MHA Consulting

FEBRUARY 23, 2023

Many companies spend millions of dollars implementing risk mitigation controls but are kept from getting their money’s worth by a disconnected, piecemeal approach. Successful risk mitigation requires that a central authority supervise controls following a coherent strategy. This is all to the good.

Mitigation 97

Mitigation Authorization Risk Management Risk Reduction 97

BMC

JANUARY 1, 2025

Indeed, on this author’s desk sits a copy of what is considered by many to be one of the most seminal works on the subject, Fundamental Algorithms by Donald Knuth. Here are just a few of this authors high-level, personal favorite anti pattern examples. Define limits, processes, and guardrails around acceptable risks.

All-Hazards 104

All-Hazards Hazard Application Evaluation 104

Reciprocity

SEPTEMBER 23, 2022

SOC 2 and ISO 27001 complement each other by giving you a strategy for securing your information landscape and for demonstrating the security of your environment. Designed by the International Standards Organization (ISO), ISO 27001 spells out industry standards for an information security management system (ISMS).

Audit 52

Audit Accreditation Acceptable Risk Security 52

Solutions Review

OCTOBER 13, 2021

OUR TAKE: Bobby Rogers leads this advanced course that demonstrates the necessary skills to prepare your organization to manage risk with the ISACA Risk IT Framework. Rogers is an information security engineer working as a contractor for Department of Defense agencies. First, you will see how to assess risk.

Risk Management 52

Risk Management Management Continuity Planning Accreditation 52

Reciprocity

OCTOBER 9, 2024

How to prepare for a NIST Audit: Checklist What is a security impact analysis? Moreover, organizations are under the microscope when it comes to stringent regulatory compliance requirements and validation related to personal data usage, operating systems, and IT system security. Should you implement the NIST Cybersecurity Framework?

Cybersecurity 40

Cybersecurity Audit Risk Management Vulnerability 40

Reciprocity

OCTOBER 9, 2024

How to prepare for a NIST Audit: Checklist What is a security impact analysis? Moreover, organizations are under the microscope when it comes to stringent regulatory compliance requirements and validation related to personal data usage, operating systems, and IT system security. Should you implement the NIST Cybersecurity Framework?

Cybersecurity 40

Cybersecurity Audit Risk Management Vulnerability 40

Reciprocity

OCTOBER 7, 2024

In other words, the risk that third-party due diligence exposes organizations to makes it so important, particularly in today’s highly competitive and intricate global marketplace. Why You Need a Security-First Due Diligence Process Starting with security enables you to protect your information and reputation better.

Cybersecurity 52

Cybersecurity Audit All-Hazards Risk Management 52