CMMC Says Goodbye to POAMs

By Chor-Ching Fan Under NIST SP 800-171, Department of Defense (DoD) contractors were considered compliant if they could demonstrate a plan for meeting security requirements at a future date. [...]

THE VIRTUAL COMPLIANCE OFFICER (vCO)

By Chor-Ching Fan Most of us have heard of on-demand virtual CISOs. A vCISO offers outsourced security expertise to businesses on a part-time basis. As demand for CISOs outstripped [...]

SIMPLE CONTINUOUS COMPLIANCE MONITORING

By Chor-Ching Fan You did it! It was hard work, but you reached your goal: certified compliance. But wait. Compliance is not a one and done thing. Did you [...]

WHAT’S GUIDED COMPLIANCE

By Chor-Ching Fan Guided Security & Compliance (GSC) is a term we came up with describe the driving approach that underpins Rizkly.  GSC allows small and medium-sized businesses (SMBs) [...]

THE RIGHT TOOL GETS YOU COMPLIANT, NOT FRUSTRATED

By David Trout Compliance projects involve designing, implementing, and documenting dozens or even hundreds of security controls. Whether you multiple that by a small team of ONE already-overworked person [...]

Title

Go to Top