What is a SOC Report? Understanding SOC 1, SOC 2, and SOC 3 System and Organization Controls reports, or SOC[...]
What are ‘Misinformation, Disinformation, and Malinformation’ (MDM) incidents? Days before Russia invaded Ukraine, the U.S. Department of Homeland Security’s Cybersecurity[...]
Standardized Information Gathering (SIG)
December seems to be a month fixated on fancy footwear. On Christmas Eve, some of us will “hang stockings by[...]
On March 11, 2020, the World Health Organization (WHO) declared COVID-19 a pandemic. That spring, organizations were forced to transition[...]
Facebook and its app family (including Instagram and WhatsApp) seemingly disappeared from the internet for over five hours on Monday.[...]
As a follow up to the 8th annual Shared Assessments Summit, the themes of governance continued to focus on third[...]
Part III of a IV part series In part II of the four part blog series, Regulators Expectations for Third[...]
With the recent increased focus of the regulatory agencies and standards bodies on third party risk management, the market is[...]
According to a National Employment Law Project (NELP) report, nearly 65 million Americans have a criminal record that could be[...]
In my previous blog, The SIG – The Swiss Army Knife of Risk Assessment, I commented on the versatility of[...]
Remember this: Edward Snowden Worked for a Third-Party Vendor. While it remains uncertain what exactly Mr. Snowden shared with other[...]