How to Reduce Segregation of Duties Related Audit Findings

Robert E. Johnson, III
by Robert E. Johnson, III
on September 26, 2023

Issues related to “Segregation of Duties” are among the most common audit findings, often rising to the classification of ‘significant audit finding.’

Read More
September 19, 2023 6 min read
Exploring SEC's Cybersecurity Rules - Material Cybersecurity Incident (Part 3)
By Mark Allers
September 12, 2023 5 min read
The Challenges of Traditional File Integrity Monitoring
By Mark Allers
August 29, 2023 11 min read
Podcast: New SEC Rules on Reporting Cybersecurity Incidents
By Lauren Yacono
August 24, 2023 5 min read
Exploring the SEC's New Cybersecurity Risk Management and Incident Disclosure Rules (Part 2)
By Mark Allers
August 22, 2023 5 min read
Applying CIS Benchmarks for Security and Compliance
By Lauren Yacono
August 18, 2023 4 min read
Exploring the SEC's New Cybersecurity Risk Management and Incident Disclosure Rules (Part 1)
By Mark Allers
August 17, 2023 4 min read
5 Security Objectives That Require File Integrity Monitoring
By Lauren Yacono
August 15, 2023 10 min read
How Organizations Can Align with HITRUST Requirements
By Lauren Yacono
August 10, 2023 3 min read
A Security Leader's Guide to Implementing System Hardening
By Lauren Yacono
August 08, 2023 2 min read
Understanding the Microsoft Hack and CimTrak's Critical Role in Defense
By Robert Rodriguez
August 07, 2023 3 min read
SEC Cybersecurity Ruling - What to Know and How to Prepare
By Kayla Kinney
August 03, 2023 4 min read
What is System Hardening: An Introduction
By Lauren Yacono
August 01, 2023 7 min read
Paradigm Shift Needed for Cybersecurity: Prioritizing Detection Over Response
By Mark Allers
July 13, 2023 4 min read
How Does File Integrity Monitoring Work?
By Mark Allers
July 11, 2023 3 min read
The Role of Change Management in Cybersecurity
By Lauren Yacono
June 29, 2023 4 min read
What is a Cloud Workload Protection Platform (CWPP)?
By Lauren Yacono
June 27, 2023 5 min read
Endpoint Security Strategy: 10 Essentials to Mitigate Endpoint Vulnerabilities
By Lauren Yacono
June 22, 2023 6 min read
Change Control and Sarbanes Oxley (SOX) Compliance: What to Know
By Mark Allers
June 20, 2023 12 min read
The Comprehensive Guide to File Integrity Monitoring
By Mark Allers
June 15, 2023 5 min read
System Hardening with DISA STIGs and CIS Benchmarks
By Lauren Yacono
June 12, 2023 3 min read
Cybercrime Predictions from an Industry Veteran: Dan Schaupner
By Lauren Yacono
June 08, 2023 3 min read
Cybercrime Predictions from an Industry Veteran: Dr. Chase Cunningham
By Lauren Yacono
June 06, 2023 4 min read
The 2 BIG Exceptions to Financially Motivated Cybercrime
By Lauren Yacono
May 30, 2023 3 min read
Ransomware: A Predictable Response to Market Forces
By Lauren Yacono
May 25, 2023 3 min read
Understanding Cybercriminal Motivations Over Time
By Lauren Yacono
May 23, 2023 5 min read
Federal Cybersecurity Progress Report for Fiscal Year 2022
By Mark Allers
May 18, 2023 3 min read
Which Cyberattack Vectors Were Most Pervasive in 2022? (Part 2)
By Lauren Yacono
May 16, 2023 5 min read
14 Telltale Characteristics of an Advanced Persistent Threat
By Lauren Yacono
May 11, 2023 4 min read
Which Cyberattack Vectors Were Most Pervasive in 2022? (Part 1)
By Lauren Yacono
May 09, 2023 4 min read
