Lucene search
K

34 matches found

GithubExploit
GithubExploit
added 2026/04/19 7:34 a.m.127 views

GRC-demo-poc-oscal

GRC-OSCAL — continuous compliance, demonstrated A working pro...

5.8AI score
Exploits0
Wordfence Blog
Wordfence Blog
added 2024/11/07 10:24 p.m.19 views

Wordfence Price Increases Coming December 5th, 2024

We haven't raised our prices in a relatively high inflation environment in 2 years, and in the case of Wordfence Care and Response, for 2.5 years. So that time has come, and we want to let our free and paid user community know ahead of time. We’re giving you almost a month forewarning before we...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2024/10/30 10:30 a.m.16 views

Embarking on a Compliance Journey? Here's How Intruder Can Help

Navigating the complexities of compliance frameworks like ISO 27001, SOC 2, or GDPR can be daunting. Luckily, Intruder simplifies the process by helping you address the key vulnerability management criteria these frameworks demand, making your compliance journey much smoother. Read on to understa...

7.1AI score
Exploits0
Pen Test Partners Blog
Pen Test Partners Blog
added 2023/09/27 5:29 a.m.20 views

Which security framework? All of them, in the SCF

TL;DR: All roads lead to Rome. There are plenty of ways to meet your security requirements ISO 27001 is not everything. There, I said it What is the Secure Controls Framework SCF? Why you should consider SCF on your journey to security excellence PTP has a myriad of customers coming for help to...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2023/09/26 11:50 a.m.56 views

Essential Guide to Cybersecurity Compliance

SOC 2, ISO, HIPAA, Cyber Essentials – all the security frameworks and certifications today are an acronym soup that can make even a compliance expert's head spin. If you're embarking on your compliance journey, read on to discover the differences between standards, which is best for your business...

6.4AI score
Exploits0
hivepro
hivepro
added 2023/08/08 12:19 p.m.21 views

Hive Pro Achieves ISO/IEC 27001: 2022 Certification

Hive Pro has achieved ISO 27001: 2022 Certification, Demonstrating A Continuous Commitment to Excellence in Information Security August 8th, 2023 - HERNDON, VA: Hive Pro, a pioneer in the Threat Exposure Management market, is thrilled to announce that they have successfully attained ISO 27001:202...

6.5AI score
Exploits0
Talos Blog
Talos Blog
added 2023/07/18 12:0 p.m.21 views

Implementing an ISO-compliant threat intelligence program

Implementing a threat intelligence program that meets the definition of threat intelligence control as described in ISO/IEC 27002:2022 -- a set of standards set forth by the International Organization for Standardization -- is not onerous. The ISO/IEC 27002 standard describes a non-exhaustive lis...

6.9AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/04/27 3:35 p.m.33 views

New InsightCloudSec Compliance Pack: Implementing and Enforcing ISO 27001:2022

James Alaniz and Diamond Fair contributed to this article. We’ve been on quite a roll lately releasing new compliance packs, along with iterative updates to others that we’ve supported for a while now. We’re not done yet, either! In this article, we’ll discuss our newly released compliance pack f...

6.6AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2023/03/10 9:12 p.m.12 views

FAQ: Transitioning to the highly anticipated new revision of ISO 27001

For a group like Coalfire Certification that lives and breathes these standards daily, it has been an exciting few months monitoring the progress of this publication and its review through the various ISO working groups...

1.2AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2022/12/06 6:5 p.m.25 views

ISO 27001 Certification: What it is and why it matters

Did you know that Rapid7 information security management system ISMS is ISO 27001 certified? This certification validates that our security strategy and processes meet very high standards. It underscores our commitment to corporate and customer data security. What is ISO 27001? ISO 27001 is an...

0.5AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2022/10/26 7:4 p.m.13 views

FAQ: Transitioning to the highly anticipated new revision of ISO 27001

For a group like Coalfire Certification that lives and breathes these standards daily, it has been an exciting few months monitoring the progress of this publication and its review through the various ISO working groups...

1.2AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2022/07/25 5:54 p.m.19 views

ISO 27002 Emphasizes Need For Threat Intelligence

With employees reluctant to return to the office following the COVID-19 pandemic, the concept of a well-defined network perimeter has become a thing of the past for many organizations. Attack surfaces continue to expand, and as a result, threat intelligence has taken on even greater importance...

Exploits0
The Hacker News
The Hacker News
added 2022/01/06 11:16 a.m.23 views

NIST Cybersecurity Framework: A Quick Guide for SaaS Security Compliance

When I want to know the most recently published best practices in cyber security, I visit The National Institute of Standards and Technology NIST. From the latest password requirements NIST 800-63 to IoT security for manufacturers NISTIR 8259, NIST is always the starting point. NIST plays a key...

0.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/11/08 1:29 p.m.27 views

Types of Penetration Testing

If you are thinking about performing a penetration test on your organization, you might be interested in learning about the different types of tests available. With that knowledge, you'll be better equipped to define the scope for your project, hire the right expert and, ultimately, achieve your...

6.4AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/09/14 3:29 p.m.22 views

The business case to expand ISO 27001 certification with privacy controls

Third-party inspections of organizational privacy risk remain a novel trend. Only five years ago, the most basic of common controls frameworks for this risk taxonomy did not even exist. Today, privacy has captured the collective global consciousness. Every segment, from regulators and industry...

2.5AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/10/26 12:27 p.m.8 views

hartodesign.fr Improper Access Control vulnerability OBB-1451438

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Openbugbounty
Openbugbounty
added 2020/09/28 1:5 p.m.6 views

cartrade.co.jp Cross Site Scripting vulnerability OBB-1370459

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/08/10 5:53 p.m.9 views

Key scoping factors when pursuing ISO 27001 certification

Service providers that seek the most recognized implementation of an information security baseline and governance structure should consider the ISO/IEC 27001:2013 "ISO 27001" standard. The information security management system ISMS prescribed by this widely adopted publication engages personnel ...

1.8AI score
Exploits0
Qualys Blog
Qualys Blog
added 2020/03/16 4:45 p.m.33 views

Automated and Scalable Audit Workflows with Qualys Security Assessment Questionnaire

Risk and compliance management is a multi-faceted domain with concentrated endeavors towards reducing unacceptable risk potential that could disrupt business, or otherwise negatively impact business performance. IT GRC Governance, Risk and Compliance comprises many tasks related to business and I...

0.9AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2019/11/20 8:36 p.m.18 views

Will ISO 27701 Be the New GDPR Certification?

On August 6, ISO published the ISO/IEC 27701:2019 "ISO 27701" standard, which lays out the requirements for implementing an organizational program to govern the handling of personally identifiable information PII, known as a Privacy Information Management System PIMS. In many ways, the new standa...

1.3AI score
Exploits0
Rows per page
Query Builder