by Tony Asher | Jul 20, 2020 | Blogs
To skip the article and download the policies and procedures provided: Asset Inventory – Policy and Procedures Sample-Asset Management Policy Introduction In our last several articles we’ve discussed and dived deep into the topic of asset management. Asset...
by Tony Asher | Jul 13, 2020 | Blogs
Traction requires clarity. The overwhelming weight of attempting to improve the whole cybersecurity program often results in a lot of action and business without progress. One of the greatest ways to get traction on security program improvement is by aligning with an...
by Tony Asher | Jul 10, 2020 | Blogs
When attempting to align your cybersecurity program with the NIST CSF framework it’s easy to get hung up and frustrated trying to figure out what the definitions mean, and how they apply to your cybersecurity program. When you read the NIST CSF categories and...
by Tony Asher | Jul 7, 2020 | Blogs
Asset management is a pain. It’s like the gatekeeper to all the great cybersecurity controls. It’s like the cold vegetables on your plate you know you should eat before diving into that hot juicy piece of Midwest steak… And most of the time, as security professionals,...
by Tony Asher | May 8, 2020 | Blogs
The cybersecurity threat to SMBs is real. Matter of fact, beside this pandemic, I believe cyber-attacks are the largest threat that SMBs face. Misplaced Hope From my experience consulting in the Minnesota SMB space I observed business leaders make the incorrect...
by Tony Asher | Apr 24, 2020 | Blogs
The COVID-19 pandemic creates some unique opportunities for security professionals to mature their security controls. As pragmatic professionals we can categorize security into; Things we know that we know Things we know that we don’t know And things we...
Recent Comments