Schellman listed as one of the first PCI Software Security Framework Assessors
Schellman & Company has become one of the first firms in the industry to offer PCI Software Security Framework (SSF) assessments as a Secure Software and a Secure SLC Assessor.
Read Article
CCPA - Updated Draft Regulations
The CCPA went live on January 1, 2020. The California Attorney General (AG) has issued the second and third versions of draft CCPA regulations, following two periods of public comment.
Read Article
What Scoring is Required to Obtain HITRUST Certification?
Oftentimes, organizations that are just starting their HITRUST journey will ask what they need to score in order to be HITRUST certified and just how that scoring process works.
Read Article
COVID-19 and SSAE 18: What Does This Mean for Your SOC Preparedness
Hopefully this writing finds you well and adjusting to perhaps the most serious health-related situation in many a lifetime. Perhaps it may find you contemplating preparedness in specific ways.
Read Article
COVID- 19 Update: Compliance Reliance
As we face this rapidly evolving and fluid health emergency related to coronavirus disease COVID-19 we want to acknowledge the many concerns across the business and technology community.
Read the Update
How To Patch Your Open Source Software Vulnerabilities
It's up to enterprises to quickly deploy patches to secure software before hackers get in.
Read Article
Tech Industry Occupies Front Line on Coronavirus Battleground
The coronavirus is posing global threats that are challenging businesses worldwide forcing them to put new policies and practices into place to prepare for and communicate with their workforces.
Read Article
What the Coronavirus Means to Your ISO Audit
You’re probably aware of a new strain of virus that is manifesting all around the globe, one that has you contemplating hiding under that aforementioned rock for your own health.
Read Article
California Privacy Law: Its Impact on Businesses
A sweeping consumer privacy law went into effect in 2020 in the state of California but it seems many businesses are still not yet ready to comply.
Read Article
5 Common Pitfalls when Pursuing FedRAMP Authorization
What are the common reasons CSPs fail to achieve a FedRAMP Authority to Operate ATO in a timely manner?
Read Article
What I Learned at Career Day
Talking with 4th graders on security testing, online safety, and job skills for infosec.
Read Article
Why Diversity is a Terrible Goal for Black Professionals
While it’s true that life and the American experience has tremendously improved for most black Americans since the Civil Rights Movement, there remains much opportunity for continued progress.
Read Article
The Three-Sphere Circus of Compliance
When wrestling with compliance requirements CISOs often feel like they are a performer in the middle of a three-ring circus trying to juggle spheres of compliance.
Read Article
Locking up the 'internet of things'
A wide range of internet of things connected devices are now required to include reasonable and appropriate cybersecurity measures under a California law that went into effect Jan 1.
Read Article
Home Safe: 20 Cybersecurity Tips for Your Remote Workers
Dark Reading recently asked a number of security experts for the most important advice they'd tell IT departments to impart to their remote workers.
Read Article
What is IoT? - The Internet of Things
Though machines have been communicating with other machines for decades the term of IoT wasn’t coined until 1999. IoT consists of any device that is connected through the Internet to other devices.
Read Article
Clock Runs Out for Windows 7 Holdouts: Upgrade or Replace?
After 10 years of fully supporting Windows 7 Microsoft ended its official support for the out-of-date operating system. Consumers who have not upgraded to Windows 10 become part of attack vector.
Read Article
Protecting your Domain with DMARC
It has never been easier to establish an online presence and having your domain is key. When managing DNS records users should stay up to date with regards to safeguarding their domain's reputation.
Read Article
