Security

2020 Security Priorities Report

January 13, 2020

Use this deck to learn what projects security practitioners are prioritizing for 2020.

Demonstrate Data Protection by Design for IT Systems

December 11, 2019

Privacy is now considered an integral part of information security. In fact, consumers often want more than a company’s word that their data is sec...

Time Study

December 06, 2019

Info-Tech Research Group conducted a research project that focused on the time management practices of cybersecurity professionals. The report was ...

Develop a Security Awareness and Training Program That Empowers End Users

November 27, 2019

Cyberattackers target your end users, who remain today’s weakest link in organizational security. Design and deliver an effective and up-to-date tr...

Satisfy Customer Requirements for Information Security

September 27, 2019

Your customers and potential customers are increasingly demanding assurance that you will meet their information security requirements. Discover be...

Comply With the California Consumer Privacy Act

September 18, 2019

This project covers the major commonalities of GDPR and CCPA.

Close the InfoSec Skills Gap: Develop a Technical Skills Sourcing Plan

July 17, 2019

The cybersecurity skills gap is an ever-growing challenge that all organizations will eventually face. To circumvent the problem, actively plan for...

Reduce and Manage Your Organization’s Insider Threat Risk

June 24, 2019

The hard digital wall has crumbled. The focus of organizations has been to protect themselves from the outside, but they equally need to assess and...

Develop and Implement a Security Incident Management Program

September 09, 2019

Security incidents are inevitable, but how they’re dealt with can make or break an organization. Poor incident response negatively affects business...

Ensure Cloud Security in IaaS, PaaS, and SaaS Environments

July 11, 2019

This blueprint will comprehensively evaluate your hosted cloud risk profile to determine what unique security controls your organization requires t...

Forge an Ironclad Reporting Strategy for Security Metrics

July 09, 2019

Board-level presentations are a rare opportunity for security and business to understand each other’s viewpoints and the things they care about, an...

Debunk Machine Learning Endpoint Security Solutions

May 30, 2019

Traditional legacy anti-virus solutions are unable to keep up with the sheer volume of new and sophisticated endpoint attacks. As a potential solut...

Embed Security Into the DevOps Pipeline

March 04, 2019

Transcend traditional application security approaches and embrace the agile mindset to shift security left. Use innovation and automation to secure...

Build a Vendor Security Assessment Service

December 07, 2018

Risks from third parties are on the rise, but many organizations still struggle with how to tackle this problem. A risk-based approach is needed to...

Master Your Security Incident Response Communications Program

August 31, 2018

Many organizations do not have an incident response plan, and those that do often forget to include a communications plan, leading to time loss whi...

Simplify Identity and Access Management

August 31, 2018

This research will lay the groundwork for establishing a centralized, effective, and efficient system for managing identity and access. We will hel...