Application, Audit and Cybersecurity - Continuity Professionals Pulse

The chief information security officer (CISO) role explained

BMC

NOVEMBER 18, 2024

The position of a Chief Information Security Officer (CISO) can take a variety of job tasks and responsibilities depending on the size, hierarchy, industry vertical and compliance regulations applicable to the organization. Financial reporting and addressing cybersecurity as a business problem. What are the responsibilities of a CISO?

Security

Security Disaster Recovery Evaluation Cybersecurity

A Guide to Completing an Internal Audit for Compliance Management

Reciprocity

DECEMBER 20, 2022

Learn the best way to complete an internal audit for your compliance management program. The Basics of Internal Audits. Internal audits assess a company’s internal controls, including its governance, compliance, security, and accounting processes. What Is the Purpose of an Internal Audit?

Audit

Audit Management Evaluation Activation

Cybersecurity Tips: Collaborating for the Collective Defense

Security Industry Association

OCTOBER 27, 2021

In this article, learn about the importance of collaboration in defending against cybersecurity threats, the changing cybersecurity landscape, the need for greater transparency in building an effective business case, cyber-physical security convergence, how to foster collaboration for the collective defense and more.

Cybersecurity

Cybersecurity Audit Manufacturing Government

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

What is COBIT? COBIT Explained

BMC

DECEMBER 5, 2024

Its latest iteration, COBIT 2019 , has revamped parts of its framework while offering much-needed updates that accounts for ever-present cybersecurity threats and the incorporation of Agile and DevOps practices. ISACA stands for the Information Systems Audit and Control Association. What is ISACA? What are the benefits of COBIT?

Audit

Audit Government Technology Security

Compliance, Confidence, and Cyber Resilience: Unlocking the Power of Pure Storage and Superna

Pure Storage

APRIL 28, 2025

Traditional security strategies that focus solely on the perimeter or the application layer are no longer sufficient. Lightweight deployment: Unlike complex cybersecurity frameworks that require additional hardware or significant reconfiguration, Superna installs easily within existing Pure Storage environments.

Cyber Resilience

Cyber Resilience Resilience Audit Healthcare

IT Audit Checklist for Your IT Department

Reciprocity

SEPTEMBER 5, 2024

An audit of your IT systems can identify and fix those potential disruptions before they happen – and an IT audit checklist can ensure that your IT department has the necessary resources in place to keep your systems safe. What Is the Main Goal of an IT Audit Checklist? Review critical network security practices, too.

Audit

Audit Backup Healthcare Asset Management

Audit Checklist for SOC 2

Reciprocity

DECEMBER 21, 2022

If your company is a service organization and your customers trust you with their data, you may need to pass a SOC 2 (System and Organization Controls 2) audit. Compliance and certification are the goals of a SOC 2 audit. The SOC 2 compliance audit gives them that assurance. Develop a SOC 2 Audit Framework.

Audit

Audit Gap Analysis Security Cybersecurity

The Relationship Between Internal Controls and Internal Audits

Reciprocity

OCTOBER 7, 2024

Any modern organization looking to navigate today’s risk environment successfully needs both strong internal controls and ongoing internal audits. This guide aims to eliminate that confusion by explaining the meaning and importance of internal controls and internal audits. What Are Internal Audits?

Audit

Audit Corporate Governance Evaluation Activation

The Relationship Between Internal Controls and Internal Audits

Reciprocity

OCTOBER 7, 2024

Any modern organization looking to navigate today’s risk environment successfully needs both strong internal controls and ongoing internal audits. This guide aims to eliminate that confusion by explaining the meaning and importance of internal controls and internal audits. What Are Internal Audits?

Audit

Audit Corporate Governance Evaluation Activation

What Is Cyber Extortion? Tips for Securing Your Data

Pure Storage

DECEMBER 17, 2024

These are the most common weak points cyber extortionists use: Outdated software and systems: Unpatched operating systems, applications, or hardware often have known vulnerabilities that attackers exploit. If using vendors or contractors, evaluate their cybersecurity practices to ensure they dont introduce vulnerabilities.

