Headlines about data breaches seem to hit us nonstop. The March 2019 hack of Capital One’s databases exposed the personal information of over 100 million people. Capital One says its stolen data probably wasn’t used by the hacker or disseminated to anyone else, but even if that’s true, data breaches are all too common. Equifax [...]
In today’s hyperconnected environment, many different stakeholders expect assurance regarding your information security practices. Increasingly, major companies are expecting their business partners to achieve certification against the HITRUST Common Security Framework (CSF). This robust risk management framework builds on many established security and data privacy standards, such as the ISO 27000 series, HIPAA, PCI Data [...]
You may already know that the biggest data security risk for businesses of all sizes is employee negligence. People fall for simple phishing scams and leave their work phones unlocked, and we’ve all seen that file named “passwords.txt” right on someone’s desktop. Data security training is crucial, and it can go a long way toward [...]
As of May 1, 2019, Alabama became the latest state to sign into law heightened standards within the insurance industry for cybersecurity and data privacy. The new Law implements an exhaustive set of requirements for data security pertaining to entities or individuals licensed through the Department of Insurance. Both persons and institutions have one year—until [...]
Most of us are familiar with traditional forms of authentication, such as a password. While such methods can work, hackers have become more sophisticated in cracking them. Multi-factor authentication (MFA) is advantageous because it requires multiple forms of identification to access a system. Watch as Tom Montalbano discusses how MFA works to protect [...]
Although an IT audit is a critical part of managing company operations, it can be difficult to find and hire a qualified IT auditor. Watch as David Mills explains the benefits of outsourcing your internal IT audits.
Ever wonder what zero day really means? Or just looking to minimize IT risks for your company? There are several key points to consider. Watch as CRI's Tommie Singleton and David Mills explain zero day, IT recovery plans, testing, and the importance of change and patch management.
They say that when you fail to plan, you plan to fail. Most business owners know that a business plan is an indispensable component of a successful company. But there is another crucial plan that many business owners forget to create: a business continuity plan. What Is a Business Continuity Plan? A business continuity plan [...]