Blog

3 Key things to make your MSSP relationship a success

There is a lot of confusion around the term MSSP (Managed Services Security Provider). What are they? What do they do? What is their value? Can’t I just do that myself? The term MSSP had its genesis in the internet service providers (ISPs) in the 1990s the ISP...

HIPAA Myths Busted

Clients often struggle with the proper implementation of the HIPAA Security Rule (SR). The confusion stems from the fact that the HIPAA SR is a law, not a security framework like NIST 800-53 or CIS top 20. Let's dispel a few of the common myths: Myth 1: HIPAA doesn't...

Why are data breaches not slowing down?

Despite an projected $93 billion spend on cyber security, breaches are still on the rise. Cyberattacks for 2017 were roughly twice what we saw in 2016. So why is all this money being poured into securing networks seemingly ineffective?  One theory is that the spending...

NIST Cybersecurity Framework FAQs

Organizations that don't fall under a specific compliance based on their business sector, type(s) of data they maintain, or State can use the National Institute of Standards and Technology Cyber Security Framework or NIST CSF to build a comprehensive security program....

GDPR – Frequently Asked Questions

The General Data Protection Regulation has many organizations concerned, and with good reason.  Although the requirements don't take effect until May 2018, they may be challenging to address.  The first step is to gain a better understanding of them through our...

How to Maintain PCI Compliance

Companies struggle to maintain PCI compliance within a year of meeting it, according to a new payment security report by Verizon. The number of businesses achieving full compliance with their annual Payment Card Industry Data Security Standard (PCI DSS) review reached...

CASE STUDY – Limited staff and budget doesn’t have to compromise cybersecurity

These days you would be hard-pressed to find any organization who felt they had adequate staff and financial resources to stand up to the constant barrage of cyber threats.  The education sector has been especially hard hit due to their reliance on public funding. A...

Cloud Computing- Moving data to cloud does not transfer liability to protect it

It's a common misconception that by moving to the cloud or relying on a third-party cloud service provider to process and store data that the full responsibility to protect it falls in the vendor.  Not so! The data is still your data and your potential liability. It...

INTERESTED IN WHAT FORESITE CAN DO FOR YOU?

At Foresite, we like to consider each client’s needs individually, in order to determine the best approach to your unique requirements. So let’s talk! Contact Foresite to request a scoping call today.