Management, compliance & auditing

Every organization should follow a proactive rather than a reactive approach to protect against threats, risks and vulnerabilities, to which if their IT infrastructure...

Introduction Cyber insurance coverage has been available on the market for a decade, but only recently companies have been seeing a significant growth—sales...

The number of employees using their personal devices for work-related purposes is absurd. Let's just say there's an employee or two in every organization using...

In this article, we will learn about the requirement of file integrity monitoring in PCI-DSS (Payment Card Industry Data Security Standard). If we talk about...

1. What is an E-mail Retention Policy? Simply put, an e-mail retention policy/ERP is the process of keeping emails for compliance or business reasons. It differs...

If you are like me, there are many things you can check off your to-do list every day. However, if you are really like me, then there are some things which...

Every organization should follow a proactive rather than a reactive approach to protect against threats, risks, and vulnerabilities to which if their IT infrastructure...

This article introduces two types of risk analysis (quantitative, qualitative) and presents how to perform qualitative risk analysis with the DREAD model. Finally,...

Organisations are giving more priority to development of information security policies, as protecting their assets is one of the prominent things that needs...

Information security (IS) is a critical part of any small scale company and a big enterprise, and a challenge for any firm. Information security involves very...