FILTER
InfoSec Best Practices
Evaluation and Developmental Needs: Maintaining the Momentum
Evaluating and assessing your employees regularly will maintain momentum and ensure they continue to fulfill...
READ MORE
Best Practices for Managing Access Controls
One of the more important security controls in any organization’s security program is access controls,...
READ MORE
Best Practices for Securing Kubernetes, Serverless, and Containers
Kubernetes, containers, and serverless have been part of the “new stack” that everyone talks...
READ MORE
How Tugboat Helped XOi Generate $6,000,000 in Revenue, Save $150,000 a Year, and Achieve ISO 27001 Compliance
“When we came across Tugboat, I was like, ‘Man, this is exactly what I’m looking for!’ And the more I...
READ MORE
SOC 2 vs. SOC 3: Similarities and Differences
We often get asked by prospects and customers whether they should get a SOC 2 vs. SOC 3 certification, and...
READ MORE
The 4 Controls Most People Fail During SOC 2 Audits
Our customers frequently ask us, “Which controls are most often missed or incomplete during SOC 2...
READ MORE
Employee Conduct Standards: Know the Code(s)
Control of the Week #9 – Employee Handbook and Code of Conduct, and Code of Ethics This week’s...
READ MORE
4 Tips for Compliance in a Remote Work World
If you’re looking for thorough answers to your questions around passing SOC 2 audits remotely or whether...
READ MORE
Background Checks: Super Sleuthing for Your Security
Control of the Week #8: Background and Reference Checks This week’s control is on background and reference...
READ MORE
How to Pick an Auditor for SOC 2 and Beyond
Straightforward, non-salesy advice on how to choose auditors for security certifications like SOC 2 is...
READ MORE
How to Make Your Passwords Pass Audits
Control of the Week #7: Password Control This week’s control is on passwords. Jose Costa (CISO at Tugboat...
READ MORE
Security Controls, Explained: Admin Access
Control of the Week #6: Administrative Access This week’s control is on risk assessments. Jose Costa (CISO...
READ MORE