Cloud Audit | security, compliance | C5
By:
KRISTEN WILBUR
May 17th, 2022
When Daenerys Targaryen made the decision to march north with Jon Snow in HBO’s Game of Thrones, she weighed the pros and the cons.
SOC & Attestations | SOC Reports | security, compliance
By:
Eric Aulbach
January 6th, 2022
Picture this: you’ve just finished a race.
SOC & Attestations | SOC Reports | security, compliance
By:
JORDAN HICKS
January 4th, 2022
“How much time do you have?”
SOC & Attestations | SOC Reports | security, compliance
By:
JORDAN HICKS
November 23rd, 2021
If you’ve decided to try for compliance, you might already know that, given how much this space has evolved in just the last 20 years, there are a lot of ways to do that.
security, compliance | Penetration Testing | AppSec
By:
Austin Bentley
November 2nd, 2021
Make pen testing easier while delivering a better report to your client. For testers in the application security (AppSec) arena, you know that we examine a lot of different areas, including authentication, authorization, encryption, logging, and so on, making for what’s become a staple in this job—the large lists of technical checks that grow even longer every time new issues are discovered and then added for testing. If you’ve worked in AppSec, you know that these tests can make for quite the effort, depending on the complexity of the app you’re working in.
Cybersecurity Assessments | security, compliance
By:
Schellman
October 28th, 2021
We all know that cybercriminals are now a thing.
security, compliance | ISO 27001
By:
Ben Kwan
June 28th, 2021
When I first began considering a career with Schellman, I began to dig through industry jargon to familiarize myself—my background was in nonprofits, and there was a lot of new information to parse through, including many, many acronyms. Among those that I discovered was ISO, an abbreviation that up to just a few months ago, was lost among others like NBA, NCAA, and TSLA that some might argue are more important. When I initially learned, more specifically, of ISO 27001, I had no clue what it meant, but I’d eventually discern that this certification was the one that potentially could change the course of my professional career. Throughout my extensive research, it was the unique nature of ISO 27001 that was among the important gems I discovered that would eventually draw me into the industry.