The Computer Internet Security (CIS) Benchmark for Amazon Web Services (AWS) provides a consensus set of guidelines for ensuring security...

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information...

The NIST Privacy Framework: A Tool for Improving Privacy through Enterprise Risk Management (Privacy Framework or Framework) is a...

C2 Labs was excited to see NIST publish their long-awaited 1.0 release of the Open Security Controls Assessment Language (OSCAL). C2...

The New York Department of Financial Services (NYDFS) has been closely monitoring the ever-growing threat posed to information and...

The Control Objectives for Information and Related Technologies (COBIT) was initially designed as a set of IT control objectives to help...

When a company is operating under what the NISPOM calls Foreign Ownership, Control, or Influence (FOCI), in order to gain a facility...

The National Institute of Standards and Technology (NIST) has developed the Open Security Controls Assessment Language (OSCAL) to provide...

It is that time of year where we all reflect on our past, learn from our past mistakes, and resolve to make improvements in the coming...

The North American Energy Reliability Corporation (NERC) establishes standards for Critical Infrastructure Protection (CIP) that North...

As an enterprise compliance company with a specialty in cyber security, many of our customers, friends, and family are asking us: what...

The National Institute of Standards and Technology (NIST) has developed the Open Security Controls Assessment Language (OSCAL) to provide...

The National Institute for Science and Technology (NIST) has just released a major update to their flagship cyber security standard known...

The C2 Labs Atlasity Integrated Compliance Management (ICM) platform (now in Open BETA) continues our push to be at the forefront of...

Software as a Service (SaaS) is a growing segment of the Information Technology (IT) market with Gartner predicting that SaaS spending...

C2 Labs is pleased to announce that we have been awarded the General Services Administration (GSA) Highly Adaptive Cybersecurity Services...

The U.S. Department of Defense (DoD) is rolling out the Cybersecurity Maturity Model Certification (CMMC) on July 1, 2020, which is a new...

Learn how to lock down Elasticsearch with secure configurations.

Automating DB Changes in a CI/CD Pipeline

The Cloud Security Alliance (CSA) released two research reports this summer, along with a webinar to discuss this new research.