by Jon Stone | Jun 30, 2021 | Blog
As challenging as risk analysis and risk management can be, they’re critical parts of your overall cybersecurity program that can’t be overlooked. A comprehensive risk analysis helps you meet all of your regulatory and compliance requirements, and it also...
by Steve Cagle | Jun 28, 2021 | Blog
Last year’s Blackbaud ransomware attack is estimated to have affected more than two dozen healthcare providers, with well over 10 million patients included in the current breach tally. More recently, a ransomware breach at CaptureRx – a vendor that assists...
by Henry Sprafkin | Jun 7, 2021 | Blog
The first two installments in this series focused on risk management and risk-based control selection. While not a requirement, it is best to build the security control library based on an established control framework. There are over 200 different risk management,...
by Bob Chaput | Jun 1, 2021 | Blog
When the executive team and board are discussing this quarter’s financial results, it is important that everyone understands terms like revenue, operating margin, and net income. Any ambiguity in the understanding of those terms can lead to miscommunication....
by Jon Moore | May 17, 2021 | Blog
Under the HIPAA Security Rule, covered entities and business associates are required to perform risk analysis on all systems that create, receive, maintain, or transmit electronic protected health information. In 2010, the Office for Civil Rights (OCR) published...
