Blog

Plan now for a cyber attack… on your vendors!

15th September 2021

Were it an actual word (it isn’t), I would be known as an “audiobookaphile.” That is, someone who is enthusiastic about audiobooks. I listen to them a lot. I listen while driving, while shaving, while grocery shopping, and while doing things around the house. I even listen to them when my wife is adding things…

-- READ MORE

ByteChek: Can you get SOC 2 software and an audit under one roof?

9th September 2021

ByteChek is another new player in the SOC 2 compliance software space. Their differences? They provide both software and an audit for one fee.

-- READ MORE

Multi-Factor Authentication: Everything you Need to Know

2nd September 2021

Multi-Factor Authentication (MFA) is one of the three universal cybersecurity controls. It is low-cost and high-reward – use it everywhere!

-- READ MORE

The Secret Web Browser Monopoly

25th August 2021

Hardware and software monopolies are juicy targets for hackers, and we’re quickly headed towards another period of a web browser monopoly.

-- READ MORE

Cyber insurance: why are so many companies suddenly uninsurable?

19th August 2021

Thankfully, football season is upon us! And I make no secret about being a long-time and unwavering New England Patriots fan. Even though Tom Brady has moved on, I remain as dedicated as ever to the massive men in red, white, and blue. Like most New Englanders, my interest in the Patriots began when I…

-- READ MORE

How does SOC 2 software like Tugboat Logic help you build a compliance program?

12th August 2021

Tens of thousands of dollars and hundreds of hours of time—a SOC 2 audit doesn’t come cheap or easy. Thankfully, there is a burgeoning market of compliance software tools out there to make the job easier and save employee time. Tugboat Logic, Drata, Vanta, and Secureframe are just a few of the companies in the…

-- READ MORE

From Dirty Laundry to Cleaning up Your Security Program: How I became a vCISO

5th August 2021

“People don’t leave a company, they leave their manager.” So what does it mean that I quit working for myself as a solo consultant to work for someone else instead? Let’s find out. Who plans on becoming a vCISO? I never meant to be a vCISO. I mean, who grows up thinking, “I want to…

-- READ MORE

Congrats to Alexia Antoine! 2021 vCISO Cybersecurity Scholarship Recipient

27th July 2021

Congratulations to Alexia Antoine of Texas on being awarded Fractional CISO’s 2021 vCISO Cybersecurity Scholarship! Read her cybersecurity journey in her own words here.

-- READ MORE

Allowlist and blocklist are better terms for everyone, let’s use them.

21st July 2021

Goodbye whitelist and blacklist, hello allowlist and blocklist! The problem with whitelist and blacklist. Whitelist and blacklist are a pair of very important tools and terms for cybersecurity. So it’s kind of a bummer that they’re bad. Why? Mostly because the terms aren’t nearly as clear as they could be. Whitelists and blacklists control who…

-- READ MORE

Are You Taking on More Risk Than Necessary?

15th July 2021

What a bakery stuck in the 1980s can tell us about approaching cybersecurity risk in the 2020s.

-- READ MORE

1 2 3 … 12 Next »