This is the FIRST blog in our series that explains how to leverage Service and Change Management for Compliance by capturing all the information necessary to process change approvals and establish auditable records. In this article, we explain why Business Process Compliance is a key part of the foundation for building a successful organization. Our second article (posting on June 22, 2021) ... Continue reading Business Process Compliance
When we set out to write this article, our team discovered that we all had a different notion of the meaning of the word “compliance.” For some people, the first thing that came to mind was employees following—or in this case, bypassing—a company’s processes to achieve their own personal goals or desired results. Other people cited a long list of industry standards and rules that companies are ... Continue reading Service and Change Management for Compliance
Maintaining the life-saving safety equipment that your workers depend on is an important, challenging, and sometimes overlooked task. Your CISO is responsible for ensuring instruments like high-pressure condensate pumps and a safety valves are working properly, and your systems must be ready to alert workers to potential hazards at a moment’s notice. Without the right systems in place, it can be ... Continue reading CISO Toolbox: Change Windows, Blackout Periods, Trending Events, and More
The Cyber Resilience Review (CRR) is an interview-based assessment that evaluates an organization’s operational resilience and cybersecurity practices. This assessment is derived from the CERT Resilience Management Model (CERT-RMM), a process improvement model developed by Carnegie Mellon University’s Software Engineering Institute for managing operational resilience. The Cyber Resilience ... Continue reading Tech Spotlight: Securing Your Industrial Control Systems
Executive Summary – Cybersecurity and Change Management On June 27th, Department of Homeland Security (DHS) Cybersecurity Gap Assessments are due to the Transportation Security Administration (TSA). For impacted organizations that have not implemented proper change controls, this means a huge risk as failure to comply will result in daily fines, audit findings, and potential public relations ... Continue reading Business Insights: How CyberSecure is Your Pipeline?