securityprogram.io Blog

Because of their size, small companies are especially vulnerable to cyber-attacks. Bad actors looking for quick wins are playing the odds that a small company has lax...

The growing number of security standards out there, each with their own acronyms and jargon, can seem overwhelming—but they don't have to be. We want to help provide...

One of the big questions we get is "which standard should we use?"  Or "which security certification should we get?"  Oh and what is a SOC 2 Type 2 anyway???

Do you have a customer that is asking you to fill out a security questionnaire as part of their "due diligence" process?  Does it make you nervous to start answering...

When we implement security programs, we often advise clients to build an inventory of their applications. There are a lot of things we can do when we know what our...

In light of Coronavirus / Covid-19 and in particular, the key CDC recommendation that we implement social distancing (work from home), we wanted to try to write a...

Over the past two months we've been hearing a lot of buzz about CMMC, both with active customers and security partners. In this post, we will talk about our initial...

Lately, we've been asked "Why securityprogram.io?". Below lays out some of the thought process around why we decided to build securityprogram.io.