-
NIST for Small Businessess without Employees
No, that is not a typo. Have you read the NIST internal report for small businesses, without any employees? There are non-employer firms that have no paid employees other than…
-
Risk Intelligence & Threat Intelligence
Are you familiar with Risk Intelligence and Threat Intelligence? Do you think they are similar? I was asked the other day what the difference was between the two. So, I…
-
Cybersecurity Approaches and Regulations
We are all aware that cybersecurity is a pressing concern for businesses, regulators, and policymakers alike. However, what constitutes “reasonable” cybersecurity remains subject to interpretation. Understanding how regulators and lawmakers…
-
CIS Controls
It’s been over a month since I last posted on my blog. I was busy finishing up my Master’s Degree, and time just flew by! My goal is to write…
-
Differences Between Data Privacy, Data Security, and Data Protection
People often confuse the terms data privacy, data security, and data protection. While they all sound like they do the same thing, each concept has a distinct meaning and purpose.…
-
Cybersecurity Law: Computer Fraud and Abuse Act
I was reading a book on Cybersecurity Law, and I read about one of the federal statutes in the U.S. cybersecurity legal spectrum; the Computer Fraud and Abuse Act (CFAA).…
-
Strengthening Security with Network Segmentation
IT networks are getting more and more complex these days, and as cyber threats continue to evolve the concept of network segmentation comes into play. Segmentation is important for several…
-
Constitutional Protection for Data Privacy
We have become extremely dependent on digital technologies in our everyday life, which has led to questions surrounding individual privacy and data protection. In the United States, while there is…
-
NIST AI Risk Management Framework 1.0 Overview
This Framework was released in January 2023, and provides guidelines to manage risks associated with AI systems, and it emphasizes key principles such as validity, reliability, robustness, explainability, privacy, and…
-
Key Updates in NIST Cybersecurity Framework 2.0
The NIST Cybersecurity Framework (CSF) 2.0, released in February 2024 (exactly one year ago today), introduced several significant updates compared to CSF 1.1 (2018) to address evolving cybersecurity challenges and…
-
Subscribe
Subscribed
Already have a WordPress.com account? Log in now.
CyberCasta 