What is Cybersecurity Maturity Model Certification (CMMC)?
Équipe d'experts Wiz
Cybersecurity Maturity Model Certification (CMMC) is an evaluation designed for Defense Industrial Base (DIB) contractors.
Académie CloudSec
Bienvenue à l'académie CloudSec, votre guide pour naviguer dans l'océan des acronymes de sécurité cloud et le jargon de l'industrie. Simplifiez-vous la vie grâce à un contenu clair, concis et rédigé par des experts, qui couvre les principes fondamentaux et les bonnes pratiques.
DORA Compliance Checklist [Cloud edition]
Équipe d'experts Wiz
DORA is an EU regulation that’s centered around cybersecurity and operational resilience.
Zero Trust Security: Checklist to Implement, Tools to Use, and Key Challenges
Understanding how to implement zero trust architecture is crucial for protecting against the complexities of modern cyber threats.
Data Categorization: Types, strategies, and steps
Équipe d'experts Wiz
In this article, we'll explore the different types of data categorization, strategies for effective management, and how to avoid common pitfalls that can complicate cloud data governance.
What Is Cloud Governance? Best Practices for A Strong Framework
Équipe d'experts Wiz
Cloud governance entails the policies, processes, and controls an organization puts in place to ensure the effective and secure management of its cloud resources and services.
A Comprehensive Guide to Navigating FISMA Compliance
Équipe d'experts Wiz
FISMA compliance is the set of processes, controls, and protocols an organization must have in place to ensure its information assets satisfy the requirements of the Federal Information Security Management Act (FISMA).
ISO 27001 Controls: Fast Track Guide
Équipe d'experts Wiz
This article is your cheat sheet for understanding the ISO 27001 controls, implementing them to tackle security risks, and getting ISO 27001 certified—without any hassles.
NIST 800-171: A Fast Track Guide
Équipe d'experts Wiz
In this article, we’ll explore the ins and outs of NIST 800-171 compliance, including how it fits within the broader NIST standards and who needs to comply. We’ll also discuss some cloud security best practices to help you keep data safe.
HIPAA Cloud Compliance Essentials for Healthcare Providers
Équipe d'experts Wiz
Although the HIPAA doesn't make any specific reference to the cloud, it is a completely different IT environment from the on-premises data center—with different compliance challenges. Learn some of the key HIPAA considerations when you host your healthcare workloads in the cloud.
NIST Cloud Security Standards
Équipe d'experts Wiz
In this post, we'll explore NIST's cloud security standards and how they provide a framework of best practices that enhance the safety and reliability of cloud environments.
What is NIST 800-53? A Fast-Track Guide
Équipe d'experts Wiz
In this post, we’ll explore why NIST 800-53 is an essential part of modern data protection and important to your cloud environment—along with some best practices so you can roll it out smoothly in your organization.
NIST Compliance Checklist: 9 Essential Steps
Équipe d'experts Wiz
This checklist is a comprehensive guide to becoming NIST-compliant and reinforcing the most critical security pillars.
What is NIST Compliance?
Équipe d'experts Wiz
NIST compliance is adherence to security standards and guidelines developed by the National Institute of Standards and Technology (NIST).
Unpacking Data Security Policies
A data security policy is a document outlining an organization's guidelines, rules, and standards for managing and protecting sensitive data assets.
What is Data Risk Management?
Data risk management involves detecting, assessing, and remediating critical risks associated with data. We're talking about risks like exposure, misconfigurations, leakage, and a general lack of visibility.
8 Essential Cloud Governance Best Practices
Équipe d'experts Wiz
Cloud governance best practices are guidelines and strategies designed to effectively manage and optimize cloud resources, ensure security, and align cloud operations with business objectives. In this post, we'll the discuss the essential best practices that every organization should consider.
What is a Data Risk Assessment?
Équipe d'experts Wiz
A data risk assessment is a full evaluation of the risks that an organization’s data poses. The process involves identifying, classifying, and triaging threats, vulnerabilities, and risks associated with all your data.
Gouvernance de l’IA : principes, réglementations et conseils pratiques
Équipe d'experts Wiz
Dans ce guide, nous expliquerons pourquoi la gouvernance de l’IA est devenue si cruciale pour les organisations, nous mettrons en évidence les principes clés et les réglementations qui façonnent cet espace et nous vous proposerons des étapes concrètes pour créer votre propre cadre de gouvernance.
The EU AI Act
Équipe d'experts Wiz
Dans cet article, nous allons vous expliquer pourquoi l’UE a mis en place cette loi, ce qu’elle implique et ce que vous devez savoir en tant que développeur ou fournisseur d’IA, y compris les meilleures pratiques pour simplifier la conformité.
10 Cloud Security Standards Explained: ISO, NIST, CSA, and More
Équipe d'experts Wiz
Discover key cloud security standards to protect sensitive data and ensure compliance with frameworks like ISO, SOC 2, and NIST.
What is the Principle of Least Privilege (PoLP)? Use Cases, Benefits, and Implementation
Équipe d'experts Wiz
The principle of least privilege (PoLP) is a cybersecurity concept in which users, processes, and devices are granted the minimum access and permissions necessary to perform their tasks.
Data Security Compliance Explained
Data security compliance is a critical aspect of data governance that involves adhering to the security-centric rules and regulations set forth by supervisory and regulatory bodies, including federal agencies.
Qu’est-ce qu’un indice de référence CIS ?
Équipe d'experts Wiz
Les benchmarks CIS sont des feuilles de route de sécurité accessibles au public qui proposent des recommandations de base pour guider les organisations dans le renforcement de leurs systèmes informatiques contre les cybermenaces.
The Shared Responsibility Model
Équipe d'experts Wiz
Le modèle de responsabilité partagée est un cadre établissant les responsabilités en matière de sécurité du cloud entre les fournisseurs de services cloud (AWS, GCP, Azure) et les clients.
Qu'est-ce que le CSPM ?
La gestion de la posture de sécurité du cloud (CSPM) est la pratique consistant à surveiller, détecter et corriger en permanence les risques de sécurité et les violations de conformité dans les environnements cloud.