Management, compliance & auditing

Cyber security is one of the most critical issues the U.S. faces today. The threats are real, and the need is pressing. The cyber security status is unstable,...

Many small and large organizations prefer to download ready-made security policy templates instead of hiring experienced professionals for drafting their security...

Regional regulations on data transfers, such as the U.S.-E.U. Privacy Shield framework, have a significant impact on the cross-border moving, use, and protection...

Cyber security is one of the most critical issues the U.S. faces today. The threats are real, and the need is pressing. The cyber security status is unstable,...

Although there is a vast amount of information on the risks of cyber-attacks, not all businesses engage in preparation and implementation of comprehensive...

Security policy is the statement of responsible decision makers about the protection mechanism of a company crucial physical and information assets. Overall,...

The payment card industry consists of all the organizations which store, process and transmit cardholder data and carry transactions through debit and credit...

Though aimed at InfoSec practitioners, I hope this piece will also be of interest to audit practitioners, whether InfoSec centered or not. There are fundamental...

Most jurisdictions worldwide have developed comprehensive privacy laws which impose a number of obligations on organizations collecting personal data. However,...

Third-party risk management has started to gain much importance, as organizations turn more toward outsourcing to reduce their operating costs and put more...