Next-Gen FIM: Use Cases and Best Practices
By Lauren Yacono
May 04, 2023 3 min read
The State of Cybercrime (and What To Do About It)
By Lauren Yacono
May 02, 2023 6 min read
File Integrity Monitoring: Fact vs Fiction
By Mark Allers
April 27, 2023 4 min read
FIM is Dead, Long Live Next-Gen FIM
By Lauren Yacono
April 25, 2023 5 min read
AI vs Zero Trust
By Mark Allers
April 18, 2023 2 min read
What You Need to Know About Integrating FIM & SIEMs
By Lauren Yacono
April 13, 2023 4 min read
Threat Intelligence Feeds: What They Are and How to Use Them
By Mark Allers
April 11, 2023 6 min read
10 Overlooked & Hidden Network Security Risks & How to Mitigate Them
By Lauren Yacono
April 06, 2023 8 min read
The 7 Most Important Cybersecurity Frameworks to Know
By Lauren Yacono
April 06, 2023 6 min read
The Ultimate PCI Compliance Checklist to Maintain a Secure Environment
By Lauren Yacono
April 04, 2023 5 min read
Updating Your Data Security Policy: 13 Reasons to Do It Right Now
By Lauren Yacono
March 30, 2023 4 min read
How to Comply with Executive Order 14028 in 4 Steps
By Lauren Yacono
March 28, 2023 4 min read
SOAR vs SIEM: Benefits & Differences of These Security Solutions
By Mark Allers
March 23, 2023 6 min read
Ransomware Protection Cost Analysis: How Much Will Security Cost?
By Lauren Yacono
March 21, 2023 2 min read
The Top 5 Security Risks in Docker Container Deployment
By Lauren Yacono
March 16, 2023 2 min read
Internal Change Causes Twitter Outage
By Lauren Yacono
March 14, 2023 4 min read
What to Expect During a SOX Compliance Audit
By Lauren Yacono
March 09, 2023 4 min read
How To Identify Security Vulnerabilities: 5 Tips to Keep Your Network Secure
By Lauren Yacono
March 07, 2023 4 min read
The Value of System Hardening
By Robert E. Johnson, III
March 02, 2023 4 min read
What is Configuration Drift?
By Robert E. Johnson, III
February 28, 2023 4 min read
System Hardening Best Practices
By Robert E. Johnson, III
February 23, 2023 4 min read
Do Hardened Systems Need FIM?
By Robert E. Johnson, III
February 21, 2023 5 min read
3 Ways to Mitigate the Human Factors of Cyber Security
By Lauren Yacono
February 16, 2023 4 min read
Enterprise Ransomware Protection: Essential Tips and Tools
By Lauren Yacono
February 14, 2023 6 min read
The CIA Triad - Defining Integrity
By Mark Allers
February 09, 2023 5 min read
Cybersecurity Posture Assessment: What Is It & How to Conduct One
By Lauren Yacono
February 07, 2023 5 min read
5 Places Ransomware and Malware Can Hide That You May Never Check
By Lauren Yacono
February 02, 2023 4 min read
9 Internal Data Breach Examples to Learn From
By Lauren Yacono
January 31, 2023 2 min read
CSO vs. CISO
By Lauren Yacono
January 19, 2023 5 min read
Getting Started with Zero Trust
By Robert E. Johnson, III
January 19, 2023 5 min read
Top 7 Network Security Risks (And How to Mitigate Them)
By Lauren Yacono
January 12, 2023 6 min read
The 8 Top BYOD Security Risks (and How to Mitigate Them)
By Lauren Yacono
January 10, 2023 4 min read
FIM vs System Integrity Assurance
By Robert E. Johnson, III
January 05, 2023 6 min read
A Beginner’s Guide to PCI Compliance
By Lauren Yacono
December 29, 2022 4 min read
Monitoring for Suspicious Network Activity: Key Tips to Secure Your Network
By Lauren Yacono
December 27, 2022 4 min read
What is System Integrity Assurance?
