
Felipe Ruiz
A brief overview of this recent EU draft regulation
Learn about the draft Cyber Resilience Act, including its purposes, obligations and penalties, before its final version comes.

Jason Chavarría
Increase the board's cyber savvy with these reads
Boards need to gain skills to identify, assess and supervise their organizations' cyber risk-management measures. We share resources to help them on their way.

Felipe Ruiz
Soon it will be a must in cybersecurity due to NIS2
We briefly introduce the NIS 2 Directive and pay special attention to its cybersecurity training requirement for organizations' boards of directors.

Jason Chavarría
Definition, implementation, importance and alternatives
Learn about vulnerability remediation, its place and importance in vulnerability management, and differentiate it from vulnerability mitigation and acceptance.

Felipe Ruiz
Keep tabs on this proposal from the Biden-Harris Admin
Learn about the cybersecurity strategy announced by the Biden-Harris Administration, specifically, the issues it aims to address and the pillars it is based on.

Felipe Ruiz
Disclosure rules proposed by SEC may soon take effect
We briefly present the amendments to cybersecurity-related disclosure rules proposed by the SEC, their potential benefits and costs, and some recommendations.

Jason Chavarría
Why measure cybersecurity risk with our CVSSF metric?
We present some of the flaws of the traditional measure of cybersecurity risk and introduce CVSSF, the risk-exposure-based metric with which we overcome them.

Felipe Ruiz
Take care of your apps from cybercriminals on the prowl
Here we talk about mobile apps and some of their possible security risks, as well as what MAST is and how it can contribute to app security.

Jason Chavarría
Advice for firms to comply with the HIPAA Security Rule
NIST published the second revision draft to its SP 800-66. Learn about the most significant changes that are being introduced.