Security

Security Vulnerability Cybersecurity Cyber Resilience

Data Protection Predictions from Experts for 2025

Solutions Review

DECEMBER 12, 2024

In an era defined by rapid innovation and heightened cybersecurity threats, staying ahead requires insights from those who build, implement, and innovate at the cutting edge of these technologies. Cyber Liability insurance will increasingly require a privacy audit. This will intensify scrutiny on compliance practices across the board.

Vulnerability

Vulnerability Cybersecurity Malware Audit

4 Questions IT Managers Can Ask to Strengthen Data Backup and Resiliency

Solutions Review

OCTOBER 20, 2023

The exponentially fast growth of generative AI applications, too, is cause for alarm, as tools like ChatGPT and Google Bard are making it easier to create and deploy ransomware attacks. As for why this should be a top priority, look no further than the news, which regularly reports on cybersecurity breaches and ransomware attacks.

Backup

Backup Resilience Audit Management

Mastering Effective Cybersecurity Research: Going From Data to Actionable Insights

FS-ISAC

SEPTEMBER 15, 2023

I listened to podcasts on the business impacts, read up on practical uses for InfoSec teams, investigated applications for cyber criminal groups, then spent some hands-on time with the different platforms and finally taught an internal class on the topic to confirm my understanding. For this, the most recent example is around generative AI.

Cybersecurity

Cybersecurity Internet Strategic Evaluation

4 Questions IT Managers Can Ask to Strengthen Data Backup and Resiliency

Solutions Review

OCTOBER 20, 2023

The exponentially fast growth of generative AI applications, too, is cause for alarm, as tools like ChatGPT and Google Bard are making it easier to create and deploy ransomware attacks. As for why this should be a top priority, look no further than the news, which regularly reports on cybersecurity breaches and ransomware attacks.

Backup

Backup Resilience Audit Management

The 7 Best Data Protection Officer Certifications Online for 2023

Solutions Review

APRIL 19, 2023

Data protection is a broad field encompassing backup and disaster recovery, data storage, business continuity, cybersecurity, endpoint management, data privacy, and data loss prevention. This 8-course Professional Certificate will give you the technical skills to become job-ready for a Cybersecurity Analyst role.

Cybersecurity

Cybersecurity Accreditation Disaster Recovery Evaluation

How Zerto Aids Your Compliance Needs Within Security Frameworks

Zerto

MARCH 5, 2025

The National Institute of Standards and Technology provides one of the most widely recognized cybersecurity frameworks. offers guidance to industry, government agencies, and other organizations to manage cybersecurity risks, promoting flexibility for organizations to tailor the framework to their needs. NISTs CSF 2.0

Cyber Resilience

Cyber Resilience Security Disaster Recovery Resilience

Customer Value Story: Prevention is Better Than Cure

LogisManager

SEPTEMBER 21, 2021

This digital transformation has triggered an influx of new, more formidable cybersecurity threats. It also left them susceptible to significant cybersecurity threats. In the short term, this left room for human error, missed deadlines and failed audits. Creates a time-stamped audit trail of when all access rights were reviewed.

Healthcare

Healthcare Audit Pandemic Risk Management

How to Navigate the Cybersecurity Minefield of Remote Work

LogisManager

MARCH 19, 2024

How to Navigate the Cybersecurity Minefield of Remote Work Last Updated: March 19, 2024 While the debate over the productivity of employees working from home continues to rage, another factor that requires special attention in a hybrid or fully remote company is workplace cybersecurity. What Cybersecurity Risks Do Remote Workers Face?

Cybersecurity

Cybersecurity Risk Management Mitigation Vulnerability

The impact of cybersecurity risks on financial services

everbridge

OCTOBER 1, 2024

Cybersecurity in financial services presents unique challenges in strengthening resilience against potential threats. The cost of cybersecurity risks According to IBM’s Cost of a Data Breach Report 2024 , the global average cost of a data breach reached USD 4.88

Financial Services

Financial Services Cybersecurity Cyber Resilience Resilience

Managing Cyberthreats to Combat Ransomware Part 3: Cybersecurity Frameworks

Zerto

OCTOBER 20, 2022

National Institute of Standards & Technology (NIST) develops cybersecurity standards, guidelines, best practices, and other resources to meet the needs of US industries, federal agencies, and the broader public. The NIST Cybersecurity Framework 1.1 Detect —Identifies cybersecurity events quickly. Audit log management.

