by Shawn Duffy | May 19, 2023 | Assessments, Blog, Risk, risk assessment
Risk is not just a vulnerability. Risk is a combination of the likelihood of a vulnerability being exploited and the impact to the system if that vulnerability is exploited. So, what does that mean? When we think about a threat to the system, we look at the events...
by Shawn Duffy | Apr 28, 2023 | Blog, Compliance
Regulatory compliance has become a regular component of every business industry today. With the relentless barrage of attacks, phishing, and the general inundation of spam and scams, it is a wonder something wasn’t done sooner. And yet, businesses still trudge forward...
by Shawn Duffy | Mar 23, 2023 | Blog, Compliance, FTC Safeguards Rule
The Federal Trade Commission (FTC) updated GLBA in 2003 with the first Safeguards Rule. Those requirements were updated again in 2021 and now must be met by June of this year. This means time is running out, and we need to get a plan in place. “The FTC...
by Shawn Duffy | Mar 1, 2023 | Blog, Compliance, vCISO
Most of us will have to meet some form of regulation at some point in our businesses. For cybersecurity, there are several possible ones, depending on your industry. It’s already a nuisance dealing with migration into the cloud, or dealing with remote or hybrid...
by Shawn Duffy | Jan 23, 2023 | Blog, Compliance, MSP
The goal for any business is to hire the “perfect fit” with the right expertise and focus. With the unpredictable market and the onslaught of every kind of technical solution, there are several square pegs for every round hole. And now, thanks to COVID,...
by Shawn Duffy | Dec 15, 2022 | Blog, Security Awareness Training
Security Awareness Training (SAT) tells us to never click on a link from some email that we don’t know where it originates. Sound advice. But have you ever wondered what happens when someone does click on that link? The vision is of imminent destruction, and the fear...