News
If your organization works on a government contract, you must comply with the Defense Federal Acquisition Regulation Supplement (DFARS). When following the security controls within NIST’s SP 800-171, you must report your level of compliance to the government. This became a requirement at the end of the 2017 calendar year. It may seem overwhelming but […]
Our staff, as a whole, is our weakest link when it comes to the security posture of the organization. It is our staff that lets their guard down due to workload and it is our staff that configures and deploys our information systems across the enterprise. Most people think that our IT Department is the […]
Many executives receive a great deal of data from CSO’s but the majority of instance, they are based on compliance rules put forth in the organization. While it is important to know the completeness of these controls, those metrics can be difficult for the executive team to quantify or fully understand how they relate to […]
As Slate continues to grow as a trusted partner with our clients, it has become evident that most organizations are looking for the “check the box” approach. In most cases, it is not due to the organization trying to just get by with the minimum required actions, but rather their lack of knowledge with what […]
Verizon has just published their annual Data Breach Report. The report was written by compiling data from 41,686 security incidents and 2,013 data breaches. Verizon was able to isolate specific data points from the compiled data, giving organizations the ability to know where they should focus their attention. They found that even though most attacks […]
A few weeks ago, I had recommended to a client that they should purchase Insurance instead of implementing specific controls in their environment to mitigate a particular risk. The client was not aware that this was an option and thought that General Liability Insurance provided coverage. Once I explained that liability insurance is very limited […]