Technology Guidance for Business Leaders

These days, it's nearly impossible to find a business that doesn't rely on public cloud services for its essential applications. However, with the increasing frequency of ...

When is the last time you really tested your network infrastructure? More than just sending out a fake phishing email to your staff for employee training; serious disaster...

It seems like new cybersecurity issues pop up every day. With more and more devices connecting to the internet, and default security settings leaving something to be desired,...

As the frequency and sophistication of cyberattacks increase, so does the cost to businesses. As a result, insurance providers are taking a close look at how risky a business...

Penetration testing is the best way to know that your organization's data is secure, with no overlooked vulnerabilities or forgotten loopholes to allow your data to be...

Vulnerability management is a very deep topic, consisting of far more than just an anti-virus scan and an automated monthly report, but you don't need a degree in Computer...

It's 2023, and every company on the planet is fighting a daily battle against cyber threats and attacks.  We're almost numb to the daily reports on breaches as the cybercrime...

A managed security service provider (MSSP) specializes in offering a wide range of security products and services (“Security as a Service”) to businesses who need on-going...

Cyberattacks and security breaches have become an almost routine part of the news cycle. It seems we can hardly go a month without hearing about a major corporation being...

No matter what security protocols your company puts in place or how unbreakable you believe your password to be, there is one vulnerability that cybercriminals can always...

Today we’ll break down CMMC Section 3.8, which focuses on the media protection for media that contains controlled unclassified information (CUI).

It’s important to remember...

Do you really need cybersecurity insurance? Well, that depends!The number of businesses who took out cyber insurance policies in the last few years has sky-rocketed, thanks...

What was once a relatively unknown position has become a necessity for many businesses across all industries. As more of us continue to work remotely, the necessity of a...

In the past, using strong passwords was enough to keep accounts secure and hackers at bay. This is no longer the case, and cyber security services require a lot more than...

Today we are focusing on a review of CMMC Section 3.6, which provides individual practices for incident response after a cyberattack. The biggest takeaway? Good cybersecurity...

When organizations are looking for ways to save money, cybersecurity sometimes ends up on the chopping block. For those companies fortunate enough to never have gone through...

With the rapid evolution of the modern-day workplace, and the growing popularity of BYOD, today’s employees comprise a combination of office-based, remote and hybrid workers...

By the time you get to the end of this sentence, a cybercriminal will have successfully attacked a business and infected it with ransomware. According to Cybercrime Magazine,...

When it comes to achieving CMMC compliance, the old business maxim holds true — it’s not what you know, it’s who you know.

One of the most vital protections you have against...

Configuration management is vital, both within the CMMC framework and in general from a security and IT perspective.

Configuration management ranks right up there with...

Your greatest cybersecurity vulnerability isn’t your hardware. Or your software. It’s your people!

People—executives, managers, team leaders, workers—are the leading cause of...

The Cybersecurity Maturity Model Certification 2.0 (CMMC) includes practices and controls that fall under the category of “Audit and Accountability.”

Unlike with other areas...

The U.S. Department of Defense (DoD) published Cybersecurity Maturity Model Certification 2.0 (CMMC 2.0) in November 2021 to safeguard sensitive national security...

If your organization is working toward Cybersecurity Maturity Model Certification (CMMC), then you will eventually come across the sections dealing with cybersecurity...

If your organization wants to achieve Cybersecurity Maturity Model Certification (CMMC), you need to understand Access Control.

Not just what it is, but the process. And the...

Not too long ago, most security breaches were caused by technical problems, such as hardware malfunctions or vulnerable applications. But not anymore - most breaches are now...

To judge solely by headlines, it would be easy to think only enterprise-level businesses need to worry about consumer data privacy laws.

The truth, however, is that the laws...

It’s easy for businesses to get overwhelmed when it comes to figuring out what they need for adequate cyber security protection. We recommend that the very first thing you do...

In the past, IT departments were able to control almost all technology decisions, along with who was allowed to use what application or service.But then came the cloud. And...

Of all the malware threats in the world, ransomware remains the number-one choice of cybercriminals. And it’s a growing threat. Cybercrime Magazine estimates that malware...

If your business uses Google Workspace (formerly G Suite), then you have at least a nodding acquaintance with Google Drive.

Google Drive, of course, is Google’s storage and...

If you are a federal government contractor wanting to land lucrative contracts with the Department of Defense and other large federal agencies, you must up your cybersecurity...

Last week our news feeds were dominated yet again by another major cybersecurity incident.

This time, it was the ransomware hack on Colonial Pipeline which caused a major...

A managed security service provider (MSSP) could be one of your best business investments. Why? The most obvious reason is the escalating cyber incidents which threaten your...

Ever wonder if a link in an email is legitimate? It’s not getting any easier to tell when a website, link, or attachment is ‘phishy’ - meaning if it’s legit or something we...

Back in February of 2009, the Obama Administration put the HITECH act into law, primarily as a means to update HIPAA which was started in 1996, and needed to be updated. But...

A single leak can sink a ship, and that’s pretty much what can happen with poor cybersecurity. Cybersecurity is critical for Chicago companies as a single security breach can...

Cyber threats against financial service organizations are on the increase, and the COVID-19 pandemic has only served to accelerate this trend.

Law firm cybersecurity has never been more important because the stakes are so high and cybercrime is now endemic. For instance, hackers penetrated the defenses of 48 United...