By Robert E. Johnson, III
December 22, 2022 5 min read
What Are CIS Benchmarks? 7 Things You Need For Security and Compliance
By Lauren Yacono
December 15, 2022 4 min read
Cyber Security and Compliance: 4 Most Common Mistakes
By Lauren Yacono
December 13, 2022 3 min read
How FIM Helps with Zero Trust
By Robert E. Johnson, III
December 08, 2022 4 min read
3 Hidden Costs of Cyber Security Compliance (and How To Mitigate Them)
By Lauren Yacono
December 01, 2022 3 min read
CIS Benchmarks: 3 Critical Things To Know For Compliance
By Lauren Yacono
November 29, 2022 4 min read
Securing Servers & Databases
By Robert E. Johnson, III
November 22, 2022 4 min read
4 Critical Proactive Cybersecurity Measures You Need in 2023
By Lauren Yacono
November 17, 2022 5 min read
Cybersecurity Compliance Audit: 6 Steps To Be Compliant
By Lauren Yacono
November 10, 2022 4 min read
What is ISO 27001 Compliance?
By Lauren Yacono
November 08, 2022 4 min read
Can You Manage Change Management?
By Robert E. Johnson, III
November 03, 2022 5 min read
How To Apply The 7 Zero Trust Pillars To Your Network (+ FREE Guide)
By Lauren Yacono
November 01, 2022 5 min read
Elevating Your Security Posture with File Integrity Monitoring
By Robert E. Johnson, III
October 27, 2022 5 min read
Reviewing the 5 Stages of the Cybersecurity Lifecycle [+ EXAMPLES]
By Lauren Yacono
October 25, 2022 4 min read
Applying a Proactive Cybersecurity Approach
By Robert E. Johnson, III
October 20, 2022 5 min read
Assess Your Cybersecurity Posture in 5 Easy Steps
By Lauren Yacono
October 18, 2022 5 min read
File Integrity Monitoring and Compliance
By Robert E. Johnson, III
October 13, 2022 5 min read
6 Top Zero Trust Architecture Benefits and How To Leverage Them
By Lauren Yacono
October 06, 2022 4 min read
How to Identify Database Security Threats in 5 Steps
By Lauren Yacono
October 04, 2022 4 min read
Challenges of Infrastructure Security
By Robert E. Johnson, III
September 29, 2022 5 min read
5 Top Ransomware Detection Techniques To Keep Your Data Safe
By Lauren Yacono
September 27, 2022 4 min read
Podcast: The Buzz Around System Hardening
By Robert E. Johnson, III
September 22, 2022 4 min read
Zero Trust vs. VPN: Which Is More Secure For Your Business?
By Lauren Yacono
September 20, 2022 4 min read
Podcast: Securing Operational Technology
By Robert E. Johnson, III
September 15, 2022 4 min read
How to Conduct an IT Compliance Review in 6 Steps
By Lauren Yacono
September 13, 2022 4 min read
Podcast: AI and Cybersecurity
By Robert E. Johnson, III
September 08, 2022 4 min read
10 Best IT Compliance Conferences in 2022
By Lauren Yacono
September 06, 2022 3 min read
Podcast: Zero Trust is a Strategy, Not a Solution
By Robert E. Johnson, III
September 01, 2022 4 min read
4 Steps to Find the Right Cybersecurity Service Provider
By Lauren Yacono
August 30, 2022 3 min read
Podcast: Breaking Down Zero Trust
By Robert E. Johnson, III
August 25, 2022 4 min read
SASE vs. Zero Trust: 6 Similarities and Differences
By Lauren Yacono
August 23, 2022 3 min read
Clarifying Configuration Drift
By Robert E. Johnson, III
August 18, 2022 4 min read
5 Zero Trust Architecture Benefits You Can't Afford To Miss
By Lauren Yacono
August 16, 2022 2 min read
What Does Integrity Look Like in Zero Trust?
By Lauren Yacono
August 11, 2022 6 min read
IT Compliance Standards: Which Regulations Apply to Your Business?
