Resources & Industry News

SLATE understands how challenging it is to keep up with industry news regarding the latest threats, attacks, emerging and potential threats. The following links are great resources for our staff and customers in helping to understand the current landscape in the Cybersecurity space. Each link has a specialized focus that contains great information. Check back frequently to see additional resources and to keep up with our latest blog posts!

If your organization works on a government contract, you must comply with the Defense Federal Acquisition Regulation Supplement (DFARS). When following the security controls within NIST’s SP 800-171, you must report your level of compliance to the government. This became a requirement at the end of the 2017 calendar year. It may seem overwhelming but […]

Read More

Our staff, as a whole, is our weakest link when it comes to the security posture of the organization. It is our staff that lets their guard down due to workload and it is our staff that configures and deploys our information systems across the enterprise. Most people think that our IT Department is the […]

Read More

Many executives receive a great deal of data from CSO’s but the majority of instance, they are based on compliance rules put forth in the organization. While it is important to know the completeness of these controls, those metrics can be difficult for the executive team to quantify or fully understand how they relate to […]

Read More

As Slate continues to grow as a trusted partner with our clients, it has become evident that most organizations are looking for the “check the box” approach. In most cases, it is not due to the organization trying to just get by with the minimum required actions, but rather their lack of knowledge with what […]

Read More

Verizon has just published their annual Data Breach Report. The report was written by compiling data from 41,686 security incidents and 2,013 data breaches. Verizon was able to isolate specific data points from the compiled data, giving organizations the ability to know where they should focus their attention. They found that even though most attacks […]

Read More

A few weeks ago, I had recommended to a client that they should purchase Insurance instead of implementing specific controls in their environment to mitigate a particular risk. The client was not aware that this was an option and thought that General Liability Insurance provided coverage. Once I explained that liability insurance is very limited […]

Read More

We are pleased to announce that Slate Enclave has been certified by MD Department of Commerce as a Qualified Maryland Cybersecurity Company (QMCC). Having this designation allows Maryland companies to work with us while developing a Cybersecurity Program for their company while having the opportunity to claim up to $50,000 in tax credits during the […]

Read More

We have recently seen an increase in customers asking if performing vulnerability scans is necessary in an era where patching can be automated at the host or by using patch management tools. The short answer is YES! Each environment is its own animal and the possibility of an organization being compromised rises at a high […]

Read More

An Authorized Application List, or Whitelisting Applications is a method to approve applications for enterprise use if the business need exists while controlling and validating the source of the applications. If the application is not on the authorized list, it cannot be installed on the end device. An exception can be submitted and reviewed for […]

Read More

As the demand grows for vCISO services, it is getting more difficult to find a candidate who has the appropriate level of experience needed to fill that gap. This issue of supply and demand is getting worse as the number of security incidents rise each year. These changes within the Information Security space is causing […]

Read More