April 18, 2024 at 08:42AM Over 32 years in cybersecurity, managing risks related to service accounts has been a constant challenge. Service accounts should have limited access and perform specific functions. However, managing and securing them is often overlooked. Common gaps in knowledge include lack of visibility and understanding of the necessity and ownership of … Read more
March 11, 2024 at 04:36PM Compliance is crucial for security professionals, with many standards evolving to resemble security best practices. PCI DSS 4.0, applicable to all businesses accepting credit card payments, introduces new requirements such as preventing malicious scripts, enhancing network security controls, securing systems and software, and ensuring robust logging and monitoring. These updates … Read more
January 10, 2024 at 09:45AM Anecdotes, a GRC solutions provider, has raised $25 million in Series B funding, totaling $55 million in investments. Led by Glilot Capital Partners and supported by other investors, Anecdotes plans to use the funding to enhance its products and expand in the US, EMEA, and APAC. The startup’s Compliance OS … Read more
January 3, 2024 at 11:45PM The increasing complexity of cybersecurity and compliance has made it difficult for smaller businesses without a Chief Information Security Officer (CISO). As a solution, many are turning to virtual CISOs (vCISOs), who offer part-time outsourced security expertise to help fill the gap. This model is particularly beneficial for smaller businesses … Read more