Last year, the Securities and Exchange Commission (SEC) proposed new rules to enhance and standardize cybersecurity risk management, strategy, governance, and incident reporting disclosure practices by public companies and other…
Read More
HITRUST CSF recently added a new assessment to their portfolio: the HITRUST e1 Assessment. Included in the HITRUST CSF v11 release, the e1 Assessment was designed to cover foundational cybersecurity…
Ever wondered what a day in the life of an IT auditor looks like? Welcome to our Day in the Life blog series, where we dive into what a typical…
In this episode of cyBARR Chats, Senior HITRUST Consultant Steve Ryan discusses the most common pitfalls he sees organizations make during their HITRUST journey. Learn what they are and how...
Read More
by: Larry Kinkaid Defining the scope of your information security management system (ISMS) is a crucial step in your security and compliance journey. The scoping statement is a core element…
ISO/IEC 27001:2022 was released in October. In this cyBARR Chat, Director of Cyber Risk Advisory Angela Redmond discusses what the new updates are and how they might impact your organization....
Read More
October is National Cybersecurity Awareness Month, and in honor of the occasion, we’ll be discussing the importance of multi-factor authentication (MFA), the importance of using trusted password management software and...
Read More
In light of the recent security breach at Uber, Senior CISO Consultant Larry Kinkaid explains what social engineering is, how it works, and how organizations can work to prevent it....
Read More
Uber is the latest prominent company to have a security breach as a result of social engineering. They’re not alone—just this year, Microsoft, Okta, and Cisco have all had security…
Director of Cyber Risk Advisory Angela Redmond explains what ISO 27701 is, why organizations might need it, and how BARR's step-by-step approach to certification simplifies the process. Transcript Claire McKenna:...
Read More
