NIST CSF 2.0 and You!
Here are the 6 functions of the NIST CSF 2.0 framework for you and the main areas it covers. Each area are known as categories and controls within each are known as subcategories. The best way to start planning security strategy is to perform an assessment against a framework like NIST CSF 2.0. What kind…
AI Readiness Checklist
Here is a quick checklist based on Microsoft’s AI Security Risk Assessment methodology to help you quickly determine your AI readiness. Note: this is the first step before a full AI Risk Assessment which is needed to truly determine if you’re building a secure, responsible and trustworthy AI program.
Do you have a Strategic Cybersecurity Roadmap?
Building a strategic roadmap for cybersecurity is one key to success. The other major stumbling block is what framework for best practices should I follow? That question is answered in an earlier blog post. For the sake of this roadmap we’re focused on NIST CSF which is one of the easier frameworks to understand and…
Will your Cybersecurity Program succeed?
Here are some leading causes of why many companies have a failing cybersecurity program. Does your program fall into any of these categories?
AI Risk Management & NIST RMF in Action
AI indeed can accelerate a lot of business operations but at what cost? Integrating security into every aspect of AI is the best way to be responsible and in the long run give you a competitive edge.
What Best Practice Framework, Standard or Model (FSM) should you select?
With all of the best practice frameworks, standards and models (FSM) do you know which one best applies to your organization, workflow, your operational model and business goals? Below is a viewable and downloadable comparison chart of the most widely accepted and used FSMs. If you have questions, comments or thoughts don’t hesitate to post…
CYBERSECURITY APPLIED TO THE OSI MODEL
You maybe asking yourself about now, what is the OSI model? It is a model made up of 7 layers applicable to all network traffic. This model is applicable to all data that moves on a network or internet from applications, websites, cloud based applications and services. Below is me applying an “Old School” feel…
AI Terms Everyone Should Know
The AI terms below are for everyone regardless of if you’re developing solutions are using them on a daily basis. Each term can also be associated with a security control needed for protection. So even if you’re not sure of the security controls that relate to the term at least knowing the term will help…
Some things you should know about cybersecurity attacks?
Here are 8 of the most common attacks threat actors attempt on companies. Some are straight forward ones you here everyday where others are much more detailed and take a bit more knowledge in pulling them off. Then again, each and everyone is getting easier to perform with AI in the hands of attackers or…
12 AI Prompts
These are all great topics for not only cybersecurity teams but everyone using or implementing AI solutions. One that stands out to me is “Spotting AI Biases & Hallucinations”. I say this because without enough data or input to go off of the biasing aspects could get you in a lot of trouble like it…