pdf Download (2.97 MB)

This paper discusses the business value that can be realized through an integrated IT GRC program at two levels:

pdf Download (774 KB)

There are multiple benefits of moving sites or applications to the public cloud – cost savings, agility, speed, and increased team focus, to name a few. Many smart businesses are making the decision to migrate to the cloud to realize these benefits. Cloud computing and security go hand-in-hand in the minds of many enterprises.

pdf Download (78 KB)

Managing 800 key SOX controls with no master matrix. Inability to identify most current and accurate individual control assessment status for lines of business                    and locations. Different standards of documentation.Unclear whether risks have been addressed or even assessed. Trying to determine a single source of truth              depended on e-mails and then manual data aggregation and normalization.

pdf Download (559 KB)

Organizations today face a multitude of IT risks, ranging from cyber breaches and IT hacks, to failures in IT assets due to technical issues. Identifying critical assets, and adopting a risk-based approach towards analyzing potential threats are essential to understand your organization’s risk exposure -- be it from a financial, competitive, reputational, or regulatory standpoint.

pdf Download (1.72 MB)

A qualified MSP is one that can provide skills, processes and resources that exceed your in-house capabilities.  However, the IT industry has come to a crossroad where managed services meet security.  It is simply not enough for cloud providers to say they are secure.  There is too much at risk to trust blindly.  In order to dispel any fears potential customers may have, MSPs need to show they are secure. 

pdf Download (1.49 MB)

The General Data Protection Regulation (GDPR) introduces sweeping changes to how enterprises around the world collect, process, store, and protect the personal data of EU citizens. As the first compliance deadline draws near, Data Protection Officers (DPOs) will need to ensure that their organizations are prepared by establishing compliance and audit teams, processes, policies, and controls.

default Download

In this week's Whiteboard Wednesday, Deral Heiland, IoT research lead at Rapid7, discusses the standard methodology he uses when engaging in IoT testing, as well as the importance of the entire IoT ecosystem.

pdf Download (1.82 MB)

Voltage SecureData neutralizes data breaches by making your protected data absolutely worthless to an attacker, whether it is in production, analytic systems, or test/development systems, such as training and quality assurance.

pdf Download (1.03 MB)

A failed audit or a data breach should not be the wake-up call that a new approach to data protection and access control should have been undertaken. Now is the time to move forward on revamping your approach.

pdf Download (708 KB)

This guide provides you the key points you need to understand as you organize your DLP project, define key user profiles that affect your DLP strategy and roll out your DLP program at every phase of deployment.

default Download

This is especially relevant today, as employees increasingly blur the lines between home networks and business networks.

pdf Download (634 KB)

In this paper we start with a review of the evolution in DLP from First to Fourth Generation. We then add context on why taking action in assessing DLP is of growing importance, and we end with an introduction of GhangorCloud, a provider of a true Fourth Generation DLP.

pdf Download (1.21 MB)

A survey was conducted for this white paper, some of the results from which are included herein. However, all of the results will be published in a separate survey report shortly after the publication of the paper.