Please tell us a bit about yourself, your background, and your journey of becoming a CISO at…

What Is an Attack Surface? Your “attack surface” is a susceptible area comprised of points in a…

Chatgpt 3 Speaks For Itself The internet is so laden with content about this new wizard, there’s…

Please tell us a bit about yourself, your background, and your journey of becoming a CISO at…

We’ve all seen it: Compliance teams deluged by regulatory requirements, constant red alerts about software vulnerabilities that…

Background to the CTDPA On May 10, 2022, Connecticut enacted a comprehensive data privacy law, making it…

What is the SIG Questionnaire? The SIG, short for “Standardized Information Gathering (Questionnaire)”, standardizes the assessment of…

The Health Industry Cybersecurity Practices (HICP) was created to integrate effective cybersecurity strategies into a healthcare organization’s…

Please tell us a bit about yourself, your background, and your journey of becoming a CIO Advisory…

What does ChatGPT have in store for information security?  Will the artificial intelligence-powered chatbot empower the information…

The NIST CSF is Scheduled For a Makeover The NIST Cybersecurity Framework is a set of standards,…

Please tell us a bit about yourself, your background, and your journey of becoming a CISO at…

Two Foundational Frameworks: ISO 27001 and HIPAA With the growing number of risks in the information security…

Centraleyes’s dedicated Cyber Insurance solution helps onboard new clients, quantify cyber risk, and actively helps your customers…

Whether you are an SMB looking for advice as to where to start with risk management or…

Abraham Maslow was a humanistic psychologist, which put him in a different bucket than other psychologists you…

Please tell us a bit about yourself, your background, and your multiple endeavors, including your role as…

One of your biggest questions regarding a SOC 2 audit is whether it fits in your budget.…

Background of the Maine Privacy Law In 2019, Maine became the first state in the nation to…

Business networks are constantly evolving, and new attack vectors emerge at an astonishing rate. Network managers need…

Background to the IRS Publication 4557 Data Thefts Are on the Rise in the Tax Industry. Identity…

The need for TPRM Solutions Today In today’s hybrid ecosystem of cloud computing, remote employment, and global…

The release of the newly revised and renamed ISO 27001:2022 has been highly anticipated, although it doesn’t…

Please tell us a bit about yourself, your background, and how you got into the cybersecurity industry.…

During the 2019 legislative session in North Dakota, a bill (HB1485) was introduced by Representative Kasper-Fargo to…

Here’s an interesting fact about the Hawaii bill of rights: The Hawaii constitution lists the word “privacy”…

Maryland’s PIPA (Personal Information Protection Act) was enacted in May 2022 to ensure that Maryland consumers are…

Origins of the CPRA Mactaggart, a real estate developer in the California Bay Area, started worrying about…

The last couple of years have seen a wave of state privacy law proposals across the United…

“Stand straight.” It’s a directive we’ve all heard at some point in our lives and is worth…

California has one of the strictest data protection legislation in the United States. CPRA deals with the…

The growing body of stringent data privacy laws has pushed for better methods of evidence collection and…

What are Vendor Risk Assessments? Vendor assessment is the process of assessing and identifying risks posed by…

What is ISO 27002:2022? Before we get started, let’s take a minute to explain exactly what ISO…

The Board Reporting Challenge Reporting the state of security at a board meeting can lead to confusion.…

Centraleyes announces the addition of NIST 7621 to its extensive framework library. The NIST 7621 framework provides…

What Is a Remote Access Policy? As new digital waves continue to engulf the business landscape, remote…

The Third Digital Wave The digital transformation of the last few decades has completely changed the way…

Is Cyber 2023 Stuff of Movies? We often think of modern cybersecurity as a movie scene with…

What is a Supply Chain? A supply chain is composed of multiple companies, vendors, and suppliers all…

The ISO 27001 standard is internationally accepted as a specification for an Information Security Management System (ISMS).…

The NIST 800-53 Revision 5 provides a catalog of security and privacy controls for information systems and…

The digital era has brought new levels of attention to the privacy debate. From big data breaches…

Cyber attacks and ransomware threats on small businesses may not reach the headlines, but they pose a…

Given the myriad of risks facing businesses today, business leaders are focusing on risk management like never…

Virginia Takes a Lead in Data Privacy Just eight pages long, the VCDPA is significantly more succinct…

Please tell us a bit about yourself, your background, and your journey of becoming the CISO of…

News outlets confirm what we don’t want to know. A single cyberattack can bring a sprawling corporate…