By Lauren Yacono
August 09, 2022 3 min read
Integrity: The Missing Component of Zero Trust
By Lauren Yacono
August 04, 2022 5 min read
Micro-Segmentation Zero Trust: Your Guide To The Fundamentals
By Lauren Yacono
August 02, 2022 2 min read
The (Often Ignored) Fundamentals of Zero Trust
By Lauren Yacono
July 28, 2022 5 min read
3 Challenges of Remote Support in Zero Trust (And How to Overcome Them)
By Lauren Yacono
July 26, 2022 3 min read
What's Missing from Zero Trust Guidance?
By Lauren Yacono
July 22, 2022 6 min read
ANSWERED: How To Implement Zero Trust in Your Organization
By Lauren Yacono
July 20, 2022 3 min read
What is Trust in Cybersecurity, and Why Can't We Assume It?
By Lauren Yacono
July 13, 2022 2 min read
The 7 Tenets of Zero Trust
By Lauren Yacono
July 06, 2022 3 min read
The 3 Zero Trust Principles (and Why They Matter)
By Lauren Yacono
June 23, 2022 2 min read
What is Zero Trust? (A Hype-less Introduction)
By Lauren Yacono
June 21, 2022 4 min read
Podcast: Focus on What Matters with System Integrity Assurance
By Robert E. Johnson, III
June 07, 2022 4 min read
Podcast: MITRE ATT&CK Framework
By Robert E. Johnson, III
May 24, 2022 4 min read
Podcast: Ensuring Database Security & Integrity
By Robert E. Johnson, III
May 10, 2022 4 min read
Podcast: Cloud Workload Protection Platforms
By Robert E. Johnson, III
May 03, 2022 4 min read
What Risks Do Software Supply Chain Attacks Pose in the U.S.?
By Lauren Yacono
April 26, 2022 4 min read
Podcast: CMMC & System Integrity Assurance
By Robert E. Johnson, III
April 19, 2022 4 min read
Protecting the U.S. from Software Supply Chain Attacks (Part 2)
By Lauren Yacono
April 12, 2022 4 min read
The State of Ransomware
By Robert E. Johnson, III
April 05, 2022 4 min read
Protecting the U.S. from Software Supply Chain Attacks (Part 1)
By Lauren Yacono
March 31, 2022 4 min read
Podcast: No One-Size Fits All Framework
By Robert E. Johnson, III
March 29, 2022 4 min read
Software Supply Chain Attacks: How Did We Get Here?
By Lauren Yacono
March 15, 2022 3 min read
Is the U.S. Learning From Software Supply Chain Attacks?
By Lauren Yacono
March 02, 2022 3 min read
What are the Consequences of a Software Supply Chain Attack?
By Lauren Yacono
February 15, 2022 4 min read
Have Regulations Made the US Safer From Software Supply Chain Attacks?
By Lauren Yacono
February 02, 2022 3 min read
What Are Software Supply Chain Attacks?
By Lauren Yacono
January 06, 2022 3 min read
FTC Log4j Recommendation: Be Proactive
By Lauren Yacono
December 02, 2021 3 min read
The #1 Compliance Problem Nobody’s Talking About
By Jacqueline von Ogden
November 17, 2021 4 min read
Rethinking Cybersecurity: Working from a Trusted Baseline
By Jacqueline von Ogden
November 04, 2021 4 min read
What Can Cybersecurity Learn from IT?
