-
DFARS Interim Rule & Higher Education
The DFARS Interim Rule came into effect on September 29, 2020, and it affects Higher Education Institutions that conduct DoD-sponsored research
-
Conducting the GLBA Pre-Audit Assessment
Conducting a GLBA Pre-Audit Assessment will serve as evidence for your auditors and a guide for your institution
-
Everything about the GLBA in Higher Education
Learn everything you need to know about the GLBA in Higher Education with our comprehensive blog post
-
Conducting IT Risk Assessments Quick Guide
IT Risk Assessments are a critical component of any mature security program. Learn how to conduct your own with this quick guide.
-
HECVAT: Building a VRM Process in Higher Ed
Learn how you can leverage the HECVAT to build a robust and efficient Vendor Risk Management (VRM) process across your higher ed institution.
-
Higher Education Regulations Quick Guide
Regulations can help direct our efforts to where work might need to be done, but risk assessments give us advance notice of exactly where those gaps might be. Using a variety of applicable regulatory frameworks, anyone can shore up their compliance through the use of questionnaire-based risk assessments.
-
HIPAA Compliance Guide
For anyone in the medical field, HIPAA sets the standards for the use and protection of medical information and impacts every organization across the healthcare ecosystem, whether interacting with patients or not. As if the threat (and reality) of breaches wasn’t enough, the regulators behind HIPAA mean business when it comes to compliance.
-
NYDFS: Achieving the New Risk Assessment Requirement
Executing a risk assessment and protecting sensitive consumer information under the New York State Department of Financial Services (NYDFS) cybersecurity regulations
-
IT Risk Assessments: Prioritizing Risks
As you start to focus on the issues discovered during a cybersecurity risk assessment, figuring out how to address them can prove difficult. However, there are a few strategies that can help
-
IT Risk Assessments: Spreadsheets vs. Workflow Software
Using spreadsheets to conduct a risk assessment can be a powerful tool, but they have their limitations.
-
In-House vs. Outsourced IT Risk Assessments
In-house and outsourced IT risk assessments both have their advantages and disadvantages. Depending on your institution’s needs, it is important to explore different arrangements
-
How to Get Budget for an IT Risk Assessment
Justifying even a modest, incremental budget for a security program can be challenging. A few checklist key tactics can help you make a difference when convincing your key stakeholders
-
The Top 5 Problems Security Teams Face During Cybersecurity Risk Assessments
A security risk assessment is a daunting task for any security team. This article will uncover the five biggest problems that they face