American Cyber Security Management

Secure and certify all your data and processes

CTDPA is the newest U.S. Privacy Law

By

Are you ready for the CTDPA? It is the latest Privacy Law in the U.S. The Connecticut Data Privacy Act has just been signed by the Connecticut governor, making Connecticut the 5th state to pass a formal privacy law, just after California, Virginia, Colorado, and Utah.

The CTDPA is similar to the Colorado Privacy Act (CPA) which will hopefully help address business implementation and what is now becoming the new buzzword “interoperability” between the growing number of U.S. state privacy laws.

Stay tuned as we’ll be having future posts on the differences in scope, governed data, consent, and citizen rights under this new law.

To learn more about how ACSM can help support your cyber defense needs, please use our contact page https://www.americancsm.com/contact-us/ and schedule a free consultation call today.

American Cyber Security Management is a leader in data privacy, cybersecurity, and Compliance. Our mission is to help enterprises protect their data from internal and external threats. We offer on-demand assessment, implementation, and sustainability services that focus on Privacy and Cybersecurity readiness and compliance, risk reduction, and mitigation.    https://www.americancsm.com

ISO/IEC 27001 Certification for the Busy Professional

By

ISO/IEC 27001 certified companies demonstrate to their customers their high level of protection of sensitive data. They conduct risk assessments and implement necessary policies. These steps garner more trust between the customers and the company.

You could be instrumental in fostering that trust. As an ISO/IEC 27001 certified employee, you’d be responsible for performing audits and/or implementing policies.

To do so, it begins with the ISO/IEC 27001 certification. We’ve partnered with PECB to offer a live, interactive certification course, or if self-paced is a better option for you, we’ve got that too.

Join a certified, highly experienced trainer live for five hours each week for eight weeks, who will guide you through the materials and answer questions for the ISO/IEC 27001 certification, either Lead Auditor or Lead Implementer certifications. You’ll also receive all of the self-paced (on-demand) recordings, 450+ pages of materials, examples, best practices, exercises, and sample quizzes to review on your own time. You’ll even earn 31 CPD/CPE credits for the training program.

At the end of the live training or the self-paced option, you’ll be able to take the certification exam that’s included in the pricing listed below.

It’s time to ask yourself a few questions:

Is your company looking to be ISO/IEC 27001 certified? Become Lead Implementer certified and you can be the hero for your company! https://www.americancsm.com/iso27001training/

Is your company already ISO/IEC 27001 Certified and you need to review its controls? Then the ISO/IEC 27001 Lead Auditor course is perfect for you! Register Here

Want to advance your career and/or increase your earning potential? And really, who doesn’t want that? Register now!

https://www.americancsm.com/iso27001training/

Below are the training programs, dates, and options.

CISA Warning

By

Since Russia invaded Ukraine in February of 2022, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) organization, has issued numerous warnings about Russian cyberattacks. The Russian cyberattacks have threatened the U.S. Critical Infrastructure(https://www.cisa.gov/uscert/ncas/alerts/aa22-011a), malware has hit Ukraine (https://www.cisa.gov/uscert/ncas/alerts/aa22-057a), Russian State actors gain access to MFA (https://www.cisa.gov/uscert/ncas/alerts/aa22-074a), and most recently a warning of threats to the U.S. and international satellite communications (SATCOM) networks.

CISA even started to organize and publish a Russian Malicious Cyber activity report (https://www.cisa.gov/uscert/russia) in a concise historical linked format.

These warnings from CISA are meant to bring awareness and help businesses prepare for potential risks. Businesses need to elevate their awareness and preparations for cyberattacks, especially from Russia, per these warnings. Just over the past few years, so many organizations have seen their threats increase by over 600%, due to COVID-19. Now we see an additional multiplier in these threats as Russia escalates and expands their war on Ukraine. Our global economy is suffering from these efforts and businesses need to do all they can to protect themselves from falling victim to these attacks.

ACSM has been helping businesses protect their assets and improve their security and privacy posture since 2006. Our skilled team can help your business understand its cyber weaknesses and potential threats as well as improve your security, privacy, and compliance postures. Our services include penetration testing, maturity assessments, cyber security and privacy implementation assistance, CISO-as-a-Service, and DPO-as-a-Service, to mention a few.

To learn more about how ACSM can help support your cyber defense needs, please use our contact page https://www.americancsm.com/contact-us/ and schedule a free consultation call today.

American Cyber Security Management is a leader in data privacy, cybersecurity, and Compliance. Our mission is to help enterprises protect their data from internal and external threats. We offer on-demand assessment, implementation, and sustainability services that focus on Privacy and Cybersecurity readiness and compliance, risk reduction, and mitigation.    https://www.americancsm.com

ACSM Water Plant Risks

By

The Blue Plains water treatment plant, which serves Washington, D.C. (Reis Thebault/The Washington Post)

It was written this week by Joseph Marks, Reporter for The Cybersecurity 202 newsletter, that U.S. municipalities need to remain in a heightened sense of awareness against cyber attacks. The article referenced the 2021 breach of Oldsmar Florida and recent interviews with senior administration officials. It quoted them as saying “There is absolutely inadequate cyber resilience across the water sector. … The threshold of resilience is not what it needs to be to meet threats today,” and that with these highly vulnerable systems the hackers could contaminate the drinking water of 10’s to 100’s of thousands of U.S. citizens. You can read the full article here: https://www.washingtonpost.com/politics/2022/01/27/administration-wants-prevent-an-attack-water-supplies/

American Cyber Security Management has direct experience in assessing and remediating IT and OT networks, and specifically those that are responsible for water treatment and distribution. Our approach to assessing these network vulnerabilities allows us to give the managers of municipalities insights and specific step-by-step recommendations for reducing risks and addressing the found vulnerabilities. To learn more about how ACSM can help your town or city, please use our contact page https://www.americancsm.com/contact-us/ and schedule a free discovery call today.

American Cyber Security Management is a leader in data privacy, cybersecurity, and Compliance. Our mission is to help enterprises protect their data from internal and external threats. We offer on-demand assessment, implementation, and sustainability services that focus on Privacy and Cybersecurity readiness and compliance, risk reduction, and mitigation.    https://www.americancsm.com

Privacy Connect Webinar

By


Join your local PrivacyConnect community chapter meeting – a free, online network event led by local Chapter Chairs. Chapter meetings will focus on the latest privacy regulatory developments, including CCPA, CPRA, Schrems II, and LGPD, and feature panels from local privacy professionals to discuss operational best practices.

Click here to sign up!