This post summarizes hardening guides, security baselines, guidelines or standards for Windows 10. List of Windows 10 Hardening Guides This section summarizes some guides, guidelines, recommendations or baselines to harden Windows 10 endpoints: Microsoft Security Baselines Microsoft Baselines are included in…
This post summarizes some relevant IT risk analysis and management frameworks or methodologies. Please do not confuse them with risk analysis methodologies. List IT of Risk Management frameworks List of IT risk analysis frameworks: ISO/IEC 27005 The title of ISO/IEC…
iOS is an operating system for smartphones and tablets, developed by Apple exclusively for its products. This post discuss about some aspects of security on iOS. iOS Security Certifications for Professionals This section summarizes some certifications for professionals (i.e., people).…
Android is an OS for mobile and tablets developed by Google. This post comments different aspects of Android security, ranging from: Android Security Features Part of the security on Android devices depends on the device itself. Some Google devices like…
This post summarizes information security or cybersecurity control inventories. List of Information Security Control Catalogues Information Security Control Catalogues: ISO/IEC 27002 ISO/IEC 27002 is officially titled “Information security, cybersecurity and privacy protection — Information security controls”, but it can be…
This post summarizes organizations related to the Government of the United States of America (USA) that are related to information security or cybersecurity. List of USA Government Cybersecurity Organizations Non-exhaustive list of USA Government organizations related to cybersecurity: NIST CSRC…
This post lists some secure software development frameworks. You can read about IT security testing frameworks on this post. You can read about penetration testing methodologies on this post. Secure Development Frameworks List of Secure Development Frameworks: Secure Software Development…
This post summarizes some tools, courses, certifications and hardening guides related to Windows 10. As Windows 10 and 11 are very similar, this post applies to both operating systems. Windows 10 Security Tools There are different security tools and functionalities…
This post summarizes the roles involved in managing data in IT systems. These roles are based on USA’s NIST SP 800-18 Rev. 1 “Guide for Developing Security Plans for Federal Information Systems” or European Union’s General Data Protection Regulation (GDPR).…
This post features penetration testing methodologies. Take into account that penetration or IT security testing may be consider a subset of quality assurance. You can read about IT security testing frameworks on this post. You can read about secure software…