EnterpriseGRC Solutions
2.7K views | +0 today
Follow
Your new post is loading...
Your new post is loading...
Scooped by enterprisegrc
Scoop.it!

How Industry Security Requirements Drive Cyberthreat Resilience

How Industry Security Requirements Drive Cyberthreat Resilience | EnterpriseGRC Solutions | Scoop.it
CIS Critical Security Controls and NIST Cybersecurity Framework to accomplish Cyber Threat Resilience
enterprisegrc's insight:
Cybersecurity Mission: Resilience 
What are our critical assets? 
Who is responsible for them? 
Is everyone involved in cyber-resilience? 
 Do they have the knowledge and autonomy to make good decisions? 
Are we prepared for when there is a successful attack? Will there be a tried and tested process to follow or will cyber attack throw our organization into complete chaos? We’ve been having a continuous compliance conversation Compliance is a fabric that breaks down over time
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Me Tarzan, You Jane: NIST SP800-171 & GDPR Glossary

Me Tarzan, You Jane: NIST SP800-171 & GDPR Glossary | EnterpriseGRC Solutions | Scoop.it

EnterpriseGRC Solutions, an elastic compliance company, knows GRC is broken. They're here to fix it. Implements cybersecurity and regulatory compliant products resulting in improved client controls and greater capacity for business growth. Through collaboration and training, ensures documented authentic business controls, driving business security value alignment. Lean IT and continuous monitoring metrics translates enterprise information overload to executive vernacular, transforms key business objectives to achievable governance risk and compliance framework. EnterpriseGRC Solutions provides daily and hourly web based NIST, CIS, SANS, TOGAF, HITRUST, CobiT, ITIL and ISO Compliant Process training, Many clients use our services for CISSP, CISA, CGEIT and ITIL certification readiness. EnterpriseGRC Solutions works within any client schedule, to include international on site placement, web conferencing, evening, and weekend service delivery.

 
enterprisegrc's insight:
You need a glossary to communicate across GDPR and NIST
 
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Virtual Reality, Cyber Security, and Compliance

Virtual Reality, Cyber Security, and Compliance | EnterpriseGRC Solutions | Scoop.it

We are surrounded by technology in all aspect of our life and having a foundation in something like Virtual Reality vulnerabilities is important to understand. As a starting point for anyone unfamiliar with VR concepts, the Virtual Reality Society has some very good information. Virtual Reality Concepts The concepts behind virtual reality are based upon theories about a long held human desire to escape the boundaries of the ‘real world’ by embracing cyberspace. Once there we can interact with this virtual environment in a more naturalistic manner which will generate new forms of human-machine interaction (HMI). “(source: https://www.vrs.org.uk/virtual-reality/concepts.html)

more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Accountability vs. Compliance in the Cloud

Accountability vs. Compliance in the Cloud | EnterpriseGRC Solutions | Scoop.it
EnterpriseGRC Solutions, an elastic compliance company, knows GRC is broken. They're here to fix it. Implements cybersecurity and regulatory compliant products resulting in improved client controls and greater capacity for business growth. Through collaboration and training, ensures documented authentic business controls, driving business security value alignment. Lean IT and continuous monitoring metrics translates enterprise information overload to executive vernacular, transforms key business objectives to achievable governance risk and compliance framework. EnterpriseGRC Solutions provides daily and hourly web based NIST, CIS, SANS, TOGAF, HITRUST, CobiT, ITIL and ISO Compliant Process training, Many clients use our services for CISSP, CISA, CGEIT and ITIL certification readiness. EnterpriseGRC Solutions works within any client schedule, to include international on site placement, web conferencing, evening, and weekend service delivery.
enterprisegrc's insight:
Are you prepared to address the elephant in the room?
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Networking & Security Monitoring Concepts

Networking & Security Monitoring Concepts | EnterpriseGRC Solutions | Scoop.it
EnterpriseGRC Solutions, an elastic compliance company, knows GRC is broken. They're here to fix it. Implements cybersecurity and regulatory compliant products resulting in improved client controls and greater capacity for business growth. Through collaboration and training, ensures documented authentic business controls, driving business security value alignment. Lean IT and continuous monitoring metrics translates enterprise information overload to executive vernacular, transforms key business objectives to achievable governance risk and compliance framework. EnterpriseGRC Solutions provides daily and hourly web based NIST, CIS, SANS, TOGAF, HITRUST, CobiT, ITIL and ISO Compliant Process training, Many clients use our services for CISSP, CISA, CGEIT and ITIL certification readiness. EnterpriseGRC Solutions works within any client schedule, to include international on site placement, web conferencing, evening, and weekend service delivery.
enterprisegrc's insight:
if you plan to take the CISSP, here's help with networking security
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Security Programs Overview

