The Delta Risk Cloud Security Team just released a new video, “Key Security Considerations for AWS.” If your business is using AWS or Azure cloud infrastructure for new application development, or even to migrate legacy applications, you’ll benefit from watching the video. With security and compliance as a top concern, you need to be able to mitigate… Read More
The Government Accountability Office (GAO) says in a new study, GAO-19-105: Federal Information Security, that most federal agencies are falling behind on implementing federal cyber security standards. The study said federal agencies need improvement and called on the agencies to do a better job protecting against intrusions. The GAO uses the NIST Cybersecurity Framework (CSF) to… Read More
Every year, technologists wait for the AWS re:Invent 2018 conference in Las Vegas like a four-year-old on Christmas Eve. At this event, Amazon Web Services announces most of their major product and feature releases, and this year was no exception. At Delta Risk, we pay close attention to these releases every year for ideas on ways we… Read More
The General Services Administration (GSA) announced changes to the Information Technology Schedule 70 (IT-70) Highly Adaptive Cybersecurity Services (HACS) Special Item Numbers (SINs) on November 14, consolidating its cyber security contract vehicles. The main change is the addition of a new sub-category covering the High Value Assets (HVAs) to be in line with Office of Management and Budget… Read More
The Marriott Starwood data breach has potentially exposed details of up to 500 million customers, which would place it well above the Experian breach of 2017 (143 million records) and the Anthem breach of 2015 (78.7 million records). Hackers are said to have copied and encrypted information after gaining access to data. That information included personal… Read More
Delta Risk CEO Scott Kaine was featured in a cloud security podcast last week as part of The Chertoff Group’s new “Insights & Intelligence” series. In the podcast, Kaine talks about how companies can safely move to the cloud, and key considerations for cloud security. The weekly podcast covers discussing cyber security, technology, security issues, and policy… Read More