IT enterprise risk management is a key area that every well-established company should take seriously. This is especially true considering the sheer number and variety of threats and vulnerabilities discovered almost daily.Successful IT enterprise risk management requires qualified and experienced professionals. ISACA’s CRISC (Certified in Risk and Inf

It is quite hard to think of a company that does not use any sort of information system as a basis for doing business. In fact, the actual standard for most companies is having several information systems that are business-critical and will probably contain confidential data such as financial information, personally identifiable information or even tra

The Project Management Professional (PMP) certification by the Project Management Insititute (PMI) is a good choice for project managers in any industry. According to PMI, a PMP certifcation can increase your salary by an average of 20% and help your organiation complete more of their projects on time, on budget and meeting original goals.As you’re gea

1. IntroductionIn this article, we look at the current trends in the field of information security and present speculations as to what the future of the field would be. It should be noted that unpredicted emergence of disrupting innovations may radically change the existing information security landscape. Nevertheless, we may reasonably expect that the

IntroductionSituational awareness within the industrial control system (ICS) realm is a hot topic, with the recent release of commercial products targeting this niche market. However, there may be a U.S. Government-sponsored program that meets the necessary criteria for the needs of your organization.What is it?First, what is situational awareness? The

An essential part of a company’s cybersecurity program is the creation and implementation of a workplace security policy, a document that outlines all plans in place to protect physical and information technology (IT) assets; in fact, a policy includes a set of rules, instructions, and information for companies’ end users and guests aiming

In our previous article, we looked at the recommendations that came out of the National Data Guardian’s (NDG) paper ‘Review of Data Security, Consent and Opt-Outs’ on the use of data use in health and social care. As a consequence of this paper, the UK Department of Health conducted a public consultation on the findings. This consultation resulted in t

While the technical aspects of sharing patient data in health and social care continue to evolve, the Review of Data Security from the National Data Guardian focuses on the more permanent issue of building trust.The use of data gathering, storing, sharing, and analysis in health care can allow for all manner of efficiencies and better services for pati

The current cybersecurity landscape requires specialized and validated skills to proactively mitigate future security threats. Certifications like the CASP provide credibility when it comes to demonstrating job competencies to employers, and can unlock advanced opportunities in the IT world.What Is the CASP Certification?The CompTIA Advanced Security P

Interested in getting started as an information security professional? There are quite a few potential points of entry, but earning your A+ certification might be an excellent option. Infosec positions are widely available across the U.S., and with the right certification and minimum experience, you can embark on a rewarding career. The right certifica

We sat down with security expert and Incsub CTO Aaron Edwards to learn more about WordPress security and the steps administrators can take to keep their WordPress themes and plugins secure.1. How can I tell if my WordPress theme and plugins are secure?There are some great free tools like WP Checkup that can help check your site for plugin and theme vul

The cybersecurity industry is seeing significant, ongoing growth with the rise of high-profile hacking incidents and data theft. Companies large and small need to ensure their data is safe, and that they are in compliance with industry and government regulations. Earning your CSA+ (cyber security analyst) credentials will allow you to earn a good salar

Interested in earning an infosec credential that ensures you’re best suited for working with government agencies, either as an employee or a contractor? If so, the ISSEP concentration for the CISSP certificate may be an ideal option.What Is ISSEP?ISSEP stands for Information Systems Security Engineering Professional, and is a “concentration area” of th

CISSP certification is one of the most desired information security credentials, and for good reason. With an exam length of 250 questions, a six-hour testing window and a variety of topics spanning the eight domains of the CISSP Common Body of Knowledge (CBK), the CISSP exam is one of the most challenging certifications to secure. Combined with a five

Many Security+ aspirants who are familiar with the CompTIA Security+ SY0-401 exam want to know the difference between SY0-401 and its newer version, SY0-501. Cybersecurity is a rapidly changing field. New threats are emerging every day and cybersecurity experts are also developing countermeasures to these threats. Over the three years since SY0-401 was