By Jacqueline von Ogden
October 21, 2021 3 min read
Top 3 Reasons Security and Compliance Are Going The Wrong Way
By Jacqueline von Ogden
August 04, 2021 5 min read
Top 20 Problems File Integrity Monitoring (FIM) Helps Solve Part 2
By Jacqueline von Ogden
July 22, 2021 5 min read
Top 20 Problems File Integrity Monitoring (FIM) Helps Solve
By Jacqueline von Ogden
July 08, 2021 3 min read
Active Directory Monitoring and Security
By Robert E. Johnson, III
June 16, 2021 4 min read
Podcast: SCADA and ICS Security
By Robert E. Johnson, III
May 27, 2021 4 min read
Podcast: Supply Chain Security And Integrity
By Robert E. Johnson, III
May 18, 2021 4 min read
Podcast: Trust But Verify
By Robert E. Johnson, III
April 15, 2021 4 min read
Podcast: PCI DSS And Continuous Monitoring
By Robert E. Johnson, III
April 08, 2021 4 min read
How to Achieve Continuous Compliance with CIS Benchmarks
By Jacqueline von Ogden
March 16, 2021 4 min read
Podcast: Container Security and Vulnerabilities
By Robert E. Johnson, III
February 10, 2021 9 min read
Podcast: Tony Sager Discusses The Community Defense Model
By Jacqueline von Ogden
February 02, 2021 4 min read
Podcast: Data Security, Government Security and Risk
By Jacqueline von Ogden
January 12, 2021 4 min read
Podcast: Tom Cornelius Discusses CMMC
By Jacqueline von Ogden
December 09, 2020 8 min read
Podcast: Tony Sager Discusses Defense Strategies
By Jacqueline von Ogden
December 03, 2020 4 min read
Podcast: Tom Cornelius Discusses Compliance Challenges
By Jacqueline von Ogden
November 19, 2020 4 min read
9 CMMC Challenges to Overcome Prior to the Deadline
By Jacqueline von Ogden
November 10, 2020 5 min read
How To Prepare for a CMMC Audit
By Jacqueline von Ogden
November 03, 2020 5 min read
The Top 10 Things to Know About CMMC
By Jacqueline von Ogden
October 15, 2020 4 min read
Podcast: Which is a Greater Cybersecurity Threat: Rogue Hackers or Nation States?
By Jacqueline von Ogden
October 08, 2020 5 min read
CMMC Standards for DoD
By Jacqueline von Ogden
September 29, 2020 5 min read
Winning the Trust of Customers and Partners with SOC 2 Compliance
By Jacqueline von Ogden
July 30, 2020 5 min read
Going Beyond Technology With CIS Organizational Controls
By Jacqueline von Ogden
July 21, 2020 5 min read
What to Expect with Brazil's Data Protection Law 
By Jacqueline von Ogden
July 15, 2020 8 min read
Breaking Down CIS Foundational Controls
By Jacqueline von Ogden
July 02, 2020 7 min read
Preventing Cyber Attacks With CIS Basic Controls
By Jacqueline von Ogden
June 23, 2020 2 min read
Podcast: Mitigating Zero Day Threats
By Robert E. Johnson, III
June 17, 2020 7 min read
CIS Security Controls: What Are They and Should You Use Them?
By Jacqueline von Ogden
June 11, 2020 2 min read
Enhancing SIEM Data with File Integrity Monitoring
By Robert E. Johnson, III
June 03, 2020 5 min read
How To Reduce Your Attack Surface with System Hardening
By Jacqueline von Ogden
May 28, 2020 5 min read
Are All FIMs Created Equal?
By Robert E. Johnson, III
May 13, 2020 4 min read
Podcast: System Integrity Monitoring Best Practices
By Robert E. Johnson, III
April 30, 2020 4 min read
Podcast: Security Frameworks and CIS Controls
By Jacqueline von Ogden
April 15, 2020 3 min read
Podcast: The Key to Security and Understanding System Integrity
By Robert E. Johnson, III
February 20, 2020 5 min read
4 Ways to Improve Cybersecurity Posture
By Lauren Yacono
February 12, 2020 6 min read
Managing Vulnerabilities and Staying Compliant
By Jacqueline von Ogden
November 01, 2019 6 min read
Cimcor Interview for Hot 150 Cybersecurity Companies
By Jacqueline von Ogden
October 22, 2019 3 min read
4 Reasons Why Change Control is Necessary
By Jacqueline von Ogden
June 19, 2019 4 min read
The Struggle With Cloud Security
By Jacqueline von Ogden
June 13, 2019 5 min read
9 PCI Myths That Can Cost CIOs
By Jacqueline von Ogden
June 11, 2019 4 min read
Making Sense of FISMA Compliance
By Jacqueline von Ogden
May 30, 2019 3 min read
CJIS Requirements: What Businesses Need to Know
By Jacqueline von Ogden
May 02, 2019 3 min read
5 Takeaways on Cloud Security
By Jacqueline von Ogden
April 03, 2019 2 min read
Top Security Objectives for CDM Compliance
By Jacqueline von Ogden
February 21, 2019 3 min read
CDM Compliance and Cybersecurity Risks
By Jacqueline von Ogden
November 14, 2018 5 min read
Can You Mitigate Risk with Compliance and Integrity Monitoring for HIPAA and Healthcare?
