Vendor security risk management is not easy. It’s often a monotonous combination of spreadsheets, questionnaires, following up with people, and uncertainty. It’s often frustratingly tedious, and it can actually cause otherwise strong information security programs to falter. The best relief is to take a three-step approach to vendor risk management. Simplify. Standardize. Defend. Simplify Managing...Read More

The memory of the largest data breach in the banking sector, in 2016 due to a malware injection is still afresh in our minds. In fact, a recent study revealed that credit and debit card frauds have witnessed a six-fold increase in the past three years. Fraudsters are becoming increasingly sophisticated and more efficient in...Read More

1.  FISASCORE is easy to understand. Information security is a complex discipline with many moving parts, but FISASCORE simplifies the communication about how your information security program is performing. You don’t need to be an information security expert with years of experience to understand what FISASCORE is telling you. One simple number represents your overall...Read More

  WHAT IS A FISASCORE? FISASCORE is a comprehensive, risk-based measurement of information security assigned to your company based on a proven and thorough assessment process. Once completed, FISASCORE will identify critical vulnerabilities, control gaps/deficiencies, and applicable threats to the security of your organization.  FISA is a proprietary assessment tool that encompasses the ISO. IEC....Read More