Skip to content

Resources

Curated content for the risk and compliance professional: We cover the latest on cybersecurity, frameworks, risks, and compliance trends.

Show filters
All
Answers
Framework comparisons
Events
Glossary
Guides
Effectively leverage artificial intelligence in your GRC initiatives​
On-demand Webinar

Effectively leverage artificial intelligence in yo...

Discover the power of AI in GRC with Dr. Heather Buker. Access our on-demand webinar for insights on effectively leveraging Artificial Intelligence to...

On-Demand Webinar

Delivering Hub & Spoke GRC in Distr...

On-demand Webinar

Delivering Hub & Spoke GRC in Distributed & Autonomous Business

Internationally renowned GRC analyst Michael Rasmussen has performed a deep dive on our Hub and Spoke architecture and i...
date-icon

Jan 1, 2023

location

Virtual

Register Now
Using Zero Trust Architecture to Ba...

On-demand Webinar

Using Zero Trust Architecture to Balance Cyber Security Risks

While the concept of "Zero Trust" is not new among enterprises, however, the modern workplace has changed radically in r...
date-icon

Jan 3, 2023

location

Virtual

Register Now
How Can a vCISO Help Protect Your N...

On-demand Webinar

How Can a vCISO Help Protect Your Network?

With the threat landscape growing by the hour, the role of CISO has never been more important. Yet high demand and massi...
date-icon

Jan 5, 2023

location

Virtual

Register Now
See all webinars

Latest Answers

ASD Essential 8

Who has to comply with ASD Essential 8?

What is ASD Essential 8? The Australian Signals Di...

NIST Cybersecurity Framework (CSF)

Is NIST a standard or framework?

What is NIST? NIST, which stands for the National ...

ASD Essential 8

What is the ASD Essential Eight model?

What is the ASD essential eight model? The ASD Ess...

{tableName=comparison, name=ISO 27001 vs ASD Essential 8, description= ISO 27001 and ASD Essential 8 are two popular frameworks for protecting information and systems. Learn about the key differences and how to use them together., topic=[{id=97620570500, createdAt=1673040885276, updatedAt=1684824913644, path='iso-27001', name=' ISO 27001 Guide: A Comprehensive Guide', 1='{type=string, value=ISO 27001}', 2='{type=string, value=This guide provides a comprehensive overview of the ISO 27001 standard, including the requirements, implementation, and certification. Learn how to ensure your organization's information security is up to date and compliant.}', 3='{type=string, value=Write the overview for an authoritative guide based on: ISO 27001 Guide}', 5='{type=string, value=

This guide provides an authoritative and detailed overview of the ISO/IEC 27001 standard, which defines the requirements for an Information Security Management Systems (ISMS) associated with information security, cybersecurity and privacy protection.

Learn about the purpose and scope of the standard, the key requirements for an ISMS, how to implement and maintain an ISMS, how to establish an effective security risk management program, how to develop and implement security policies, how to implement controls to protect information and services and how to audit and review systems to ensure they meet the requirements of the standard.

This guide is an essential resource for anyone looking to understand and implement ISO 27001.

