This post summarizes organizations within or close to European Union (EU) that are related to information security or cybersecurity. List of European Union Cybersecurity Public Organizations Non-exhaustive list of European Union Cybersecurity Public Organizations: European Commission The European Commission is…
A data processing center (DPC) or data center is a building, a dedicated space within a building, or a group of buildings used to house computer systems and associated components, such as telecommunications and storage systems. Hyperconvergent Infrastructure (HCI) combines…
Incident response or incident managment Concepts related to Incident Response A Security Operations Center (SOC) is a team within an organization that monitors systems for security events and focus on incident response. They may use a SIEM tool. Monitoring is…
This post lists some secure software development frameworks. You can read about IT security testing frameworks on this post. You can read about penetration testing methodologies on this post. Secure Development Frameworks List of Secure Development Frameworks: Secure Software Development…
This post adds some comments on cloud security for Microsoft 365. Cloud Security for Microsoft 365 Products related to Microsoft 365 security: Microsoft 365 Defender Microsoft Secure Score Microsoft Secure Score Microsoft Secure Score is a Microsoft product that measures…
The ISO/IEC 27000-series is a set of standards related to information security and publish by ISO and IEC. It provides recommendations on information security, in the context of a Information Security Management System (ISMS). Standards included on ISO/IEC 27000-series As…
This post summarizes some tools, courses, certifications and hardening guides related to Windows 10. As Windows 10 and 11 are very similar, this post applies to both operating systems. Windows 10 Security Tools There are different security tools and functionalities…
Operational technologies, often referred with the acronym OT, is hardware and software that detects or causes a change, through the direct monitoring and/or control of industrial equipment, assets, processes and events. The industrial context is basic on this definition of OT.…
Compliance management solutions provide templates, assessment tools and other functionalities to help an organization to meet compliance with some of the most popular standards. This post lists some Compliance Management Solutions. List of IT Compliance Management Solutions Providers List of…
The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle branded credit cards from the major card schemes. It is promulgated by the Payment Card Industry Security Standars Council (PCI SCC). PCI…