 20, so that’s kind of a big deal. There really aren’t fewer things to do, of course. CIS updated the Controls to better address modern technology and to help you prioritize. There’s no magic in the … [Read more...] about Why Implementation Groups Are So Important to CIS Controls v8
When Time is of the Essence – Testing Controls Against the Latest Threats Faster
A new threat has hit head the headlines (Robinhood anyone?), and you need to know if you're protected right now. What do you do? Traditionally, you would have to go with one of the options below.Option 1 – Manually check that IoCs have been updated across your security controls. This would require checking that security controls such as your email gateway, web gateway, and … [Read more...] about When Time is of the Essence – Testing Controls Against the Latest Threats Faster