Blog

How does SOC 2 software like Tugboat Logic help you build a compliance program?

12th August 2021

Tens of thousands of dollars and hundreds of hours of time—a SOC 2 audit doesn’t come cheap or easy. Thankfully, there is a burgeoning market of compliance software tools out there to make the job easier and save employee time. Tugboat Logic, Drata, Vanta, and Secureframe are just a few of the companies in the…

-- READ MORE

From Dirty Laundry to Cleaning up Your Security Program: How I became a vCISO

5th August 2021

“People don’t leave a company, they leave their manager.” So what does it mean that I quit working for myself as a solo consultant to work for someone else instead? Let’s find out. Who plans on becoming a vCISO? I never meant to be a vCISO. I mean, who grows up thinking, “I want to…

-- READ MORE

Congrats to Alexia Antoine! 2021 vCISO Cybersecurity Scholarship Recipient

27th July 2021

Congratulations to Alexia Antoine of Texas on being awarded Fractional CISO’s 2021 vCISO Cybersecurity Scholarship! Read her cybersecurity journey in her own words here.

-- READ MORE

Allowlist and blocklist are better terms for everyone, let’s use them.

21st July 2021

Goodbye whitelist and blacklist, hello allowlist and blocklist! The problem with whitelist and blacklist. Whitelist and blacklist are a pair of very important tools and terms for cybersecurity. So it’s kind of a bummer that they’re bad. Why? Mostly because the terms aren’t nearly as clear as they could be. Whitelists and blacklists control who…

-- READ MORE

Are You Taking on More Risk Than Necessary?

15th July 2021

What a bakery stuck in the 1980s can tell us about approaching cybersecurity risk in the 2020s.

-- READ MORE

Microsoft Office 365 email security defaults are bad, so fix them!

8th July 2021

An email server with weak security settings is like a castle without a wall. The bad guys will walk right in! Unfortunately, Microsoft Office 365 email security leaves much to be desired. Frankly, their default settings are horrible! Email security is important because it is the most common attack vector for attackers looking to gain…

-- READ MORE

All Businesses Need DDoS Protection

1st July 2021

“I think someone is trying to put me out of business.” I recently received this message from a small business owner providing a cloud service. During their peak hours, someone was launching a DDoS attack against their servers, bringing their service to a halt. With the business’s customers experiencing service interruptions, they were thinking about…

-- READ MORE

Fractional CISO releases SOC 2 Software Vendors White Paper

24th June 2021

With over a dozen entries into a market that didn’t even exist a decade ago, it’s hard to make sense of all that’s happening in the SOC 2 software space. To help business leaders understand this rapidly-evolving space, Fractional CISO has released a white paper that evaluates and compares 10 of the most prominent companies…

-- READ MORE

Cybersecurity Programs Take Time

17th June 2021

What do work out regimens and cybersecurity programs have in common? Delayed gratification for the hours of hard work they require.

-- READ MORE

Privacy Shield is Dead, Long Live Privacy Shield!

10th June 2021

The European Court of Justice struck down Privacy Shield last July, but the much-maligned privacy program shambles onward like a regulatory zombie. Except this zombie wants to eat time and paperwork instead of brains. Let me explain. First, some Privacy Shield context. A quick recap on Privacy Shield, and why it matters. Privacy Shield is/was…

-- READ MORE

« Previous 1 … 3 4 5 6 7 … 16 Next »