System drift and how to prevent IT environments from becoming vulnerable. How best to analyze system drift between your application control policy rules and the applications that run in your environment. Depending on the severity of the drift, there could be a significant risk to the organization. ...

On July 23rd, DISA dropped the latest batch of STIGs. As some of you may have noticed, there was an update to the complete number schema and a new method used for creating RuleIDs included in this update. This is different from the previous numbering changes that occurred last summer/fall. Here’s ...

Any business can use these best practices established by the Cyberspace Solarium Commission (CSC) Guide The Cyberspace Solarium Commission (CSC) was created by the John S. McCain National Defense Authorization Act for Fiscal Year 2019 to develop a strategic approach to defending the United States against ...

Modern businesses collect data a lot of data. Regardless of your industry, your company relies on PII (Personally Identifiable Information) to provide the best consumer experience possible. This reliance on information makes PII financially valuable. If it didn’t, malicious actors wouldn’t be looking ...

On May 12, 2021, the President issued the Executive Order on Improving the Nation’s Cybersecurity (Executive Order) . Although the Executive Order focuses on Federal Civilian Executive Branch (FCEB) agencies, it also looks to help secure the federal supply chain. Understanding the potential longer-term ...

What are CIS Benchmarks and Best Practice? Most organizations need to create baseline technical security configurations. However, configuring systems is one thing. Maintaining those security configurations over time is a whole different beast. The Center for Internet Security (CIS) Controls offers ...