There’s an old saying — an ounce of prevention is worth a pound of cure.  Nowhere does…

The Concept of Zero Trust In the past, companies focused security policies on controlling network perimeters, assuming…

Compliance automation has never been more important as companies face frequently updated regulations and a growing cost…

Podcasts have exploded in popularity over the past several years, and it’s not difficult to see why.…

What is Controlled Unclassified Information? CUI stands for Controlled Unclassified Information. CUI is defined as government-related information…

CIS Controls The Center for Internet Security (CIS), a non-profit organization with a mission to develop and…

In the United States, most products are regulated by federal agencies that oversee safety standards and enforce…

Microsoft Excel, Google Sheets, and their equivalent software programs are indispensable, and for good reason. These essential…

Privacy law is a trending topic in the United States. In the shadow of groundbreaking GDPR laws…

Gap analysis is a starting point for a business to compare its current state of information security…

Centraleyes makes your data actionable and enhances your cyber maturity by automatically creating remediation workflows whenever a…

Watch this special, collaborated webinar session where Sagar Shah, Senior Manager of GRC at Corvus Insurance, and Yair Solow,…

Periodically reassessing your frameworks can be crucial to ensure your ongoing compliance and risk posture. With Centraleyes…

Since the 2008 recession, we’ve seen years of mostly low inflation, declining interest rates, and healthy stock…

State legislatures across the US have been on a roll in introducing omnibus privacy bills. During the…

The digitization of the modern workplace has emphasized the importance of cybersecurity for businesses everywhere. Cyber threats…

Please tell us a bit about yourself, your background, and how you got into the cybersecurity industry.…

Some of you are likely inclined to dismiss that idea outright. Traditionally, organizations that use a heat…

Security teams are tasked with the job of assuring that business risks are securely managed and that…

The Centraleyes platform offers a full audit trail of all of the activities contained within your assessments,…

Creating a new entity in the Centraleyes Multi-Entity 1st Party module provides you with another layer of…

Definition of Cyber Governance Cyber security governance provides a strategic view of how an organization controls its…

Compliance Audit Woes Compliance audits are STRESSFUL. IT teams work overtime and overnight to collect evidence of…

Race to the Cloud Cloud migration is not just a quick shift from traditional network systems to…

What is the Virginia Consumer Data Protection Act? Gov. Ralph Northam, a Democrat from Virginia, signed the…

Cloud computing is transforming enterprises and e-commerce markets globally, thanks to its scalability and flexible usage. Within…

If there’s one thing that’s certain in the expanding digital world, it’s that nothing is certain. Unseen…

Breaches have never been more expensive. Don’t believe us? See for yourself. The average data breach cost…

Due diligence and due care are commonly used interchangeably, but in the world of cybersecurity, they have…

Please tell us a bit about yourself, your background, and your journey of becoming a CISO for…

Cyber Insurance is not a new concept — it has existed in one form or another since…

Supply chains have never been more complex and intertwined. The result is a network of vendors and…

Watch this special, collaborated webinar session where industry experts from Netsurit and Centraleyes meet at an intriguing…

Centraleyes announces the addition of NIST 800-53 to its extensive framework library. NIST 800-53 was created to…

Centraleyes announces the addition of the Higher Education Community Vendor Assessment Toolkit (HECVAT) its extensive framework library.…

The GRC Revolution Unlike many catchphrases in the cyber dictionary, GRC (governance, risk, and compliance) is not…

Please tell us a bit about yourself, your background, and your journey of becoming a CISO for…

Centraleyes announces the addition of the Federal Financial Institutions Inspection Council (FFIEC) to its expanding framework library.…

Inflation is already impacting organizations worldwide, and its impact on the cost of cybersecurity incidents must be…

Data is the life force of business today. What would happen to a business if it was…

The way that your company conducts itself has never been more critical. Approximately 76% of consumers say…

Most startups fail, so how can yours succeed? It’s a complex answer, but part of that answer…

The SEC Proposes New Cybersecurity Standards In March 2022, the SEC (Securities and Exchange Commission) released the…

The days of cybersecurity being a job exclusively for IT is over. In the past, data security…

The days of businesses thinking exclusively in terms of revenue are over. Now more than ever, companies…

Centraleyes announces the addition of the New York Department of Financial Services (NYDFS) Cybersecurity Regulation to its…

Cyber incidents are at the forefront of executives’ minds, earning the number one spot in a recent…

Please tell us a bit about yourself, your background and your journey of becoming a CISO I…

