Posted inFeatured Information Security
C-I-A Score Calculator Tool
A demo tool to show how to practically use the CIA triad to rate an asset.
Posted inFeatured Information Security Resources
Security Risk Assessment Template (Qualitative)
If you do Security Risk assessments of a qualitative nature in your organization, you could use this template for detailed risk documentation. It has pages for describing the risk, evaluating…
Posted inInformation Security
What should be considered a “change”?
The legendary Ron Ross gives some guidance.
Posted inFeatured Information Security Resources
ISO 27001 Gap and Maturity Assessment Templates
Two useful resources for people working on ISO 27001 - a Gap Assessment and a Maturity Assessment template
Posted inInformation Security Resources
Websites to Track Security Breaches & Cyber Incidents
List of websites where you can find information about security breaches
Posted inInformation Security Statistics
Security Maturity Benchmarks
Benchmarks of other companies and industries are very useful to GRC professionals. It is a good indicator to see how leaders, competitors, and the industry overall are positioned in terms…
Posted inInformation Security Statistics
Vulnerability Remediation: how fast should you patch?
A collection of statistics I gathered from the Internet on vulnerability remediation timelines.
Posted inInformation Security Statistics
Industry Benchmarks
A collection of posts on cybersecurity industry benchmarks
Posted inInformation Security Statistics
Security Maturity of critical infrastructure operators in Germany, 2024
Germany's BSI reveals ISMS maturity levels for critical sectors in 2024
Posted inCompliance Information Security
SAP achieves NIST CSF Tier 3
The ERP giant makes a giant leap forward with security!