Cybersecurity

Cybersecurity Management Internet Malware

The Best Governance, Risk, and Compliance Software to Consider

Solutions Review

SEPTEMBER 27, 2021

Description: Apptega is a cybersecurity and compliance management platform that makes it easy for users to access, build, manage, and report their cybersecurity and compliance programs. Description: AuditBoard is a cloud-based GRC offering that includes a suite of risk, audit, and compliance tools. Platform: Apptega.

Government

Government Audit Risk Management Hospitality

How to Navigate the Cybersecurity Minefield of Remote Work

LogisManager

MARCH 19, 2024

How to Navigate the Cybersecurity Minefield of Remote Work Last Updated: March 19, 2024 While the debate over the productivity of employees working from home continues to rage, another factor that requires special attention in a hybrid or fully remote company is workplace cybersecurity. What Cybersecurity Risks Do Remote Workers Face?

Cybersecurity

Cybersecurity Risk Management Mitigation Vulnerability

World Backup Day Quotes from Experts for 2025

Solutions Review

MARCH 31, 2025

Without proper oversight, sanctioned and unsanctioned SaaS applications can leave sensitive business information exposed. Companies are more likely to experience a cybersecurity incident if they cant see where their data resides. When backups of sanctioned SaaS applications do exist, overlooked SaaS data often goes unprotected.

Backup

Backup Resilience Cyber Resilience Vulnerability

The Most Overlooked Security Issues Facing the Financial Services

Solutions Review

SEPTEMBER 8, 2023

Cybersecurity and Infrastructure Security Agency (CISA) adds these 3 security issues to its list.” …to They are the greatest current oversight in cybersecurity. Two-thirds say securing backups and storage was addressed in recent external audits. What level of auditing do we expect? Heading For A Better Future… But How?

Financial Services

Financial Services Security Backup Audit

NexusTek Ranked on Channel Futures MSP 501 List of Best-in-Class Businesses

NexusTek

AUGUST 19, 2021

Managed services providers that qualify for the list must pass a rigorous review conducted by the research team and editors of Channel Futures that rank applicants using a unique methodology that weighs financial performance according to long-term health and viability, commitment to recurring revenue, and operational efficiency.

Outsourcing

Outsourcing Audit Continual Improvement Application

The CISOs Guide to Storage & Backup Cyber Resiliency

Solutions Review

SEPTEMBER 8, 2023

Unfortunately, the information being fed to CISOs about the state of cybersecurity risk is incomplete. These systems do a great job at inventorying and scanning networks, operating systems (OSes) and enterprise applications. Misconfigured backup and storage systems impacts cybersecurity in other ways.

Cyber Resilience

Cyber Resilience Backup Resilience Vulnerability

What is Zero Trust Architecture?

Pure Storage

MAY 2, 2024

Modern threats have proven that traditional approaches are no longer sufficient in cybersecurity. How a Zero Trust Architecture Is Implemented A zero trust architecture (ZTA) is not a catchall in cybersecurity, but it is a vast improvement on traditional network security techniques. Why Is Zero Trust Architecture So Important Today?

Architecture

Architecture Authentication Audit Activation

How Inflation Impacts Business Technology… and What to Do About It

NexusTek

DECEMBER 7, 2022

A careful self-audit is likely to reveal that your company is paying for cloud-based and/or desktop software licenses that are not being used by your employees. Also, with the proliferation of software solutions on the market, it is easy for SMBs to end up with multiple applications that have overlapping areas of functionality.

Technology

Technology Cloud Computing Outsourcing Cyber Resilience

Risk Assessment vs Risk Analysis

Reciprocity

APRIL 4, 2022

This includes potential threats to information systems, devices, applications, and networks. Security risk assessments are essential not just for cybersecurity but also for regulatory compliance. Audit risk. ZenRisk helps you pinpoint risks by probing your systems and finding cybersecurity and compliance gaps. Legal risk.

