Employee Spotlight: Get to Know Senior Consultant Van Bettis

With DefCon coming up this weekend, A-LIGN would like to take the time to highlight one of our senior consultants, Van Bettis, who specializes in penetration testing. What is your role at A-LIGN? At A-LIGN, I perform penetration testing services for PCI-DSS, FISMA, and regular penetration testing. The types of…

Read More

Building Teamwork by Building Bikes

A-LIGN recently held its annual summer training, CLIMB 2017: ALTITUDE in central Florida. The training included interactive sessions designed to empower employees by fostering thought leadership, addressing evolving information security and compliance standards, and providing knowledge on new and emerging services. The schedule this year included a philanthropic and team…

Read More

SOC 2 vs SOC for Cybersecurity: 3 Main Differences

Organizations want to ensure that the personal assets of potential and existing clients are protected. To do so, organizations can validate their controls through a variety of assessments, but choosing the right one for your organization’s specific needs can be a difficult process. Through the new SOC for Cybersecurity examination,…

Read More

Choosing the Right Security Applications for Your Organization

There are various methods to protect your computer from malware and other malicious attacks. Identifying the hardware, techniques, and software that work best for your organization is essential to having a system that can manage your entire business environment. Failing to do so can be risky: per a survey done…

Read More

Types of Malware and How to Prevent Malware Attacks

  Malware is ‘malicious software’ intended to damage, disable, or exploit computers or computer systems. It is a term most have become familiar with in the digital age because of its high presence and problematic consequences. Furthermore, the use of malware continues to dramatically increase and evolve each year. G…

Read More

Preparing for Disaster: Understanding Business Continuity Management and Disaster Recovery

Operating in an environment that continually transforms can be challenging and sometimes system failure is inevitable. Although having proactive prevention programs is necessary, it is equally as important to have reactive disaster strategies. Potential causes of downtime include: Natural risks: Hurricane, fire, earthquake, etc. Human-caused risks: Terrorism, crime, manmade structure…

Read More

SOC 2 vs. ISO 27001: Which is the Right Assessment for Your Organization?

Companies continue to struggle with the decision between selecting the SOC 2 examination or ISO 27001 certification.  Often customer contracts require either audit or competitors have one or the other.  Although these security standards serve a similar purpose, there are some key decision factors that may help your organization determine the…

Read More

AICPA’s New SOC for Cybersecurity Examination

As the data breach occurrences increase, organizations continue to struggle to demonstrate and maintain security of their data. To ensure that all appropriate measures are being taken, executives and senior management have begun requesting that their organizations demonstrate the effectiveness of their cybersecurity risk management programs through…

Read More

2017 Cyber Defense Guide: Part 2 [Free Download]

Malware and Social Engineering As industries see an influx use of technology in day-to-day business operations, the cybersecurity landscape struggles to keep up and stay ahead of attackers. Read more: Cyber Defense Guide: Part 1 Data breaches can happen anywhere at any time. A common misconception is…

Read More