Comparing FedRAMP and StateRAMP

For Cloud Service Providers (CSP) hoping to win business with federal, state, and local government entities, their product(s) will likely…

Read More

NIST CSF 2.0 Draft Released

The widely used NIST Cybersecurity Framework (CSF) is getting its first major upgrade in nearly a decade. Following more than…

Read More

Cybersecurity Legislative Activity: Summer 2023

The Summer of 2023 has been a busy stretch regarding cybersecurity legislative activity. Here’s a recap of some of the…

Read More
FedRAMP Rev. 5 servers

FedRAMP Rev. 5 Released

The Federal Risk and Authorization Management Program (FedRAMP) helps government agencies protect federal information while utilizing the power of cloud…

Read More

An Early Look at CMMC 2.0

The Cybersecurity Maturity Model Certification (CMMC) is a standard developed by the Department of Defense (DoD) to protect information in…

Read More

Conducting a GLBA Risk Assessment

Under the latest version of the Gramm-Leach-Bliley Act (GBLA) Safeguards Rule, element two is the requirement to conduct a risk…

Read More
GLBA cybersecurity requirements

GLBA Cybersecurity Requirements: What Your Organization Needs to Do

On June 9, 2023, new Gramm-Leach-Bliley Act (GLBA) cybersecurity requirements that reflect updates to the Safeguards Rule component of the…

Read More

Protecting Your Data When it’s in the Hands of a Third-party

Auto-maker Nissan sent out a breach notification letter to approximately 18,000 people, notifying them that personal information had been leaked…

Read More

Ohio Supreme Court Rules Insurance Provider Not Required to Cover Cyber-attack Costs

The seven justices of the Ohio Supreme Court unanimously ruled that an insurance company was not required to cover the…

Read More

Implementing Phishing-resistant MFA

Phishing attacks continue to make news around the country. Businesses of all sizes have fallen prey, suffering damaged reputations and…

Read More

Finding a credible expert with the appropriate background, expertise, and credentials can be difficult. CompliancePoint is here to help.