Risk management and vulnerability management are often used interchangeably, but they are two different practices. Risk management…

Centraleyes announces the addition of PCI DSS to its extensive framework library. The PCI DSS refers to…

Evaluating your vendors, partners, and suppliers’ cybersecurity posture has never been more critical. Unfortunately, around 45% of…

Risk management has become necessary for organizations worldwide, regardless of industry or size. Vendor risk management, often…

Governance, risk, and compliance (GRC) programs have become essential to the modern business landscape across all industries.…

Organizations increasingly rely on third-party suppliers to support critical business functions. This upward trend has accelerated in…

Whether you are an SMB looking for advice as to where to start with security vulnerability management…

A 2021 report from IBM Security indicates that the cost of a single data breach reached $4.24…

Centraleyes announces the addition of the ISO 22301 Business Continuity Management Framework to its expanding framework library.…

Businesses have been investing in cybersecurity for decades, but cybercrime hasn’t gone away. Instead, the opposite has…

Businesses across all industries face risks throughout their operations. Risks can target nearly every aspect of your…

Please tell us a bit about yourself, your background, and your journey in Servify I have 15+…

Maintaining compliance isn’t just about avoiding fines — it’s about following frameworks designed to keep your company’s…

The most important step in managing your vendors and supply-chain is to build an effective and scalable…

Cybercrime has been growing at an alarming rate, and executives are now aware. Approximately 55% of enterprise…

Cybersecurity frameworks exist to provide a unified security standard for organizations to follow to protect their data,…

Please tell us a bit about yourself, your background and your journey at XM Cyber As a…

Cybercrime is expected to total $10.5 trillion annually by 2025. So it’s understandable why organizations seek out…

Centraleyes announces the addition of the new South African data privacy framework, the Protection of Personal Information…

It’s estimated that cybercrime collectively costs organizations $16.4 billion per day, or $190,000 per second. Evaluating risks,…

What is a PCI Audit? The Payment Card Industry Data Security Standard, known widely as PCI DSS,…

Centraleyes announces the addition of the Secure Controls Framework (SCF) to its expanding framework library. The Secure…

With escalating threats to cybersecurity, businesses are searching for ways to supplement traditional security and to protect…

The purpose of PCI DSS is simply to ensure that all companies that accept, process, store or…

A smart step for any startup looking to close enterprise deals and take their company to the…

Organizations across all industries are becoming increasingly aware of the need for modern cybersecurity techniques to protect…

Cybersecurity has never been more critical than it is today. A new cyber attack starts every 40…

The global cost of cybercrime was estimated at US$6.1 trillion in 2021 and is expected to keep…

Centraleyes announces the addition of the Cyber Resilience Review (CRR) security assessment to its expanding framework library.…

The need for internal controls in a security program is crucial. They ensure you have proper measures…

Centraleyes has recently announced the addition of the UAE IA compliance regulation to its expanding framework library.…

When you want to communicate with another person, the clearest way is to speak the same language.…

Centraleyes is excited to announce the addition of ISO 27701 security standard to its expanding framework library.…

Data is big business these days. You don’t need to look further than Google’s advertising program to…

Operating and growing a business has seemingly endless moving pieces. Ongoing research and development, creating effective marketing…

Centraleyes is happy to announce the addition of OWASP MASVS security standard to its expanding framework library.…

Quantifying financial risk when it comes to risk management is quite difficult task. One of the most…

Centraleyes reaches yet another milestone, being identified as an Outperformer in the Challenger group of the 2022…

Centraleyes announces its latest strategic partnership with UAE-based, value-added distributor, Evanssion.Evanssion is now promoting the Centraleyes next…

Centraleyes is happy to announce the addition of the Insider Risk Mitigation security standard to its expanding…

Centraleyes announces its latest strategic partnership with New York-based, global IT and digital transformation managed service provider,…

The Centraleyes platform can be leveraged to run application assessments for various apps and software that are…

The Centraleyes Boardview module is a game-changer in Executive Reporting! The platform allows you to create faster,…

Centraleyes is happy to announce the addition of the Personal Information Privacy Law (PIPL) of China to…

Centraleyes is excited to announce the upgrade of the new CMMC version 2.0 in its extensive framework…

Centraleyes is proud to announce the addition of the Nevada Revised Statutes (NRS), Chapter 603A to its…

The Centraleyes platform offers a source of automated intelligence data feeds, which complements the self-attestation collection made…

Centraleyes is excited to announce the addition of the Ransomware Readiness Assessment (RRA) Model to its expanding…