}', 7='{type=string, value=Write a web page title with no special characters and a maximum of 60 characters based on: ISO 27001 Guide}', 8='{type=string, value=Write the overview for an authoritative guide based on: ISO 27001 Guide}', 9='{type=string, value=20}', 10='{type=string, value=40}', 11='{type=string, value=200}', 12='{type=number, value=0}', 15='{type=list, value=[{id=97620570500, name='null'}]}'}], hs_path=iso-27001-vs-asd-essential-8}--
{tableName=glossary, name=BS 10012, description= BS 10012 is a British Standard that provides a framework for organizations to manage and protect personal data. It outlines the requirements for a personal information management system (PIMS) which is designed to ensure the security, integrity and confidentiality of personal data. The standard covers the areas of data governance, data protection, data quality and data security. It provides guidance on how to identify, collect, store, process, use, protect and dispose of personal data. It also outlines the roles and responsibilities of those involved in the management of personal data and provides recommendations for the implementation of a PIMS. BS 10012 is intended to help organizations comply with data protection legislation and to ensure that personal data is handled responsibly and securely., topic=null, hs_path=bs-10012}--
{tableName=guides, name=Distributed GRC, description=This expert guide explores the challenges of managing risk and compliance in distributed organizations..., topic=null, hs_path=distributed-grc}--
{tableName=glossary, name=Buffer Overflow, description= Buffer overflow is a type of software vulnerability that occurs when a program attempts to write more data to a buffer than it can hold, resulting in some of the data being written to adjacent memory locations. This can cause the program to crash, or even allow malicious code to be executed on the system. Buffer overflows are a common source of security vulnerabilities, and can be exploited by malicious actors to gain access to sensitive information or to execute malicious code on the target system. Buffer overflow attacks can be prevented by implementing proper input validation, boundary checks, and other security measures., topic=[{id=97620570512, createdAt=1673040885353, updatedAt=1683947931775, path='vulnerability-management', name=' Vuln Mgmt Guide: Learn to Protect Your Business', 1='{type=string, value=Vulnerability Management}', 2='{type=string, value= Learn how to identify, assess, and manage security vulnerabilities in your organization with this comprehensive guide to Vulnerability Management. Get started now!}', 3='{type=string, value=Write the overview for an authoritative guide based on: Vulnerability Management Guide}', 5='{type=string, value=This Vulnerability Management Guide provides an authoritative overview of the processes, strategies, and best practices for effectively managing vulnerabilities in an organization's IT systems. It explains the importance of vulnerability management and outlines the steps needed to build an effective vulnerability management program. It also covers the various tools and techniques used to identify, assess, and remediate vulnerabilities, as well as the importance of monitoring and reporting on the program's progress. Finally, the guide provides guidance on how to select the appropriate security solutions for an organization's needs. By following the advice in this guide, organizations can ensure that their systems are secure and their data is protected.}', 7='{type=string, value=Write a web page title with no special characters and a maximum of 60 characters based on: Vulnerability Management Guide}', 8='{type=string, value=Write the overview for an authoritative guide based on: Vulnerability Management Guide}', 9='{type=string, value=20}', 10='{type=string, value=40}', 11='{type=string, value=200}', 12='{type=number, value=0}'}], hs_path=buffer-overflow}--
{tableName=glossary, name=Information Security Governance Benefits, description= Information security governance benefits refer to the advantages that organizations gain from implementing a comprehensive information security governance program. This program is designed to ensure that information security policies, procedures, and controls are in place to protect the confidentiality, integrity, and availability of an organization's information assets. The benefits of information security governance include improved risk management, better compliance with applicable laws and regulations, enhanced customer trust, improved operational efficiency, and improved employee morale. Additionally, an effective information security governance program can help an organization to identify and address potential security vulnerabilities, protect its information assets from unauthorized access, and reduce the costs associated with data breaches. Furthermore, an effective information security governance program can help to ensure that the organization is prepared to respond quickly and effectively to any security incidents that may occur., topic=null, hs_path=information-security-governance-benefits}--
{tableName=guides, name=NIST SP 800-171, description= This guide provides an overview of NIST SP 800-171, a cybersecurity standard for protecting Controlled Unclassified Information (CUI) in nonfederal systems and organizations. Learn about the security, topic=null, hs_path=nist-sp-800-171}--
ISO 27001
ISO 27001 vs ASD Essential 8

ISO 27001 and ASD Essential 8 are two popular frameworks for protecting information and systems. Lea...

BS 10012

BS 10012 is a British Standard that provides a framework for organizations to manage and protect per...

Distributed GRC

This expert guide explores the challenges of managing risk and compliance in distributed organizatio...

Vulnerability Management
Buffer Overflow

Buffer overflow is a type of software vulnerability that occurs when a program attempts to write mor...

Information Security Governance Benefits

Information security governance benefits refer to the advantages that organizations gain from implem...

NIST SP 800-171

This guide provides an overview of NIST SP 800-171, a cybersecurity standard for protecting Controll...

eBooks

GRC Buying Guide

eBook

GRC Buying Guide

In this eBook, we have covered the GRC buying basics including: knowing when to employ a new GRC capability, baseline ex...
Download
Artificial Intelligence and Robust ...

eBook

Artificial Intelligence and Robust Content

Written by 6clicks CISO, Andrew Robinson, this eBook covers the interconnection of Artificial Intelligence and Machine L...
Download
Everything You Need to Know About 6...

eBook

Everything You Need to Know About 6clicks

Learn more about 6clicks as an organization and GRC SaaS provider including a platform overview, our solutions, a deeper...
Download
See all eBooks