Sistema de blogs Diarium
Universidad de Salamanca
Pablo Gallardo's Blog
My professional web log about IT, Cybersecurity & Project Management
 
Tag Archives | cyber

Information Security Ratings for Organizations

An information security rating is an objective, data-driven, quantifiable measurement of an organization’s overall information security performance. It is often referred as cybersecurity rating. This post summarizes information security rating agencies that can assess organizations. List of Information Security Ratings for Organizations List: Black Kite BitSight CYRATING iTrust Panorays RiskRecon SecurityScorecard LEET Security Black Kite https://blackkite.com/technical-grade/ USA […]

Comments { 0 }

USA Government Cybersecurity Organizations

This post summarizes organizations related to the Government of the United States of America (USA) that are related to information security or cybersecurity. List of USA Government Cybersecurity Organizations Non-exhaustive list of USA Government organizations related to cybersecurity: NIST CSRC CISA NSA/CSS NIST CSRC NIST (National Institute of Standards and Technology). NIST CSRC (Computer Security […]

Comments { 0 }

European Union Cybersecurity Organizations

This post summarizes organizations within or close to European Union (EU) that are related to information security or cybersecurity. List of European Union Cybersecurity Public Organizations Non-exhaustive list of European Union Cybersecurity Public Organizations: European Commission ENISA ECCC European Commission The European Commission is the European Union politically independent executive arm. It designed a EU […]

Comments { 0 }

Cyber Security Incident Response

A Computer Emergency Response Team (CERT) is a group of experts that handles computer security incidents. The term CSIRT, as an acronym for Computer Security Incident Response Team or Cyber Security Incident Response Team is also used. As computer threads started to appeared after the development of the internet on the late 80s, there was […]

Comments { 0 }

Cloud Security for Microsoft 365

This post adds some comments on cloud security for Microsoft 365. Cloud Security for Microsoft 365 Products related to Microsoft 365 security: Microsoft 365 Defender Microsoft Secure Score Microsoft Secure Score Microsoft Secure Score is a Microsoft product that measures the organization’s security posture regarding specific Microsoft 365 products and displays the results on a […]

Comments { 0 }

ISO/IEC 27000-series

The ISO/IEC 27000-series is a set of standards related to information security and publish by ISO and IEC. It provides recommendations on information security, in the context of a Information Security Management System (ISMS). Standards included on ISO/IEC 27000-series As of 2022, there are 63 different standards belonging to ISO/IEC 27000-series. All of them start […]

Comments { 0 }

Cybersecurity Conventions in Spain

This post lists some cybersecurity conventions or events that are celebrated in Spain. List of Cybersecurity Conventions in Spain Cybersecurity Conventions in Spain, in order of recurrency: RootedCON Sh3llCON JNIC C1b3rWall Securmática ENISE Navaja negra STIC CCN-CERT Conferences RootedCON https://www.rootedcon.com/ Madrid, Spain. Yearly in March. It is probably the biggest cybersecurity event in Spain.   […]

Comments { 0 }

List of Application Security Testing (AST) Solutions

Application Security Testing (AST) is the process of checking an application in order to identify potencial vulnerabilities and set points for security improvements. Types of AST: Static AST (SAST) Dynamic AST (DAST) Interactive AST (IAST)   List of Application Security Testing (AST) Solutions AST Solutions: SonarQube CheckPoint SonarQube https://www.sonarqube.org/ OpenSource platform Checkmarx SAST https://checkmarx.com/product/cxsast-source-code-scanning/ Developed […]

Comments { 0 }

IT Security Frameworks for Organizations

This post lists some of the most popular IT frameworks that can be used by an organization to implement their security. List of cybersecurity frameworks: NIST Cybersecurity Framework (CSF) ISO/IEC 27001 CIS Critical Security Controls (CSC)   List of Cybersecurity Frameworks NIST Cybersecurity Framework (CSF) Issued by NIST (National Institution of Standards and Technology) of […]

Comments { 0 }

Digital Certificates

Digital certificates, also known as public key certificates or identity certificate, . When I explain what a digital certificate to someone without a strong IT background I like to compare it with a seal ring, like the ones used in medieval times of Western countries. These seal rings had two functions: Identify the holder. Because […]

Comments { 0 }
Política de privacidad
Studii Salmantini. Campus de excelencia internacional