The Growth of Machine Learning in Cybersecurity Creates New Third-Party Risks
Supply chain and third-party risks have been a top-of-mind security concern in recent years. Attacks such as Solarwinds and [...]
One Year Later: Lessons Learned from the Colonial Pipeline Hack
On May 7, 2021, Colonial Pipeline Co. was the victim of a ransomware attack with far-reaching effects. The DarkSide [...]
A Catered Approach to Managing Third-Party Risk
Authored by: Eric Chan, Director of Strategy & GRC, Cybersecurity - MorganFranklin Consulting Third-Party Risk Management (TPRM) continues to [...]
Quality Assessment Reviews (QARs): Metrics, a Key Area of Performance Evaluation
The Institute of Internal Auditors (IIA) requires an External Quality Assessment Review (EQAR) at least every five years for the [...]
Quality Assessment Reviews (QARs): People, a Key Area of Performance Evaluation
The Institute of Internal Auditors (IIA) requires an External Quality Assessment Review (EQAR) at least every five years for [...]
NIST to Update Their Cybersecurity Framework: Potential Changes and How Your Organization Can Benefit
Due to heightened risks and to keep pace with the constantly evolving cybersecurity landscape, the National Institute of Standards [...]
Why Two CMMC Partners are Better Than One
The Cybersecurity Maturity Model Certification (CMMC) is an accreditation issued by the United States Department of Defense (DoD) for [...]
Quality Assessment Reviews (QARs): Planning, a Key Area of Performance Evaluation
The Institute of Internal Auditors (IIA) requires an External Quality Assessment Review (EQAR) at least every five years for [...]
External Quality Assessment Reviews: Types and Their Advantages
With the Institute of Internal Auditors (IIA) requiring a mandatory External Quality Assessment Review (EQAR) every five years, how [...]
Are You Underutilizing Your SaaS Spend?
As more companies have shifted to a SaaS model, the spend vs. utilization debate has emerged at the forefront. [...]