By Jacqueline von Ogden
November 06, 2018 4 min read
Data Security and NIST Compliance
By Jacqueline von Ogden
September 28, 2018 3 min read
How Can Malware Target Your Organization?
By Jacqueline von Ogden
August 29, 2018 4 min read
7 Regulations Requiring File Integrity Monitoring for Compliance
By Jacqueline von Ogden
June 25, 2018 3 min read
PCI and File Integrity Monitoring for Businesses
By Jacqueline von Ogden
June 13, 2018 3 min read
PCI DSS 3.2.1 FAQs
By Jacqueline von Ogden
May 14, 2018 2 min read
GDPR Chapter Summaries: Part 3
By Jacqueline von Ogden
May 10, 2018 2 min read
GDPR Chapter Summaries: Part 2
By Jacqueline von Ogden
May 09, 2018 2 min read
GDPR Chapter Summaries: Part 1
By Jacqueline von Ogden
May 04, 2018 2 min read
5 Tips to Help Manage Enterprise Security and Compliance
By Jacqueline von Ogden
April 11, 2018 2 min read
Can You Detect Fileless Malware?
By Jacqueline von Ogden
April 10, 2018 4 min read
How File Integrity Monitoring (FIM) Helps with GDPR Compliance
By Jacqueline von Ogden
April 04, 2018 3 min read
Monitoring for GDPR Compliance 
By Jacqueline von Ogden
March 27, 2018 3 min read
6 Steps for GDPR Readiness
By Jacqueline von Ogden
March 16, 2018 3 min read
The Cost of GDPR Non-Compliance 
By Jacqueline von Ogden
February 27, 2018 1 min read
Beginning GDPR Compliance
By Jacqueline von Ogden
February 21, 2018 3 min read
General Data Protection Regulation (GDPR) Definitions to Know
By Jacqueline von Ogden
February 14, 2018 3 min read
PCI DSS 3.2 Deadlines and Requirements
By Jacqueline von Ogden
February 06, 2018 3 min read
4 Steps to Help With Data Protection and Compliance
By Jacqueline von Ogden
January 18, 2018 3 min read
How Can We Conquer Cybersecurity in 2018?
By Jacqueline von Ogden
January 03, 2018 3 min read
Data Governance and the GDPR
By Jacqueline von Ogden
December 06, 2017 2 min read
Data Security: Best Practices for Keeping Data Secure
By Jacqueline von Ogden
October 12, 2017 2 min read
5 Things to Know About GDPR Compliance
By Jacqueline von Ogden
October 10, 2017 3 min read
Global Costs of Cybercrime in 2017
By Jacqueline von Ogden
September 19, 2017 3 min read
A Shortage of Security Awareness
By Jacqueline von Ogden
September 14, 2017 3 min read
3 Ways File Integrity Monitoring Identifies Zero-Day Attacks
By Jacqueline von Ogden
September 12, 2017 3 min read
5 Effective Ways to Oversee Your Infrastructure with File Integrity Monitoring Software
By Jacqueline von Ogden

Posts by Topic

Our Top Cybersecurity & Compliance Tools

AI-Powered Compliance Automation Icon
COMING SOON
AI-Powered Compliance Automation

Make audit prep hands-off, guaranteed to keep you
compliant!

RESERVE YOUR SPOT
Fortify Cybersecurity Posture Icon
COMING SOON
Fortify Cybersecurity Posture

Say goodbye to 97% of security alerts, block unauthorized changes across your IT stack.

Reserve Your Spot