Information security

ZeroFOX Acquires Cyveillance, Strengthening Global Leadership in Digital Risk Protection

Retrieved on: 
Tuesday, October 6, 2020
Networks, Security, Data management, Technology, Software, Cyberwarfare, Cryptography, Information governance, Computer network security, Computer security, Data security, ZeroFOX, Information security, Threat, ZeroFOX, Cyveillance

ZeroFOX , the global leader in Digital Risk Protection, is proud to announce the acquisition of the Cyveillance business from LookingGlass Cyber Solutions, Inc.

Key Points: 
  • ZeroFOX , the global leader in Digital Risk Protection, is proud to announce the acquisition of the Cyveillance business from LookingGlass Cyber Solutions, Inc.
  • The combination of the ZeroFOX Artificial Intelligence-powered Digital Risk Protection Platform with Cyveillances comprehensive threat intelligence data lake and expansive human dark web intelligence capabilities positions ZeroFOX as the world leader in Digital Risk Protection, connecting automated protection and intelligence for organizations of all sizes.
  • Existing Cyveillance customers will continue to receive custom Digital Risk Protection services and have access to the power of the ZeroFOX Digital Risk Protection Platform and its industry-leading remediation services.
  • Cyveillance Digital Risk Protection Services - A customer-centric Digital Risk Protection managed service that augments the force of information security teams looking to identify, analyze, and disrupt threats to critical assets and data.

Unilog Achieves ISO 27001 Certification

Retrieved on: 
Friday, October 2, 2020
Computing, Security, Articles, Information, ISO/IEC 27001, Information security management, Information security, ISO/IEC 27001 Lead Implementer, ISO/IEC 27001 Lead Auditor

WAYNE, Pa., Oct. 02, 2020 (GLOBE NEWSWIRE) -- As part of its ongoing commitment to information security and customer data protection, Unilog announced today that it has achieved the globally recognized ISO 27001:2013 certification.

Key Points: 
  • WAYNE, Pa., Oct. 02, 2020 (GLOBE NEWSWIRE) -- As part of its ongoing commitment to information security and customer data protection, Unilog announced today that it has achieved the globally recognized ISO 27001:2013 certification.
  • ISO 27001 is awarded to businesses that establish, implement, maintain, and continually improve their information security management system (ISMS).
  • The ISO certification ensures that Unilog has strict processes in place for access control, back-up and data recovery, email security, mobile computing and teleworking, and password management.
  • This ISO 27001 certification is further validation by an independent third party that our information security management system follows industry best practices, said Bachalli.

PPD Achieves ISO/IEC 27001:2013 Certification for Information Security Management

Retrieved on: 
Wednesday, September 30, 2020
Science, Biotechnology, Research, Pharmaceutical, Health, Data management, Technology, Security, Computing, Computer security, Information governance, ISO/IEC 27001, Articles, Information technology management, Information security, eCOGRA, ISO/IEC 27002

PPD, Inc. (Nasdaq: PPD ), a leading global contract research organization, has achieved the internationally recognized information security certification ISO/IEC 27001:2013, demonstrating the companys commitment to ensuring the protection of its customers data.

Key Points: 
  • PPD, Inc. (Nasdaq: PPD ), a leading global contract research organization, has achieved the internationally recognized information security certification ISO/IEC 27001:2013, demonstrating the companys commitment to ensuring the protection of its customers data.
  • The certification is evidence that PPD has met rigorous international standards in ensuring the confidentiality, integrity and availability of customer data, supplier information and PPDs internal data related to its electronic clinical management suite environment.
  • Achieving ISO/IEC 27001:2013 certification demonstrates our ongoing commitment to protect our customers datathrough the successful completion of in-depth assessments and a stringent evaluation of our information security practices.
  • A-LIGN found PPD to have technical controls in place and formalized information technology (IT) security policies and procedures.

Valley Health System Chooses CynergisTek for 3-Yr Risk Management Program

Retrieved on: 
Wednesday, September 30, 2020
Technology, Security, Public relations, Investor relations, Consulting, Communications, Professional services, Software, General Health, Health, Data management, Articles, Computer security, Data security, Security, Clinical research, Pharmaceutical industry, Validation, Information security, Regulatory compliance, Valley Health System, CynergisTek, Inc.

Under the terms of the agreement, CynergisTek will maintain an active risk management program for the next 36 months by providing periodic and recurring comprehensive assessment, security validation, and advisory services.

Key Points: 
  • Under the terms of the agreement, CynergisTek will maintain an active risk management program for the next 36 months by providing periodic and recurring comprehensive assessment, security validation, and advisory services.
  • Partnering with CynergisTek gives us an extra set of eyes and oversight into our overall compliance and IT security program.
  • Through the services CynergisTek will provide and by combining our expertise we can show progress is being made to the overall effectiveness of Valley Health Systems security program, says Miroslav Belote, Chief Information Security Officer at Valley Health System.
  • Valley Health System is a regional healthcare system that serves residents in northern New Jersey and southern New York.

Fortinet Expands Network Security Expert Training Institute Offerings to Further Advance Security Skillsets

Computer security, Data security, Computing, Articles, Security, Cryptography, Information governance, Fortinet, Information security, National Institute of Standards and Technology, Security awareness, NIST Cybersecurity Framework

At the same time, IT professionals are constantly on the quest for continued learning opportunities to refresh their security skillsets.

Key Points: 
  • At the same time, IT professionals are constantly on the quest for continued learning opportunities to refresh their security skillsets.
  • The Information Security Awareness and Training service the latest initiative as part of the Network Security Expert (NSE) Training Institute is for any organization looking to implement or replace their information security awareness program and was designed to align to NIST guidelines for NIST 800-50 and NIST 800-16 .
  • Today, Fortinet is expanding its NSE Training Institutes free training offerings with the introduction of the Information Security Awareness and Training service.
  • Both a technology company and a learning organization, the Fortinet Network Security Expert (NSE) Training Institute has one of the largest and broadest cybersecurity training programs in the industry.

