Currently reading as of 12 January 2024:
The Mysterious Case of Rudolf Diesel
Genius, Power, and Deception on the Eve of World War I
by Douglas Brunt
Colonialism
A Moral Reckoning
by Nigel Biggar
Currently reading as of 12 January 2024:
The Mysterious Case of Rudolf Diesel
Genius, Power, and Deception on the Eve of World War I
by Douglas Brunt
Colonialism
A Moral Reckoning
by Nigel Biggar
As of October 1st, 2023, this blog is on hiatus. You can visit my homepage at joegaeta.com.
Thank you.
We at Sikich Cybersecurity Services are dedicated to assisting our clients in strengthening their cybersecurity posture through security consulting, fraud management, risk mitigation, and vulnerability detection and prevention. Allow me to take you through the highlights of what we do…
This is usually the first service that is recommended and provides a baseline of intelligence about your environment. The assessment reviews your network architecture, security controls, policies, and procedures to help identify key areas of risk and how these areas could potentially be targeted. It is often thought of as a security roadmap for future security initiatives. Our assessment incorporates risk areas beyond the scope of security testing related to procedure and policies within the organization. It helps to identify gaps between your practices and industry standard best practices and compliance requirements. A risk assessment can be an effective budgeting tool to achieve the most effective use of approved spending.
Speaking of compliance, there is a veritable “alphabet soup” of industry standards and government regulations that many companies must be in line with. (e.g., PCI DSS, HIPAA, GDPR, GLBA, FFIEC, DFARS, NIST, etc. etc. etc.) Our security and compliance team can help with any of these. These assessments are like financial audits, complete with on-site visits, work paper collection, and reporting. We take our clients through the process from start to finish. These are not pass/fail audits – we include remediation services.
External vulnerability scanning is an automated scan of the public-facing components of a network known for vulnerabilities. Think of this as like the anti-virus you run on laptop, except that it scans your IP addresses and web hosts. (An analogy: If your network was a house, a vulnerability scan is like going to every door and window around the house to make sure they are all locked.) Scans are typically performed monthly or quarterly and are typically done in a single day. Our scanning service includes a review of the findings to confirm the information and eliminate false positives. (For those of you who need to be PCI compliant, Sikich is an Approved Scanning Vendor (ASV), certified by the Payment Card Industry Security Standards Council.) Vulnerability scanning does not include exploit attempts or attack simulations on your network - it is not Penetration Testing and should never be portrayed that way.
OK, then what is Penetration Testing (“Pen Test”)? A Pen Test is a manual engagement that simulates a hacker or other threat attacking your network. Think “ethical hacking”. The human element is key: it tests the exploitability of potential vulnerabilities in your system. It identifies the risk areas that automated scans cannot identify. Typically, Pen Tests are performed semi-annually or annually and take an average of several weeks to complete. They can include a variety of attack simulations, including:
Back to that house analogy: If Vulnerability Scanning is like going up to each door and window of the house to make sure they are all locked, then Penetration Testing is like trying to break into the house and seeing how much of the inside you get move around in and potentially steal things.
So far, I’ve discussed analysis, preparedness, and prevention. Sikich Cybersecurity also provides valuable services after an incident occurs. Response time is critical. We provide a dedicated incident response team and can offer additional support resources when needed. Sikich is also one of only a dozen companies in the U.S. that is a PCI Forensic Investigator (PFI). We provide incident response retainers that provide access to robust and affordable Service Level Agreements that include industry best practices.
This service is perfect for SMBs and mid-market organizations if you have not focused on security in the past. Sikich will become a true security partner and can lead you and your team in improving your overall cybersecurity posture by
With Sikich, you can choose from a menu of services that can fit budgets as low as $10K / year.
Thank you.
Independent, unbiased, technically-qualified security assessments.
Sikich's Cybersecurity practice is dedicated to assisting our clients with cybersecurity consulting, fraud management, risk mitigation and vulnerability detection and prevention. We have the privilege of working with leading payment card, financial, restaurant, hospitality, health care, and educational organizations from around the world.
