Compliance Testing
Learn about the most popular and common types of compliance testing, like FedRAMP, NIST, OWASP, government BODs and more.
What is the Digital Operational Resilience Act (DORA)?
What is DORA? Financial institutions and organisations are often a major target of malicious hackers looking to gain access to sensitive data. According to FS-ISAC, financial organisations saw a 64% increase in ransomware attacks in 2024. Given the large amount of sensitive information these organisations have to manage, it’s imperative that effective measures are taken […]
Embracing Zero Trust: A New Approach to Cybersecurity
TL;DR: What is Zero Trust? Zero trust, a term coined in 2010 and later adopted by tech giant Google, has revolutionized the way security teams approach cybersecurity. It marks a significant departure from traditional network-based trust, advocating instead for an identity-based trust model. This means that every user and device must be continuously authenticated and […]
What is Federal Risk and Authorizations Management Program (FedRAMP)?
TL;DR The Federal Risk and Authorization Management Program (FedRAMP) The Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program that ensures the security and protection of federal information when using cloud products and services. It provides a standardized approach to security assessment, authorization and continuous monitoring. FedRAMP empowers agencies to adopt secure cloud […]