https://frsecure.com/wp-content/uploads/2017/09/Cover-Image.HITRUST-101-e1504720483813.jpg 325 843 Brittany Schatz https://frsecure.com/wp-content/uploads/2017/06/FRSecure-logo.png Brittany Schatz2017-10-18 11:24:212017-10-18 11:28:21HITRUST 101: Assessment Content, Part 1
A high-level overview of HITRUST Domains 1-5, what to expect to be tested on, and what you can do to best prepare your organization for HITRUST Certification.
https://frsecure.com/wp-content/uploads/2017/10/information-security-news-roundup-september-2017-1.png 441 843 Steve Marsden https://frsecure.com/wp-content/uploads/2017/06/FRSecure-logo.png Steve Marsden2017-10-13 10:25:252017-10-18 12:37:04Information Security News Roundup: September 2017
A summary of important current events in the Information Security world that you should know about.
https://frsecure.com/wp-content/uploads/2017/10/Business-impact-analysis--e1507131650758.jpg 561 841 Megan Larkins https://frsecure.com/wp-content/uploads/2017/06/FRSecure-logo.png Megan Larkins2017-10-04 16:01:312017-10-04 16:01:31Prepare for Impact: Why you should perform a Business Impact Analysis.
When a true disaster occurs we need to understand which systems are the most critical to continuing and restoring business operations. This is where performing a Business Impact Analysis (BIA) is essential.
https://frsecure.com/wp-content/uploads/2017/09/BCPvsDRP2.png 298 770 Megan Larkins https://frsecure.com/wp-content/uploads/2017/06/FRSecure-logo.png Megan Larkins2017-09-28 13:39:152017-09-28 13:39:15Why a Business Continuity Plan is Essential to Disaster Recovery.
So where IS the line differentiating between a Business Continuity Plan (BCP) and a Disaster Recovery Plan (DRP)? The fact is, there is a lot of overlap between the two terms; however, there are significant differences as well.
https://frsecure.com/wp-content/uploads/2017/09/Cover-Image.HITRUST-101-min-e1504728947273.jpg 325 843 Brittany Schatz https://frsecure.com/wp-content/uploads/2017/06/FRSecure-logo.png Brittany Schatz2017-09-27 13:54:252017-09-27 16:53:13HITRUST 101: Is HITRUST Right for You?
In the last HITRUST 101 post, we examined the scoring methodology for a HITRUST assessment. In this post, we will go back to basics and take a deep dive into the why of HITRUST and determine if it is something that your organization should pursue.
https://frsecure.com/wp-content/uploads/2017/09/CSO-Cover-e1505939609925.png 478 841 Evan Francen https://frsecure.com/wp-content/uploads/2017/06/FRSecure-logo.png Evan Francen2017-09-21 12:21:062017-09-21 12:21:06What Makes a Good Chief Security Officer?
The news from Equifax on Friday (9/15) states “the Chief Information Officer and Chief Security Officer are retiring”. Somebody’s got to pay, and here are your first two scapegoats. Will it stop with these two, or is the CEO (Richard Smith) job at risk too? We can only speculate. I’m more interested in answering the question; what makes a good CSO/CISO or a good information security professional/expert?
https://frsecure.com/wp-content/uploads/2017/09/equifax-meme-e1505401743125.png 474 843 Evan Francen https://frsecure.com/wp-content/uploads/2017/06/FRSecure-logo.png Evan Francen2017-09-14 10:17:042017-09-18 09:54:13An Information Security Expert's Take On The Equifax Breach
Logically, we approach investigations holistically from four different perspectives; the company itself, what was in place for prevention, what was in place for detection, and how well is the response handled? My take on the Equifax breach revolves around these four perspectives.
https://frsecure.com/wp-content/uploads/2017/09/information-security-life-cycle-not-project.jpg 365 663 Chad Spoden https://frsecure.com/wp-content/uploads/2017/06/FRSecure-logo.png Chad Spoden2017-09-12 12:02:022017-09-12 12:02:02Information Security Life Cycle, not Information Security Projects
Information security is a living, breathing process that’s ongoing, it’s a life cycle. Without a life-cycle approach to information security and its management, organizations typically treat information security as just another project.
https://frsecure.com/wp-content/uploads/2017/09/Cover-Image.HITRUST-101-min-e1504728947273.jpg 325 843 Brittany Schatz https://frsecure.com/wp-content/uploads/2017/06/FRSecure-logo.png Brittany Schatz2017-09-06 15:11:592017-09-06 15:16:06HITRUST 101: Scoring Basics
HITRUST is a huge security program that centers around the assessments. While most of our clients do take the option to work with us on their Self-Assessment, it is entirely possible to complete it yourself. However, there are some risks associated with this. Read more to find out what these risks are.
https://frsecure.com/wp-content/uploads/2017/08/Disaster-Recovery.jpg 427 640 Megan Larkins https://frsecure.com/wp-content/uploads/2017/06/FRSecure-logo.png Megan Larkins2017-08-31 08:34:162017-08-31 10:37:04Is My Organization Big Enough to Need a Disaster Recovery Plan?
Regardless of how large or small your organization is, there are important questions you need to ask and steps that need to be established before building your Disaster Recovery Plan.
https://frsecure.com/wp-content/uploads/2017/08/PCI-website-icon-large-min-1-e1504016488223.png 496 843 Phil Godinez https://frsecure.com/wp-content/uploads/2017/06/FRSecure-logo.png Phil Godinez2017-08-29 15:11:092017-08-29 15:11:09Three Things Every IT Department Head Should Know About PCI
As part of a dynamic IT team you might not have heard of PCI (yet); however, if your company is setup to take credit cards payments for services and products PCI can potentially affect you and your IT area. Here are the top 3 things for you to know about PCI:
https://frsecure.com/wp-content/uploads/2017/08/pexels-photo-541523-min-e1503331101962.jpeg 563 843 Matt Findlay https://frsecure.com/wp-content/uploads/2017/06/FRSecure-logo.png Matt Findlay2017-08-24 08:17:012017-08-29 15:05:35Let's Define Social Engineering
This is the first post in a series designed to give you an inside view of what goes into working in social engineering. I hope that you will find these stories entertaining and educational, and enjoy reading them as much as I have enjoyed experiencing them.