Security Programs Overview | EnterpriseGRC Solutions | Scoop.it
CIS Critical Security Controls and NIST Cybersecurity Framework to accomplish Cyber Threat Resilience
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

GRC Strategy 4Point Real World Use Case

GRC Strategy 4Point Real World Use Case | EnterpriseGRC Solutions | Scoop.it

EnterpriseGRC Solutions, an elastic compliance company, knows GRC is broken. They're here to fix it. Implements cyber security and regulatory compliant products resulting in improved client controls and greater capacity for business growth. Through collaboration and training, ensures documented authentic business controls, driving business security value alignment. Lean IT and continuous monitoring metrics translates enterprise information overload to executive vernacular, transforms key business objectives to achievable governance risk and compliance framework. EnterpriseGRC Solutions provides daily and hourly web based NIST, CIS, SANS, TOGAF, HITRUST, CobiT, ITIL and ISO Compliant Process training, Many clients use our services for CISSP, CISA, CGEIT and ITIL certification readiness. EnterpriseGRC Solutions works within any client schedule, to include international on site placement, web conferencing, evening, and weekend service delivery.

 
enterprisegrc's insight:
FCM extends to all current security framework enabling FedRamp readiness
 
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Welcome to The Cloud Credential Council - Developing Cloud Certification Competence

Welcome to The Cloud Credential Council - Developing Cloud Certification Competence | EnterpriseGRC Solutions | Scoop.it
The Cloud Credential Council (CCC) is the international industry representation body mandated to drive alignment and develop standards for cloud computing domain that is important for organizational and individual training and certification.
enterprisegrc's insight:

Very proud to be an Associate with both Cloud and Virtualization certifictions.  These components have entirely enabled our business in the last year.

 

more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Regulatory Compliant Cloud Computing: Rethinking web application architectures for the cloud

Regulatory Compliant Cloud Computing: Rethinking web application architectures for the cloud | EnterpriseGRC Solutions | Scoop.it
Not all data is sensitive and hence an equal and balanced investment in securing all data categories is not justified.
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

EnterpriseGRC Solutions, Inc. - Consulting/Business Services - San Jose, CA | Facebook

EnterpriseGRC Solutions, Inc. - Consulting/Business Services - San Jose, CA | Facebook | EnterpriseGRC Solutions | Scoop.it

We use facebook to challenge and inform our viewers about facts, privacy, love and laughter.  Don't like us.  Just share the love.

more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Enterprise Governance Risk and Compliance, A Strategic Approach

GRC Strategy...
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Human factors in information security

Human factors in information security | EnterpriseGRC Solutions | Scoop.it
Book review on Managing the Human Factors in Information Security by David Lacey...
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Word Search Security Virtualization and Green - Word Search Security

Word Search Security Virtualization and Green - Word Search Security | EnterpriseGRC Solutions | Scoop.it
Green GRC and Security Word Search...
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Data Centric Security and EU Global Data Protection Rule GDPR

Data Centric Security and EU Global Data Protection Rule GDPR | EnterpriseGRC Solutions | Scoop.it


 
enterprisegrc's insight:
While 15% of EU citizens report not trusting businesses with their information, they also lack the tools to securely manage their own private information.
1
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Denial of Service and Bad Poodles

Denial of Service and Bad Poodles | EnterpriseGRC Solutions | Scoop.it

Denial-of-Service Attacks Prevents systems from processing or responding to legitimate traffic Transmits data packets Exploits a known fault in an OS, service or application Results in system crash or CPU at 100% Distributed reflective denial of service DRDoS Reflected approach, rather than direct to victim, manipulates traffic so that attack is reflected back to victim from other sources Example: DNS Poisoning and SMURF If you are among the 10 thousand people who have not yet sent a 100% on our free security assessment, here's a cheat sheet for the most common and well-known exploits affecting SSL today.

 
enterprisegrc's insight:
Bad Poodle
 
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Data in the Cloud

Data in the Cloud | EnterpriseGRC Solutions | Scoop.it
EnterpriseGRC Solutions, an elastic compliance company, knows GRC is broken. They're here to fix it. Implements cybersecurity and regulatory compliant products resulting in improved client controls and greater capacity for business growth. Through collaboration and training, ensures documented authentic business controls, driving business security value alignment. Lean IT and continuous monitoring metrics translates enterprise information overload to executive vernacular, transforms key business objectives to achievable governance risk and compliance framework. EnterpriseGRC Solutions provides daily and hourly web based NIST, CIS, SANS, TOGAF, HITRUST, CobiT, ITIL and ISO Compliant Process training, Many clients use our services for CISSP, CISA, CGEIT and ITIL certification readiness. EnterpriseGRC Solutions works within any client schedule, to include international on site placement, web conferencing, evening, and weekend service delivery.
enterprisegrc's insight:
How old is your facebook picture? (No, don't tell me, I don't care.) How much of our privacy obsession is related to truth? For example, the weight on your driver's license was absolutely true, twenty-five year ago. Is misrepresenting ourselves part of privacy or an American obsession with creating an illusion of identity? We are watching, but do we register? Data in the Cloud - Explicit consent, Right of portability, Right to be forgotten In an honest society, what harm can really come of truth?
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

