Regulations, Frameworks, and Controls - February 4, 2022

Many companies struggle with all of the cybersecurity documentation, processes, and policies that can limit their business growth and REALLY stress them out. Omnistruct serves as an enterprise partner for the critical policies, processes, and documentation needed to make sure all of that data and revenue is well protected against cyber threats and that the company stays in compliance with all rules and regulations.

Summary of the NIST Password Recommendations for 2021

The National Institute of Standards and Technology (NIST) has created password guidance for federal agencies to ensure passwords achieve their intended purpose – preventing unauthorized account access. The NIST password recommendations were updated recently to include new password best practices and some of the long-standing best practices for password security have now been scrapped as, in practice, they were having a negative effect. By NetSec Editor on Nov 11, 2021 Read More

Pentagon Releases Updated CMMC Documentation

The Defense Department has been increasingly focused in recent years on protecting controlled unclassified information, or CUI, within its supply chain. Until recently, contractors were working to implement requirements set forth under CMMC Version 1.0 in anticipation of the rollout. By: Susan Cassidy, Ashden Fein and Robert Huffman | January 31, 2022 Read More

Is a Merger Between Information Security and Data Governance Imminent?

As with any merger, it is always difficult to predict an outcome until the final deal papers are signed, and press releases hit the wires. However, there are clear indications that a tie up between these two is essential, and we will all be the better for it. Data Governance has historically focused on the use of data in a business, legal and compliance context rather than how it should be protected, while the opposite is true for Information Security. By: George Tziahanas and Kevin Novak | February 2, 2022 Read More