FortifyData’s Alignment with NIST SP 800-40

FortifyData’s Alignment with NIST SP 800-40 While patching of systems has long been a common IT function, organizations vary greatly in their processes. NIST SP 800-40 is a “Guide to Enterprise Patch Management Planning” that helps to provide structure to the organizational process of patch management. Within the software vulnerability management lifecycle, found in section […]

Four Questions Your Board Will Ask You About Cyber Risk

Four Questions Your Board Will Ask You About Cyber Risk Board members today are increasingly concerned with cybersecurity risks. Recent Gartner research found “Eighty-eight percent of Boards of Directors (BoDs) view cybersecurity as a business risk, as opposed to a technology risk, according to a new survey* from Gartner, Inc.” It’s not surprising given the […]

PCI Compliance In 3 Easy Steps

Many mid-sized businesses struggle with achieving and maintaining PCI compliance. Some lack the necessary resources—technology or security staff—while others struggle with the complex processes and technology involved. As someone responsible for IT and Security, you have little choice but to incorporate PCI data security standards into your ever-growing list of responsibilities. Don’t count on sympathy […]

GDPR & Cyber Security – What you really need to know

For companies without a dedicated security or compliance department, GDPR can be a nightmare. With fines up to 4% of annual revenue, non-compliance can come at a serious cost. So, what do you really need to know about GDPR compliance? Here are some of the essential elements that will make compliance—and your life—a little easier: […]