News about the recent Jones Day / Accellion vendor data breach highlights just how difficult third-party risk management (TPRM) is in practice.... continue reading
The latest trend toward Development, Security, and Operations (DevSecOps) is intended to ensure that security is embedded into every phase of the... continue reading
The evolution of security within the corporate environment has included investment in firewalls, intrusion detection systems, data leak... continue reading
The following Self-Assessment Questionnaire (SAQ) is meant to prepare you for the Google Partner Program security assessment. The Google Partner... continue reading
In working with clients to continuously test their attack surfaces, I often encounter high or critical risk vulnerabilities on a daily basis –... continue reading
CactusCon is the largest infosec conference in Arizona (home base for Bishop Fox) and one of the most notable hacker cons in the American... continue reading
Bishop Fox works closely with Google to design the Partner security program, so we know what’s needed for you to pass the testing requirements.... continue reading
Not long ago, an innovative startup company reached out to us with a very specific request – they needed to create a scalable, lightweight program... continue reading
One thing is for sure about 2020: it’s a year that will stick out in our memory for the rest of our lives. Luckily, in spite of many on-site,... continue reading
FireEye made the news last week for responsibly disclosing an incident to the public in which they themselves were the victim. We wrote up an ... continue reading