Security

Close the InfoSec Skills Gap: Develop a Technical Skills Sourcing Plan

July 17, 2019

The cybersecurity skills gap is an ever-growing challenge that all organizations will eventually face. To circumvent the problem, actively plan for...

Reduce and Manage Your Organization’s Insider Threat Risk

June 24, 2019

The hard digital wall has crumbled. The focus of organizations has been to protect themselves from the outside, but they equally need to assess and...

Implement a Security Governance and Management Program

May 23, 2019

Security programs tend to focus on technology to protect organizations while often neglecting the people, processes, and policies needed to govern ...

Combine Security Risk Management Components Into One Program

March 22, 2019

IT departments are tasked with implementing new projects, but are often unsure how to assess the risk. Often, they use informal discussions that do...

Dive Into Five Years of Security Strategies

February 28, 2019

Since 2013, Info-Tech’s “Build an Information Security Strategy” research has been used to help our members build their security programs. Using ou...

Build an Information Security Strategy

February 28, 2019

Technology sophistication and business adoption, the proliferation of hacking techniques, and the expansion of hacking motivations from financial t...

Build a Privacy Program

February 27, 2019

Don’t wait until a privacy incident occurs – start building a privacy program now. Use Info-Tech’s Privacy Framework to understand your current sta...

Develop Necessary Documentation for GDPR Compliance

February 22, 2019

Understand your GDPR requirements concerning your data protection officer, retention requirements, and privacy and cookie policies. Use this bluepr...

Ensure Cloud Security in IaaS, PaaS, and SaaS Environments

July 11, 2019

This blueprint will comprehensively evaluate your hosted cloud risk profile to determine what unique security controls your organization requires t...

Forge an Ironclad Reporting Strategy for Security Metrics

July 09, 2019

Board-level presentations are a rare opportunity for security and business to understand each other’s viewpoints and the things they care about, an...

Debunk Machine Learning Endpoint Security Solutions

May 30, 2019

Traditional legacy anti-virus solutions are unable to keep up with the sheer volume of new and sophisticated endpoint attacks. As a potential solut...

Embed Security Into the DevOps Pipeline

March 04, 2019

Transcend traditional application security approaches and embrace the agile mindset to shift security left. Use innovation and automation to secure...

Build a Vendor Security Assessment Service

December 07, 2018

Risks from third parties are on the rise, but many organizations still struggle with how to tackle this problem. A risk-based approach is needed to...

Master Your Security Incident Response Communications Program

August 31, 2018

Many organizations do not have an incident response plan, and those that do often forget to include a communications plan, leading to time loss whi...

Simplify Identity and Access Management

August 31, 2018

This research will lay the groundwork for establishing a centralized, effective, and efficient system for managing identity and access. We will hel...

Understanding Regulation With Blockchain Technology

July 24, 2018

Understand the implications of blockchain from a usage and forensic perspective, as well as the potential unique issues of this transformative tech...