All-Hazards

All-Hazards Mitigation Risk Management Hazard

NIST CSF 2.0: What It Is, Why It Matters, and What It Means for Your Data

Pure Storage

AUGUST 12, 2024

is an updated version of the National Institute of Standards and Technology (NIST) Cybersecurity Framework originally released in 2014. emphasizes a more proactive and comprehensive approach to cybersecurity with enhanced guidelines and controls. NIST CSF 2.0:

Cybersecurity

Cybersecurity Audit Evaluation Authentication

Transforming the Incident Lifecycle With AI Agents by PagerDuty

PagerDuty

APRIL 23, 2025

At PagerDuty, we’ve witnessed firsthand how the right applications of AI can transform operations from a cost center to a strategic asset. Mobilization used to happen through pagers; across surfaces, from Slack to your mobile application. Regularly audit AI agent performance and impact against expected outcomes.

Strategic

Strategic Communications Alert Security

How to Implement Threat Modeling in Your DevSecOps Process

Pure Storage

AUGUST 3, 2023

This can be a serious threat to audit trails and other compliance controls. Assets that are vulnerable to repudiation include logs, audit trails, and digital signatures. Conduct regular security audits and vulnerability assessments. Regularly audit and review API endpoints for potential IDOR vulnerabilities.

Authentication

Authentication Vulnerability Authorization Audit

How CISOs Can Reduce Third-party Attack Vectors

Pure Storage

MAY 13, 2024

But they also know that these organizations likely have relationships with dozens or even hundreds of SaaS applications and other IT providers. Tame SaaS sprawl Every additional application is a potential attack vector. Perhaps certain applications lack the benefits to justify newly emergent risks.

Audit

Audit Banking Benchmark Application

Navigating New Data Privacy Laws: Key Considerations for Businesses in Today’s Interconnected World

LogisManager

JULY 11, 2023

Understand the Applicable Laws: Stay informed about the data privacy laws that are relevant to your business, such as the General Data Protection Regulation (GDPR) in the European Union, the California Consumer Privacy Act (CCPA), and other regional or industry-specific regulations.

Audit

Audit Risk Management Mitigation Management

33 Data Privacy Week Comments from Industry Experts in 2023

Solutions Review

JANUARY 25, 2023

The experts featured represent some of the top Cybersecurity solution providers with experience in these marketplaces, and each projection has been vetted for relevance and ability to add business value. New systems will be a collection of smaller applications working harmoniously for better risk management and future outlook.

Backup

Backup Government Application Security

4 Keys to Consider When Evaluating Cloud Data Protection Tools

Solutions Review

DECEMBER 20, 2022

Just like that, access to the SaaS applications that have become so ingrained in your daily business operations and that contain the institutional knowledge critical to run the business are now gone. Customer data, employee personnel records, email, financial data, intellectual property, and other confidential information suddenly go missing.

Evaluation

Evaluation Backup Disaster Recovery Malware

Choosing a Governance Risk and Compliance Tool: Constant Vigilance

Reciprocity

DECEMBER 27, 2022

This allows you to strengthen cybersecurity, reduce uncertainty, cut costs, and improve business decision-making. Effective governance enables senior management to oversee, control, and coordinate employees, resources, applications, infrastructures, and behaviors. Governance. What Are the Benefits of Using a GRC Tool?

Government

Government Audit Risk Management Disaster Recovery

45 World Backup Day Quotes from 32 Experts for 2023

Solutions Review

MARCH 31, 2023

Backups are an essential component of several functions in the NIST Cybersecurity Framework. Specifically, backups relate to the Recover function, which involves restoring any services that were compromised in a cybersecurity incident. The result is that large sections of corporate datasets are now created by SaaS applications.

Backup

Backup Disaster Recovery Application Outage

SOC 2 vs ISO 27001: Key Differences Between the Standards

Reciprocity

SEPTEMBER 23, 2022

The ISO 27001 statement of applicability focuses on preserving the confidentiality, integrity, and availability of information as part of the risk management process. An organization’s ISMS should encompass data, technology , cybersecurity, and employee behavior. How Does the Audit Process Compare for ISO 27001 vs. SOC 2?

Audit

Audit Accreditation Acceptable Risk Security

Storage and Data Protection News for the Month of February; Updates from Arcserve, Druva, HYCU & More

Solutions Review

FEBRUARY 24, 2023

This combined CloudCasa and Ondat offering provides customers with a unified solution to run their stateful applications on Kubernetes, without worrying about availability, performance, protection, or data management and recovery. They help track and monitor user activity across applications, systems, and networks. Arcserve UDP 9.0

Backup

Backup Disaster Recovery Application Marketing

5 Benefits of GRC for CISOs

Reciprocity

APRIL 4, 2022

The new CISO needs to be able to work with people across multiple business units, breaking down silos of activity to assure that decisions around cybersecurity benefit the enterprise as a whole, rather than just the IT department. The New CISO: GRC Expert. Stop non-compliance before it starts, among other features. Fewer Data Breaches.