Dane Street HITRUST CSF Recertification Validates Commitment to Information Security

Retrieved on: 
Tuesday, September 29, 2020
Practice Management, Insurance, Managed care, Health, Data management, Professional services, Technology, Security, HITRUST, Articles, Data security, Health Insurance Portability and Accountability Act, Regulatory compliance, URAC, Information security, Privacy law, Dane Street, HITRUST

Dane Street, a URAC-accredited Independent Review Organization and leading provider of Peer Reviews and Independent Medical Examination services to the Group Health, Workers Compensation, Auto, and Disability markets, announced today HITRUST recertification of their operations and systems for information security.

Key Points: 
  • Dane Street, a URAC-accredited Independent Review Organization and leading provider of Peer Reviews and Independent Medical Examination services to the Group Health, Workers Compensation, Auto, and Disability markets, announced today HITRUST recertification of their operations and systems for information security.
  • HITRUST offers a benchmark to measure and manage compliance in meeting HIPAA security rule requirements.
  • Recertification demonstrates that Dane Street has implemented a security framework that meets key regulations and industry-defined requirements to manage risk, and places Dane Street in an elite group of organizations worldwide that have earned this certification.
  • We are pleased to once again demonstrate our commitment to privacy, security and compliance by achieving the industrys gold standard designation, the HITRUST CSF, said CEO Will Fulton.

With An Unwavering Commitment To Data Security, DailyPay Achieves The Highest Security Certification In The Industry

Retrieved on: 
Tuesday, September 29, 2020
Security, Articles, Computer security, Data security, Information technology management, Safety, Information, Crime prevention, Information security

A-LIGN, an independent, third-party auditor, found DailyPay to have technical controls in place and formalized IT Security policies and procedures.

Key Points: 
  • A-LIGN, an independent, third-party auditor, found DailyPay to have technical controls in place and formalized IT Security policies and procedures.
  • At DailyPay, information security and risk management are top priorities, which take into careful consideration how the company handles customer information.
  • "This certification demonstrates DailyPay's dedication to the security and privacy of our partners' information," said Jeff Hudesman, VP of information security at DailyPay.
  • Having a pre-eminent external security firm assess and certify our information security management system signifies to our partners and the entire industry our commitment to security."

Thycotic Expands Scope of ISO 27001 and SOC2 Type II Security Certifications

Retrieved on: 
Tuesday, September 29, 2020
Articles, Information technology management, Computer security, American National Standards Institute, Security management, Information security

The company's information security management system was inspected by Coalfire ISO , a certification body for management systems accredited through the ANSI-ASQ National Accreditation Board (ANAB).

Key Points: 
  • The company's information security management system was inspected by Coalfire ISO , a certification body for management systems accredited through the ANSI-ASQ National Accreditation Board (ANAB).
  • SOC 2 Type II is an in-depth examination of a company's internal control policies and practices over a set period of time.
  • "The ISO 27001 certification and SOC2 Type II attestation validates our commitment to the protection of our customers' information," said Terence Jackson, Chief Information Security and Privacy Officer at Thycotic.
  • Thycotic makes enterprise-level privilege management accessible for everyone by eliminating dependency on overly complex security tools and prioritizing productivity, flexibility and control.

Looking for Up-to-Date News on the DoD's Cybersecurity Audit Plans? Tune into the Latest Episode of "The Virtual CISO Podcast" from Pivot Point Security

Retrieved on: 
Monday, September 28, 2020
Articles, Cyberwarfare, Military–industrial complex, Cryptography, Information governance, Computer security, Data security, Defense Contract Management Agency, Cyber-security regulation, United States Department of Defense, Information security

To bring DoD suppliers up to speed on current and future cybersecurity assessment activities, the latest episode of The Virtual CISO Podcast from Pivot Point Security features John Ellis, Director for Software at the Defense Contract Management Agency (DCMA).

Key Points: 
  • To bring DoD suppliers up to speed on current and future cybersecurity assessment activities, the latest episode of The Virtual CISO Podcast from Pivot Point Security features John Ellis, Director for Software at the Defense Contract Management Agency (DCMA).
  • John is the person responsible for coordinating cybersecurity policy within the DIB for the contracts that DCMA manages on the DoD's behalf.
  • To check out this episode at any time, along with all the other shows in The Virtual CISO Podcast series, visit this page .
  • Since 2001, Pivot Point Security has been helping organizations understand and effectively manage their information security risk.

Need to Wrap Your Brain around DevOps or DevSecOps? Get Business-Centric Understanding on the Latest Episode of "The Virtual CISO Podcast" from Pivot Point Security

Retrieved on: 
Thursday, September 24, 2020
Cryptography, Information governance, Computing, Data security, Information technology, Information technology management, DevOps, Pivot, Computer security, Information security

With these kinds of questions coming up more and more in industry conversations, we invited Jonathan Bass to share some insights and answers on The Virtual CISO Podcast from Pivot Point Security.

Key Points: 
  • With these kinds of questions coming up more and more in industry conversations, we invited Jonathan Bass to share some insights and answers on The Virtual CISO Podcast from Pivot Point Security.
  • If you need a business-focused introduction to DevOps, this show offers just enough depth and detail to get you oriented and up-to-date.
  • Since 2001, Pivot Point Security has been helping organizations understand and effectively manage their information security risk.
  • We work as a logical extension of your team to simplify the complexities of security and compliance.