This post summarizes some relevant IT risk analysis and management frameworks or methodologies. Please do not confuse them with risk analysis methodologies. List IT of Risk Management frameworks List of IT risk analysis frameworks: ISO/IEC 27005 The title of ISO/IEC…
This post features some security hardening guides or baselines for operating system Google Android. The parent post of this article is Android Security. List of Android Hardening Guides This is a non-exhaustive list of Android Hardening Guides This hardening guides…
This post features some courses related to security of operating system Android. This post was last updated on November 2022, so it may become outdated over the time. The parent post of this article is Android Security. List of Android…
In 2022, both ISO/IEC 27001 and 27002 were updated. This post provide some hints and references about how to make transition from ISO/IEC 27001:2013 with Cor 1/2014 and Cor/2015 to ISO/IEC 27001:2002. FAQs about transitioning to ISO/IEC 27001:2022 How many…
IT vulnerability assessment or vulnerability management is a branch of IT security. It is concerned with identifying, assessing, and addressing vulnerabilities in computer systems and software. This post reviews some aspects regarding IT vulnerabilities. You can read a more general…
This post lists some mobile phones that are focused on privacy by design and it is its primary goal. Because to ensure privacy you need to rely on the operating system running on the smartphone, smartphones focused on privacy will…
This post gives some hints about how to erase a storage device securely. That means that data that was stored in the past on that device cannot be retrieved by any mean. Deletion Types Erasing is the deletion of files…
UNECE (United Nations Economic Commission for Europe) is one of the five regional commissions under the jurisdiction of the United Nations Economic and Social Council. United Nations (UN) Regulation No. 155, shorten as UNECE/R155, is an international regulation about cybersecurity…
This post lists some associations of organizations related to information security or cybersecurity that are located in Spain. List of Cybersecurity Associations of Spain for Organizations Cybersecurity associations of Spain for organizations featured in this post: CSIRT.es CSIRT.es is a…
Society for Worldwide Interbank Financial Telecommunication (SWIFT) is a private company that provide services related to financial transactions. SWIFT has a Customer Security Programme (CSP) for its custumers. As part of the Customer Security Programme (CSP), every SWIFT user has…