Audit

Audit Cybersecurity Risk Management Alert

What is COBIT? COBIT Explained

BMC

DECEMBER 5, 2024

Its latest iteration, COBIT 2019 , has revamped parts of its framework while offering much-needed updates that accounts for ever-present cybersecurity threats and the incorporation of Agile and DevOps practices. ISACA stands for the Information Systems Audit and Control Association. What is ISACA? What are the benefits of COBIT?

Audit

Audit Government Technology Security

How to Implement Effective Compliance Testing

Reciprocity

OCTOBER 8, 2024

Continued testing through a monitoring program means you’ll find potential threats and weaknesses before a cybersecurity risk comes to fruition. This can take the form of an internal audit. Then test per the established testing methodology you’ve communicated to the audited business unit.

Audit

Audit Mitigation Communications Application

How to Implement Effective Compliance Testing

Reciprocity

OCTOBER 8, 2024

Continued testing through a monitoring program means you’ll find potential threats and weaknesses before a cybersecurity risk comes to fruition. This can take the form of an internal audit. Then test per the established testing methodology you’ve communicated to the audited business unit.

Audit

Audit Mitigation Communications Application

The chief information security officer (CISO) role explained

A Guide to Completing an Internal Audit for Compliance Management

Webinars

Trending Sources

Cybersecurity Tips: Collaborating for the Collective Defense

Webinars

What is COBIT? COBIT Explained

Compliance, Confidence, and Cyber Resilience: Unlocking the Power of Pure Storage and Superna

IT Audit Checklist for Your IT Department

Audit Checklist for SOC 2

The Relationship Between Internal Controls and Internal Audits

The Relationship Between Internal Controls and Internal Audits

What Is Cyber Extortion? Tips for Securing Your Data

Data Protection Predictions from Experts for 2025

4 Questions IT Managers Can Ask to Strengthen Data Backup and Resiliency

Mastering Effective Cybersecurity Research: Going From Data to Actionable Insights

4 Questions IT Managers Can Ask to Strengthen Data Backup and Resiliency

The 7 Best Data Protection Officer Certifications Online for 2023

How Zerto Aids Your Compliance Needs Within Security Frameworks

Customer Value Story: Prevention is Better Than Cure

How to Navigate the Cybersecurity Minefield of Remote Work

The impact of cybersecurity risks on financial services

Managing Cyberthreats to Combat Ransomware Part 3: Cybersecurity Frameworks

The Best Governance, Risk, and Compliance Software to Consider

How to Navigate the Cybersecurity Minefield of Remote Work

World Backup Day Quotes from Experts for 2025

The Most Overlooked Security Issues Facing the Financial Services

NexusTek Ranked on Channel Futures MSP 501 List of Best-in-Class Businesses

The CISOs Guide to Storage & Backup Cyber Resiliency

What is Zero Trust Architecture?

How Inflation Impacts Business Technology… and What to Do About It

Risk Assessment vs Risk Analysis

NIST CSF 2.0: What It Is, Why It Matters, and What It Means for Your Data

Transforming the Incident Lifecycle With AI Agents by PagerDuty

How to Implement Threat Modeling in Your DevSecOps Process

How CISOs Can Reduce Third-party Attack Vectors

Navigating New Data Privacy Laws: Key Considerations for Businesses in Today’s Interconnected World

33 Data Privacy Week Comments from Industry Experts in 2023

4 Keys to Consider When Evaluating Cloud Data Protection Tools

Choosing a Governance Risk and Compliance Tool: Constant Vigilance

45 World Backup Day Quotes from 32 Experts for 2023

SOC 2 vs ISO 27001: Key Differences Between the Standards

Storage and Data Protection News for the Month of February; Updates from Arcserve, Druva, HYCU & More

5 Benefits of GRC for CISOs

What is COBIT? COBIT Explained

How to Implement Effective Compliance Testing

How to Implement Effective Compliance Testing

Stay Connected