Bright Horizons CISO Attests to CyberStrong's Value in Company's Enterprise Compliance and Risk Programs

Bright Horizons Family Solutions® Inc. (NYSE: BFAM), a leading provider of high-quality child care, early education and other services designed to help employers and families better address the challenges of work and family life. The organization has hundreds of locations across the US and abroad, thus the issues of cybersecurity and risk management are taken very seriously across the organization. Javed Ikbal, the CISO and VP of Information Security, Risk Management and Compliance at Bright Horizons speaks on why he chose CyberStrong to add value to his compliance and risk programs.

Read More
Alison Furneaux
State of Ohio Passes Law That Would Provide Safe Harbor to Companies Standardizing on NIST Standards and More

Senate Bill 220, also known as the Data Protection Act, was recently introduced in the Ohio legislature. If passed, the Data Protection Act will create a safe harbor from certain liability as a result of a data breach where the organization has complied with NIST standards or certain other cybersecurity frameworks. CyberStrong is the only platform that allows you to adopt, measure, prove progress and ultimately prove real, evidence-based and measurable adoption of these standards in a way that future-proofs your compliance.

Read More
DFARS Cybersecurity 2.0: What We Learned From the DCMA About 800-171 Requirements This Year

In May of this year, members of the CyberSaint team attended the National Defense Industrial Association New England Chapter’s annual forum. This year, the topic was DFARS Cybersecurity 2.0: The Year of Continuous Monitoring with a spotlight on the GDPR. Here’s what we learned is the landscape of enforcement, audit, and compliance for the Defense Federal Acquisition Regulation this year.

Read More
Press Release: CyberSaint Security Raises $3 Million In Growth Financing

BOSTON, May 29, 2018 /PRNewswire/ -- CyberSaint Security, a cybersecurity software company providing a comprehensive solution to cyber-resilience, compliance and risk management through the CyberStrong Platform, today announced the closing of a $3 million growth round of financing. The proceeds will be used to expand its worldwide sales team and fuel continued platform innovation.  The round was co-led by Audeo Capital and founding investor, BlueIO.

Read More
Security Fragmentation in Governance, Risk, and Compliance

Part of running a proactive cybersecurity program is realizing that cyber isn't just a security problem - it's a business problem. Security efforts exist to better support and protect all business functions, sensitive data, and livelihoods of employees and customers. Without the effort and understanding of all business areas, a security team's efforts to standardize cybersecurity tends to be less effective and much less efficient than it would be otherwise.

Read More
"Hacking" GDPR Compliance With NIST Controls

The General Data Protection Regulation may certainly seem complex to implement for those who haven’t focused on data protection and privacy measures in the past. For organizations who are thinking of adopting the NIST Cybersecurity Framework (CSF) or who have already, it certainly seems wiser and more rational to use existing solutions provided by National Institute of Standards and Technology publications to your advantage.

Read More
Alison Furneaux
The Rise of the NIST Cybersecurity Framework

NIST's Cybersecurity Framework version 1.1 was released recently, and it showcased the Institute’s expanding role in businesses across all sectors, not just critical infrastructure. The NIST CSF is rigorous in setting strong technical guidelines for how a robust security team should operate. Learn more about the rise of the Cybersecurity Framework in this post.

Read More
GDPR Compliance for US Companies: Why You Should Care

The GDPR (or General Data Protection Regulation) is an effort from the European Commission and the EU to ensure that EU citizens’ personal data is handled in the appropriate manner by organizations who hold their data. If you’re a U.S. based organization, GDPR compliance may very well be necessary for you. Multinationals will have to care because they often have EU citizen data and some presence, you could be subject to a class action lawsuit if you lose that data. 

Read More