NIST CSF Compliance Portal

Your company needs to continuously comply with the NIST CSF. This typical compliance process requires you to start by creating several documents to record your responses to hundreds of questions and organize mountains of evidence you’ve collected. If done manually, this is a tedious task.After spending weeks and probably months organizing evidence on the company… Read More

SEC Cyber Enforcement Action Cites Lack of Internal Controls

SEC cyber enforcement action charges Iowa broker-dealer with “deficient cybersecurity procedures” Des Moines-based Voya Financial Advisors (VFA) has agreed to pay the U.S. Securities and Exchange Commission a $1 million penalty in the wake of an April 2016 breach that affected several thousand VFA customers. The SEC cyber enforcement action charged VFA with not having… Read More

NIST 800-171 Compliance: A Guide for Government Contractors

NIST 800-171 Compliance Explained If your company is part of the federal supply chain, you likely need to comply with NIST 800-171. NIST 800-171 compliance applies to contractors for the DoD, GSA, NASA, and other federal and state agencies; universities and research institutions that accept federal grants; consulting firms with federal contracts; manufacturers who supply… Read More