Compass IT Compliance Blog

The NIST Cybersecurity Framework - The Detect Function

file0002120440786.jpg

We are in our third part in a six-part series talking about the NIST Cybersecurity Framework and the core, or functions, of the framework. In the last 2 posts, we talked about the Identify and Protect functions of the framework and used the analogy of building a house. When you build …

Read Story

The NIST Cybersecurity Framework - The Protect Function

stockvault-cyber-security-concept-with-red-padlock-on-data-screen180401.jpg

For the second part of our series on the NIST Cybersecurity Framework, we are going to be discussing the Protect function. Last time we discussed the Identify function which talked about the need to really understand your critical infrastructure, your systems, and the risks associated …

Read Story

Another Day, Another Major Ransomware Outbreak...

hack-813290_1280.jpg

A little over a month ago, a strain of Ransomware called WannaCry made headlines due to the incredibly successful nature of the attack as it infected hundreds of thousands of users around the world. This ransomware was delivered through an unpatched vulnerability in the Microsoft Oper …

Read Story

Phishing Examples: Even the Security Folks Get Targeted... Again!

Phishing Email June 2017.png

If you have been reading the blog for a while, you know that I take phishing examples that I receive or my co-workers receive, post them to the blog, and point out the things that you need to be careful of. I do this primarily to educate folks about what the latest threats look like, …

Read Story

The NIST Cybersecurity Framework - The Identify Function

Identify Flowchart.png

Last week we provided a very high-level overview of the NIST Cybersecurity Framework, the core (5 functions) of the framework, and the categories within each function.

Read Story

What is the NIST Cybersecurity Framework?

security-265130_640.jpg

One of the most common questions that we get here at Compass is “What is an IT Security Framework?” This is a great question as folks sometimes confuse the various frameworks with different compliance requirements or regulations that they must adhere to based on their business. If you …

Read Story

Subscribe by email