The Virtual CISO TheVirtualCISO

Welcome to the Virtual CISO where we explain different compliance frameworks to enable your business processes.

On today's episode we talked about Third Party and Vendor Risk Management and why your organisation should approach it from a risk management perspective. 

Thank you for listening.

Welcome to the Virtual CISO where we explain different compliance framework to enable your business processes.

On today's episode, we talked about the General Data Protection Regulation (GDPR) which is the strongest global privacy law currently in effect. GDPR was  created by the European Union (EU) to regulate how organizations collect, handle, and protect personal data of EU residents. 

Thank you for listening.

Welcome to the Virtual CISO where we explain different compliance frameworks to enable your business processes.

On today's episode we talked about NIST 800 -53 as it relates to Federal Information Security Management Act of 2002 (FISMA) and Federal Risk and Authorization Management Program (FEDRAMP). 

The NIST 800-53 is a cybersecurity standard and a compliance framework developed by the National Institute of Standards and Technology (NIST). It is designed to provide a foundation of strategies, systems, and controls, that can holistically support any organization’s cybersecurity needs and priorities. It also improves communication among organizations and allows them to speak using a shared language.

NIST 800-53 controls implementation and compliance standard are mostly mandated for federal information systems, agencies, government contractors and departments that work or are willing to work with the government.

Please listen to learn more and thank you in advance for listening.

Welcome to the Virtual CISO where we explain different compliance framework to enable your business processes.

On today's episode we talked about the different levels of Payment Card Industry Data Security Standards (PCI DSS) which is the global security standard for all organizations that store, process, or transmit cardholder data and sensitive authentication data.

PCI DSS sets a baseline level of protection of cardholder data and helps reduce fraud and data breaches across the entire payment industry. It is applicable to any organization that accepts or processes payment cards.

We also shared some insights on what will be changing with the new PCI DSS version 4.0

Thank you for listening.

Welcome to the Virtual CISO where we explain different compliance framework to enable your business processes.

On today's episode we talked about how NIST Cybersecurity Framework help organizations better understand, manage, reduce their cybersecurity risk and protect their networks and data.

Thank you for listening.

Welcome to the Virtual CISO where we explain different compliance framework to enable your business processes.

On today's episode we talked about the Cybersecurity Maturity Model Certification (CMMC) Version 2.0. The Department of Defense (DoD) launched CMMC 2.0, a comprehensive framework to protect the defense industrial base from increasingly frequent and complex cyberattacks and to safeguard sensitive national security information.

Thank you for listening.