mobile-logo
 

Cyber Security Blog

ISO 15408
09 Apr

A complete guide to ISO 15408: Requirements & implementation

by CyberArrow team
in Cyber Security Governance, Risk and, Compliance
Comments

In today's digital landscape, ensuring the security of information technology (IT) products is paramount. Organizations and consumers seek assurance that the IT products they use are robust against potential threats. This is where ISO 15408, commonly known as the Common Criteria for Information Technology Security Evaluation, comes into play. This international standard provides a framework for evaluating IT products' security features and capabilities, ensuring they...

Read More
ISO 27005
09 Apr

A complete guide to ISO 27005: Requirements & implementation

by CyberArrow team
in Cyber Security Governance, Risk and, Compliance, ISO 27005
Comments

In today's digital landscape, organizations face numerous threats to their information security. Effectively managing these risks is crucial to protecting sensitive data and maintaining stakeholder trust. ISO 27005 is an international standard that provides guidelines for information security risk management, supporting the broader ISO 27001 framework.  This comprehensive guide explores the requirements and implementation of ISO 27005 and demonstrates how CyberArrow GRC can automate compliance efforts,...

Read More
ISO 27002
09 Apr

A complete guide to ISO 27002: Requirements & implementation

by CyberArrow team
in Cyber Security Governance, Risk and, Compliance, ISO 27002
Comments

In an era where data breaches and cyber threats are escalating, safeguarding sensitive information has become paramount for organizations globally. The International Organization for Standardization (ISO) offers a suite of standards to assist organizations in managing information security effectively. Among these, ISO 27002 stands out as a comprehensive guide for implementing information security controls.  This article delves into the essentials of ISO 27002, its requirements, implementation...

Read More
ADHICS Abu Dhabi Healthcare Information and Cyber Security Standard
08 Apr

(ADHICS) Abu Dhabi Healthcare Information and Cyber Security Standard: A complete guide

by CyberArrow team
in ADHICS, Cyber Security Governance, Risk and, Compliance
Comments

The healthcare sector in Abu Dhabi is rapidly evolving, with digital technologies playing a pivotal role in enhancing patient care and operational efficiency. However, this digital transformation brings significant challenges, particularly in safeguarding sensitive patient information against cyber threats. Recognizing the critical need for robust data protection measures, the Department of Health – Abu Dhabi (DoH) introduced the Abu Dhabi Healthcare Information and Cyber Security...

Read More
Information Security Standards
07 Apr

Information security standards: A complete guide

by CyberArrow team
in Cyber Security Governance, Risk and, Compliance
Comments

In today's digital world, protecting sensitive information is more important than ever. Cyber threats are growing, and businesses must take steps to keep their data safe. One effective way to do this is by following information security standards. These standards provide guidelines to help organizations protect their information, comply with laws, and build trust with customers and partners.​ This guide will explain what information security standards...

Read More
HIPAA Violation
07 Apr

HIPAA violation penalties: Fines, consequences, and real-world cases

by CyberArrow team
in Cyber Security Governance, Risk and, Compliance, HIPAA
Comments

Did you know that a single HIPAA violation can cost a healthcare provider millions of dollars? Whether it’s an accidental data breach or intentional misuse of patient records, the penalties for violating HIPAA are severe.   With the increasing number of data breaches and privacy concerns in the healthcare sector, regulators have become stricter in enforcing HIPAA rules. But what exactly qualifies as a violation? How are...

Read More