IT Security and Compliance Articles

Read articles from industry experts New Net Technologies to find out about best practices in keeping your IT systems secure.

The National Institute of Standards and Technology (NIST) latest publication, NIST 800-171, focuses on protecting Controlled Unclassified Information (CUI) within nonfederal information systems and organizations.

New Year's is a time to look to the future and take stock of the past. In the PCI DSS space, it's also time to evaluate the state of what is now a pretty mature security standard.

In this article with Information Security Buzz, NNT CTO Mark Kedgley interviews Information Security expert, David Froud, and discusses the myths and maths of GDPR as the May 2018 deadline fastly approaches. 

In this article, NNT interviews Stuart Golding, a Programme Manager for PCI DSS, as they examine the current state of PCI DSS and what the future holds for one of the most widely-implement cyber security standards. 

Security Best Practice advocates the minimizing of your IT systems' 'Attack Surface'. By using CIS Benchmark secure configuration guidance we can harden systems against attack. Known vulnerabilities can be removed and defenses strengthened by applying an expert-derived configuration policy.

Have you heard of the CIS Control? Even though they're not part of any specified GRC (Governance, Risk Management, Compliance) mandate, they could actually be used as the foundation for them all. A light, straightforward hors d'oeuvre before you take on the mega-calorific, piled-high, full-fat platters of the multi-course feast that is a full Compliance standard.

According to a report from Aberdeen Group, the median dwell time for data breaches between 2014 and 2016 was around 38 days, leaving data breaches undetected for nearly five to six weeks.

Read NNT's CTO Mark Kedgley's latest article discussing the concept of alert fatigue and the need for forensic level, real-time integrity change monitoring, combined with blacklist/whitelist based analysis for breach detection, published with SCMagazine.

Threats to theft of Intellectual Property, financial data, Cardholder Data, PII (Personally Identifiable Information) are more diverse and increasingly difficult to defend against. The traditional ‘internet vandalism’ from viruses is still an issue but the ‘threatscape’ in 2017 is far more diverse and dangerous than ever before.

Has there ever been a more confusion-generating initiative than the PCI DSS? Even now, thirteen years on from its initial introduction, a clear and definitive understanding of what your organization needs to do may still be a challenge.

Contact Us

USA Offices

New Net Technologies LLC
4850 Tamiami Trail, Suite 301
Naples, Florida, 34103

New Net Technologies LLC
1175 Peachtree St NE
Atlanta, Georgia, 30361.

Tel: (844) 898-8358
[email protected]

 

UK Office

New Net Technologies Ltd
The Russell Building, West Common
Harpenden, Hertfordshire
AL5 2JQ

Tel: 020 3917 4995
 [email protected]

SC Magazine Cybersecurity 500 CSGEA Winners 2021 CIS benchmarking SEWP Sans Institute Now Certified IBM Security
Copyright 2021, New Net Technologies LLC. All rights reserved. 
NNT and Change Tracker are registered trademarks of New Net Technologies LLC.
All other product, company names and trademarks are the property of their respective owners.