Red Lion Blog

I

Cyber Security News and Insights

Stay in the loop on the latest cyber security news with the Red Lion Blog. Tune in for weekly updates on recent information security and compliance developments, best practices, and insights from some of the top minds in the information security industry.

Your Security Is ALWAYS in Scope, Part 2 – Joseph Kirkpatrick – #SCW80

Our client was using a hosted service to perform remote monitoring and management and resisted its inclusion in the audit scope. The vendor’s external scans revealed critical vulnerabilities. Prior to a highly-publicized breach, the vendor said no auditor had ever included their service in the scope of their audits. We will explore attitudes that keep critical security controls out of scope.

Read More »

Your Security Is ALWAYS in Scope, Part 1 – Joseph Kirkpatrick – #SCW80

Our client was using a hosted service to perform remote monitoring and management and resisted its inclusion in the audit scope. The vendor’s external scans revealed critical vulnerabilities. Prior to a highly-publicized breach, the vendor said no auditor had ever included their service in the scope of their audits. We will explore attitudes that keep critical security controls out of scope.

Read More »

HIP, HIP, HIPAA, Part 2 – Jordan Wiseman – #SCW79

We’ll start with a brief discussion of what HIPAA and is not (e.g., it’s doesn’t prevent your employer from ask you about your health). Then discuss recent developments like ongoing how ransomware attacks are targeting healthcare and, when successful, are reportable breaches; and the recent final rule on interoperability and information blocking that went into effect on April 5th.

Read More »

HIP, HIP, HIPAA, Part 1 – Jordan Wiseman – #SCW79

We’ll start with a brief discussion of what HIPAA and is not (e.g., it’s doesn’t prevent your employer from ask you about your health). Then discuss recent developments like ongoing how ransomware attacks are targeting healthcare and, when successful, are reportable breaches; and the recent final rule on interoperability and information blocking that went into effect on April 5th.

Read More »
Translate »

Don't get caught sleeping on the job

Stay up to date with the latest infosec developments. Join our email list today!