The American Institute of Certified Public Accountants (AICPA) manages various certification programs for service organizations, including those for software-as-a-service (SaaS) providers. If clients are concerned about how a SaaS company…
-
-
In November 2021, the DoD revised the Cybersecurity Model Maturity Certification (CMMC) program, leading many in the Defense Industrial Base (DIB) to question their compliance needs. The critical issue now…
-
In today’s evolving cyber landscape, a virtual Chief Information Security Officer (vCISO) is essential for safeguarding businesses against sophisticated threats. Unlike traditional CISOs, vCISOs offer expert cybersecurity leadership without the…
-
Monthly Industry News: Port of Seattle Cyberattack and National Public Data Breach
by RSI Securityby RSI SecurityIn August 2024, the cybersecurity landscape was shaken by two major incidents: a cyberattack on the Port of Seattle and Sea-Tac Airport, and a massive data breach at National Public…
-
CMMC 2.0 provides a robust cybersecurity framework mandated for DoD contractors, consolidating controls from key regulatory texts such as NIST SP 800-171 and SP 800-172. As organizations prepare for its…
-
Navigating the world of compliance can often feel like trying to solve a puzzle with missing pieces. When it comes to Cybersecurity Maturity Model Certification (CMMC) 2.0, understanding the role…
-
PCI (payment card industry) compliance involves adhering to standards for processing payment information online. They were established by the PCI Security Standards Council (PCI SSC). PCI DSS aims to enhance…
-
Organizations seeking work with the US government and the military need to prove their commitment to data security before securing a contract. CMMC 2.0, required for military contractors, has undergone…
-
Enacted in 1996, the Health Insurance Portability and Accountability Act (HIPAA) establishes crucial data privacy and security rules for protecting medical information. Despite its age, HIPAA remains pivotal in today’s…
-
All merchants handling credit card data must comply with the Payment Card Industry Data Security Standards (PCI DSS), encompassing those who collect, store, process, or transmit such information. The PCI…