Our team has the extensive knowledge and experience to help you improve your unique security posture, specializing in compliance audits, penetration tests, computer security assessments and computer forensic investigations. We handle anything having to do with security or protecting data, including credit card data (PCI DSS), patient data (HIPAA), bank account numbers (GLBA), service provider reviews (SOC 1/2/3), or intellectual property.
We make compliance as painless as possible.
Achieving compliance with industry standards doesn’t have to be as difficult as it seems. Regardless of the standard, Sikich guides you through compliance validation processes quickly and smoothly to help get your organization in compliance and back to your core competency—running your business.
Our validation process is easy, and scalable for any size environment. If you need to comply with multiple industry requirements, you can leverage our experience and efficiencies by combining your requirements into a single assessment.
If you’ve never undergone a compliance assessment before, we can help you prepare for your first one. If you’re a veteran to your industry requirements, you’ll benefit from our unique approach. Compliance isn’t a once-a-year process; we’re your partner and here for you when you need us.
Let's talk! Schedule a meeting with me here.
OfficeRnD Hybrid - the powerful, secure and easy-to-use hybrid work solution provides seamless Microsoft Teams and Microsoft Outlook integration.
By working directly in your Microsoft tools, OfficeRnD Hybrid eliminates the laborious process of using yet another app. That’s why employees, HR managers and IT admins just love us!
Schedule meetings, book desks and plan your office visits directly from Microsoft Teams and Outlook.
The application is installed to all users with a single click and all can access it in their personal Teams and Outlook accounts.
Give OfficeRnD Hybrid a try at: https://www.officernd.com/hybrid-work/
Managing a successful hybrid work model is a balancing act. You need to satisfy both company and employee needs.
As a good leader, you must deeply care about employee engagement and productivity. For that, you have to find the right balance between face-to-face collaboration and having focused time alone at home. But, how does one achieve all that?
You need to develop workplace policies that encourage in-person collaboration and ensure a healthy split between working from home and working from the office.
The first step in making hybrid work a success requires tools that enable employees not only to adhere to those policies, but also see the value in them.
An Easy-Peasy Guide For The Complete Beginner
Hybrid Work For Dummies, the OfficeRnD Special Edition e-Book is now here!
OfficeRnD is very excited to launch the first all-in-one hybrid work guide that includes everything you need to know about the concept! (...and to be branded with the “for Dummies” series is even better!)In this FREE book, you’ll find actionable steps to make hybrid work...work. Here’s a glimpse:
It’s available for free here.
I am proud to say that our boy will be continuing his education next year at Oglethorpe University here in Atlanta. He has verbally committed to pitch for the Stormy Petrels baseball team beginning in the '23-'24 school year.
It is a podcast for business leaders, flex space operators, and CEOs looking for guidance on how to start and effectively run a hybrid or flexible workforce. Each episode will feature a conversation with an industry expert on the future of work, the return to office, the realities of hybrid work.
You can access it directly from here: https://flexworld-the-workplace-revolution.sounder.fm/ or on popular podcasting apps such as Spotify, Apple Podcasts, and Google Podcasts.
The great transition to hybrid work is in full swing.
Tech giants like Amazon, Meta, and Microsoft as well as many other big and small businesses are now embracing hybrid as their primary mode of work.
However, the transition hasn’t been easy.
Companies are struggling to answer many hybrid work questions, including:
The bad news is that there’s no one-size-fits all solution to hybrid work.
The good news is that we just released a new eBook that can help you set the foundation and optimize your hybrid workplace.Here are a few of the things you can find in it:
You can download the full eBook here.
This is the biggest update OfficeRnD has done since releasing the FlexIndex back in November 2021.
It’s also pretty exciting, as we’re seeing the flex space industry inching closer to the 2019 benchmark.
Here are 2 of our most important findings:
The full report contains a lot more insights, so be sure to check it out here.