data privacy

Security Threats Are Swamping IT

Spiraling costs and a lack of skilled cybersecurity professionals are putting pressure on IT teams—and it shows When I think of IT departments and cybersecurity, I’m reminded of the fable of the ...
Security Boulevard

2019 Update on frameworks, standards, and regulations for infosec

At the 2019 BSides Tampa Security conference I did a talk on 2019 Updates on frameworks, standards, and regulations for infosec. Over the last year several new and updated frameworks and regulations ...

2018 NIST Cybersecurity Risk Management Conference

Back in October I was in Baltimore for NIST's 2018 Cybersecurity Risk Management Conference. For those not aware, let me break this down. NIST is the National Institute of Standards and Technology, ...

Framework/standard updates coming

Well, it's early 2018 and there are several information security framework/standards being updated:NIST CSF v1.1. The second draft was released at the end of 2017, and we just wrapped up the comment ...
Healthcare Industry Cybersecurity Task Force report- June 2017

Healthcare Industry Cybersecurity Task Force report- June 2017

Recently a report came out from the "Health Care Industry Cybersecurity Task Force". This group was formed by Congress as part of the Cybersecurity Act of 2015. The task force is made ...