Contact Us Follow Us :      | Find Us |
CBIZ Tofias

Subscribe to Our Blog

Client Satisfaction Survey Results


Follow Us

How Cybersecurity Staffing May be Impacted During COVID-19 Recovery
Posted by Ray Gandy on Wed, Oct 7, 2020 @ 12:51 PM

Operating budgets will be monitored with scrutiny for the near future as COVID-19 recovery remains uncertain. For many organizations, this may mean that traditional hiring practices will likely be greatly limited, and one of the functional areas that may be affected by hiring limitations is information security.

Read More

Topics: cybersecurity, cyber attacks, Ray Gandy, cyber security, IT Risk, COVID19, Coronavirus, cybercriminals, remote work, cyber threat, staffing

Improving Cyber Safety in Remote Work Scenarios
Posted by Ray Gandy on Mon, Apr 6, 2020 @ 03:27 PM

For any company, shifting employees to a fully or partially remote working environment is a challenge.  Amidst all the turmoil, ensuring the safety and security of employees, business operations, and data is a top priority. Here are some suggestions on how to keep information and employees safe and secure while working remotely.

Read More

Topics: cybersecurity, cyber attacks, Ray Gandy, cyber security, COVID19, Coronavirus, cybercriminals

How to Have a Transition-Ready Strategy for Information Security
Posted by Ray Gandy on Tue, Oct 29, 2019 @ 06:05 PM

The frequency of cyberattacks and information security incidents in today’s market makes information technology controls vital. Many organizations may already have an information security framework that they use or a firm grasp on their activities that carry the highest cyber risk. But even if your cybersecurity “house” is in order, you may be unwittingly opening up your organization to cyber risks through your complex transactions.

Read More

Topics: cybersecurity, cyber attacks, Ray Gandy, cyber security, IT Security, information security risks, data privacy, information security

4 Ways to Improve Your Cybersecurity Strategy
Posted by Ray Gandy on Thu, Jun 13, 2019 @ 05:17 PM

Cybersecurity, data security, and data privacy continue to be hot topics for all market segments. Information security incidents put a lot at stake and can cause financial harm, brand and reputational damage, increased regulatory scrutiny and personal liability for business leaders, and of course, repercussions for customers, clients and others in the value chain.

Read More

Topics: cybersecurity, cyber attacks, Ray Gandy, cyber security

The Challenging New Age of System and Organization Controls (SOC) Examinations for Software Companies
Posted by Ray Gandy on Fri, Mar 22, 2019 @ 10:09 AM

Cloud updates and other technology advances have put new pressure on most technology companies—especially Software as a Service (SaaS) companies—to streamline roll-outs of updates and new product offerings. To meet customer needs, and to get features and products released to market faster, SaaS companies are turning to Agile frameworks to implement an iterative software development process and better streamline their updates and development. An Agile framework allows for more real-time testing, development and a faster delivery of product. However, from the perspective of an auditor performing a System and Organization Controls (SOC) examination, the process of gleaning details to determine control design suitability and operating effectiveness within an Agile environment could be a bit more challenging to the typical SOC approach if there’s a lack of documentation.

Read More

Topics: Cloud, SOC Reports, Ray Gandy, SaaS, Cloud-Based Software, Service as a Software, Agile, System and Organization Controls, SOC Examinations

Welcome to the New Age of Cyber Regulations
Posted by Ray Gandy on Tue, Mar 19, 2019 @ 12:53 PM

The European General Data Protection Regulation (GDPR) might be ushering in a new age of cyber regulations. In establishing parameters for how customer’s sensitive information should be protected and communication standards for communicating a breach, the GDPR has raised the level of awareness of cyber laws and protecting personal information. 

It has also sparked similar laws at the state level in the U.S. New York and California have both written into law cybersecurity measures that may be used as a template for other states or even broader initiatives to regulate the protection of digital information. The following provides a closer look at what the GDPR, California, and New York’s laws entail and their potential for broader application.

Read More

Topics: Ray Gandy, Privacy Laws, GDPR, General Data Protection Regulation, EU GDPR

How to Make Sure You're in Compliance with the GDPR
Posted by Ray Gandy on Wed, Oct 24, 2018 @ 05:03 PM

One of the biggest stories in cybersecurity over the past year is the European Union’s new data protection measures. The General Data Protection Regulations (GDPR) took effect on May 25, 2018, and applies to any company that collects and/or processes data from individuals residing in the EU. GDPR comes with steep penalties for noncompliance, including fines of up to 4 percent of global revenue, or sanctions preventing companies from continuing associated operations. Following the guidelines in the GDPR has understandably been a top concern for many organizations.

Read More

Topics: Ray Gandy, Privacy Laws, GDPR, General Data Protection Regulation, EU GDPR

‘Tis the Season for Cybersecurity Risks
Posted by Ray Gandy on Mon, Dec 11, 2017 @ 05:13 PM

With the hustle and bustle of the holiday season in full gear, consumers and retailers need to be especially careful. Holiday sales and discounted prices on goods mean more transactions. More transactions mean more opportunities for cyber criminals to access potentially sensitive information. Consumers and retailers that understand the types of holiday risks they may be facing and how stolen information is being used might be able to avoid getting wrapped up in a scam.

Read More

Topics: cybersecurity, cyber risks, cyber attacks, Ray Gandy, cyber security, data breach, IT Security, IT Risk, Holidays, Holiday cyber risks

Cybersecurity Check-In: 6 Questions Boards of Directors Should Ask About Cybersecurity
Posted by Ray Gandy on Fri, Sep 22, 2017 @ 08:21 AM

Protecting information technology systems is rapidly becoming a top concern for business owners, C suite executives and boards of directors. Whether a small, middle, or large company—the size of your organization doesn’t affect your threat risk. One report of data breach incidents found that 61 percent of data breach victims in 2016 were businesses with fewer than 1,000 employees.

Read More

Topics: cybersecurity, cyber risks, cyber attacks, Ray Gandy, cyber security, data breach, IT Security, IT Risk

Popular Posts