Zofia Buzz

Jul
17
Jul
16
Stop wondering and just go for it.


Jul
15
So do what you got to do!


Jul
14
Sell a solution, not a product.


Jul
13
Jul
12
Only amateurs attack machines; professionals target people.

#Cognitive #hack refers to use of information system [social media, etc.] to launch a different kind of attack. Intent of cognitive attack relies on its effectiveness to “change human users’ perceptions and corresponding behaviors in order to be successful.” - “Only amateurs attack machines; professionals target people.” Leverage @ZofiaConsulting #RiskCultureAssessment to help. https://thegrcbluebook.com/grc-articles/cognitive-hack-trust-deception-and-blind-spots?v=7516fd43adaa https://www.zofiaconsulting.com/risk-culture-assessment


Jul
12
Jul
11
Defense Security Service To Verify that "4th Pillar" of Defense Contracts #CUI

There will be a push from DoD for a “4th pillar” of evaluation for contract awards - in addition to cost, performance and schedule – “Security” will become a strong factor of evaluation. The goal is to reward companies that have established and effective security and risk management programs. https://www.zofiaconsulting.com/blog/post/defense-security-service-to-tackle-dod-cui-program #CUI #ISMS #RMF #DFARS #CDI #7012


Jul
11
It's a way of life.


Jul
10
NY CREDIT REPORTING AGENCIES (CRA) MUST COMPLY WITH NEW #CYBER MANDATE

By November 1, covered CRAs must have a CHIEF INFORMATION SECURITY OFFICER (#CISO) & a written CYBERSECURITY PROGRAM designed to safeguard the confidentiality, integrity and availability of organization’s info systems. https://www.zofiaconsulting.com/blog/post/new-yorks-credit-reporting-agencies-cra-must-comply-with-new-cyber-mandate