General Computing Controls to Cloud & Virtualized Environments

General Computing Controls to Cloud & Virtualized Environments | EnterpriseGRC Solutions | Scoop.it
EnterpriseGRC Solutions, an elastic compliance company, knows GRC is broken. They're here to fix it. Implements cybersecurity and regulatory compliant products resulting in improved client controls and greater capacity for business growth. Through collaboration and training, ensures documented authentic business controls, driving business security value alignment. Lean IT and continuous monitoring metrics translates enterprise information overload to executive vernacular, transforms key business objectives to achievable governance risk and compliance framework. EnterpriseGRC Solutions provides daily and hourly web based NIST, CIS, SANS, TOGAF, HITRUST, CobiT, ITIL and ISO Compliant Process training, Many clients use our services for CISSP, CISA, CGEIT and ITIL certification readiness. EnterpriseGRC Solutions works within any client schedule, to include international on site placement, web conferencing, evening, and weekend service delivery.
enterprisegrc's insight:
Meeting with peers to review the next great outage and what we can predict based on past failures
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Catastrophic Becomes Routine - NIST Cybersecurity and Critical Infrastructure

Catastrophic Becomes Routine - NIST Cybersecurity and Critical Infrastructure | EnterpriseGRC Solutions | Scoop.it
EnterpriseGRC Solutions, an elastic compliance company, knows GRC is broken. They're here to fix it. Implements cybersecurity and regulatory compliant products resulting in improved client controls and greater capacity for business growth. Through collaboration and training, ensures documented authentic business controls, driving business security value alignment. Lean IT and continuous monitoring metrics translates enterprise information overload to executive vernacular, transforms key business objectives to achievable governance risk and compliance framework. EnterpriseGRC Solutions provides daily and hourly web based NIST, CIS, SANS, TOGAF, HITRUST, CobiT, ITIL and ISO Compliant Process training, Many clients use our services for CISSP, CISA, CGEIT and ITIL certification readiness. EnterpriseGRC Solutions works within any client schedule, to include international on site placement, web conferencing, evening, and weekend service delivery.
enterprisegrc's insight:
mapping security settings has a lot to do with meeting guidance for NIST CSF.  Are you cyber ready?
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Center For Internet Security Critical Security Controls

Center For Internet Security Critical Security Controls | EnterpriseGRC Solutions | Scoop.it

EnterpriseGRC Solutions, an elastic compliance company, knows GRC is broken. They're here to fix it. Implements cybersecurity and regulatory compliant products resulting in improved client controls and greater capacity for business growth. Through collaboration and training, ensures documented authentic business controls, driving business security value alignment. Lean IT and continuous monitoring metrics translates enterprise information overload to executive vernacular, transforms key business objectives to achievable governance risk and compliance framework. EnterpriseGRC Solutions provides daily and hourly web based NIST, CIS, SANS, TOGAF, HITRUST, CobiT, ITIL and ISO Compliant Process training, Many clients use our services for CISSP, CISA, CGEIT and ITIL certification readiness. EnterpriseGRC Solutions works within any client schedule, to include international on site placement, web conferencing, evening, and weekend service delivery.

1
enterprisegrc's insight:
Spit out the blue pill
 
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

The Value of Our Data - Should We Show It Off?

Should we show off our connections?

 

enterprisegrc's insight:

important facts about the value of social behavior

more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

ISACA Overview Virtualization and Cloud Essentials Impact to Auditors

ISACA Overview Virtualization and Cloud Essentials Impact to Auditors | EnterpriseGRC Solutions | Scoop.it
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

Inherent Trust in the Cloud - ISACA Update - Jeff Reich Layered Tech Official Blog

Inherent Trust in the Cloud - ISACA Update - Jeff Reich Layered Tech Official Blog | EnterpriseGRC Solutions | Scoop.it
Hybrid and community clouds have a role to play in cloud options and can be made to be as secure, if not more secure, than many traditional facilities...
more...
No comment yet.
Scooped by enterprisegrc
Scoop.it!

IT Central Station Aims to Be "Yelp for CIOs" - The CIO Report - WSJ

IT Central Station is launching Sept. 5 as social network that lets CIOs write and read reviews about more than 4,000 IT products from more than 1,400 vendors.
more...
No comment yet.