U.S. Federal IoT Policy: What You Need to Know
Over the past several months, increased attention has been paid to U.S. federal government policies surrounding internal use of IoT devices. In January 2018, researchers discovered they could track the movements of fitness tracker-wearing military personnel over the Internet. In July, a similar revelation occurred with fitness app Polar, which ... Read More
FedRAMP and Federal Cloud Security
FedRAMP, or the Federal Risk and Authorization Management Program, is a standardized approach to security assessment, authorization, and monitoring for cloud applications. It was created by the U.S. General Services Administration in response to growing government usage of the cloud, which has obvious benefits at many levels of operation and ... Read More
ISO 27001 and Why It Matters for Your Business
ISO 27001 is a set of standards for information security management systems (ISMS). Created by the International Organization for Standardization, an independent, non-governmental organization, ISO 27001 is a part of the broader ISO/IEC 27000 family, a set of standards designed to “[help] organizations keep information assets secure.” As we’ll discuss ... Read More
Insider Enterprise Threats: Human Behavior
This article is part 3 of 3 in the “Insider Enterprise Threats” series, outlining effective policies and practices for combating insider cyber security threats (human behavior) to the modern enterprise. Over the course of this series, we’ve broadly examined the dangerous but highly-overlooked cybersecurity threat of malicious insiders. As discussed, ... Read More
