This post summarizes some relevant IT risk analysis and management frameworks or methodologies. Please do not confuse them with risk analysis methodologies. List IT of Risk Management frameworks List of IT risk analysis frameworks: ISO/IEC 27005 The title of ISO/IEC…
This post features some security hardening guides or baselines for operating system Google Android. The parent post of this article is Android Security. List of Android Hardening Guides This is a non-exhaustive list of Android Hardening Guides This hardening guides…
This post features some courses related to security of operating system Android. This post was last updated on November 2022, so it may become outdated over the time. The parent post of this article is Android Security. List of Android…
In 2022, both ISO/IEC 27001 and 27002 were updated. This post provide some hints and references about how to make transition from ISO/IEC 27001:2013 with Cor 1/2014 and Cor/2015 to ISO/IEC 27001:2002. FAQs about transitioning to ISO/IEC 27001:2022 How many…
This post reviews some aspects regarding IT vulnerabilities. You can read a more general introduction to cybersecurity on this post. Vulnerability Standards There are some standards to manage and measure vulnerabilities. Security Content Automation Protocol (SCAP) Security Content Automation Protocol…
is safe to install admin os on vm? Question: -If USB is disabled, USB in VM is also disabled? -Are network devices visible from VM OS? -Is there any way to block communication from host OS to VM OS?…
This post lists some mobile phones that are focused on privacy by design and it is its primary goal. Because to ensure privacy you need to rely on the operating system running on the smartphone, smartphones focused on privacy will…
This post gives some hints about how to erase a storage device securely. That means that data that was stored in the past on that device cannot be retrieved by any mean. Deletion Methods As a general rule, experts say…
UNECE (United Nations Economic Commission for Europe) is one of the five regional commissions under the jurisdiction of the United Nations Economic and Social Council. United Nations (UN) Regulation No. 155, shorten as UNECE/R155, is an international regulation about cybersecurity…
This post lists some associations of organizations related to information security or cybersecurity that are located in Spain. List of Cybersecurity Associations of Spain for Organizations Cybersecurity associations of Spain for organizations featured in this post: CSIRT.es CSIRT.es is a…