Rebecca Kappel

Centraleyes

The Rise of Compliance-Centric Platforms Vanta was developed to help organizations achieve SOC 2 compliance quickly. Compliance management platforms have gained significant traction in the market. For startups and smaller businesses, these certifications are often crucial for breaking into markets where enterprise clients expect certain compliance standards as baseline requirements ... Read More

If you’re familiar with platforms like Drata, you may appreciate their streamlined compliance processes and integrations. But if you’re ready for something beyond automation and integration (think powerful AI-driven risk management,  live visual dashboards, and extensive framework mappings), Centraleyes delivers in ways Drata just can’t match! Let’s take a closer ... Read More

The Content Delivery & Security Association (CDSA) has long been a cornerstone in the media and entertainment industries. It ensures that the highest content security and delivery standards are met. As the digital landscape continues to evolve, the role of the CDSA has become more critical than ever. It addresses ... Read More

Telecommunications, airlines, and utilities are now in the “highest cyber-risk” category, according to Moody’s latest cyber risk heat map. This ranking points to how rapidly digital transformation has expanded the attack surface for hackers in these critical sectors. While digitization has streamlined processes and bolstered connectivity, it has also created ... Read More

Organizations devote significant resources to their compliance risk assessments each year. Yet many compliance leads and senior executives feel stuck in a cycle of repetition and question whether these efforts yield meaningful benefits.  Do you find that your risk assessment process helps you tackle risk effectively? Does it offer a ... Read More

What is Zero Trust? Zero Trust is a security model that assumes threats can exist inside and outside the network.  Gone are the days of assuming internal systems are inherently secure—experience has proven that many breaches stem from within. To that end, Zero Trust requires rigorous verification for every access ... Read More

Fake copyright infringement notices are sweeping across inboxes globally, hitting hundreds of companies with a new and devious malware campaign. Since July, cyber researchers at Check Point have been tracking “CopyR(ight)hadamantys,” an attack designed to look like legal copyright warnings but packing a hidden threat—Rhadamanthys, a powerful data-stealing malware. How ... Read More

I recently watched a video that struck me as a perfect metaphor for today’s challenges and innovations in Governance, Risk, and Compliance (GRC). In the clip, a driver faced with crossing a canal doesn’t attempt to drive through the water, which would almost certainly fail. Instead, he balances the boom ... Read More

In today’s fast-paced business world, companies juggle numerous responsibilities—from meeting customer demands to navigating complex regulations. One crucial area that’s often misunderstood but incredibly important is enterprise compliance.  What exactly is enterprise compliance, and why should it matter to you? Let’s break it down in simple terms and explore why ... Read More

Fortinet has alerted customers to four new indicators of compromise (IoCs) related to a widely exploited zero-day vulnerability in its FortiManager network and security management tool. The critical vulnerability, CVE-2024-47575, was first disclosed last week and is being actively exploited in the wild, affecting a variety of organizations across multiple ... Read More