The Coalfire Blog

Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique cybersecurity issues that impact the industries we serve, including Cloud Service Providers, RetailFinancial Services, Healthcare, Higher Education, Payments, Government.

The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts.


  • Avoid oversights in HIPAA risk management

    Rich Curtiss, Director, Healthcare Cyber Risk Services, Coalfire

    Since HIPAA regulations first came about in 1996, organizations have looked for ways to analyze and manage risk within this complex framework. Although guided by the HIPAA Security Rule as well as additional guidance from the U.S. Department of Health and Human Services (HHS) and Office for Civil Rights (OCR), healthcare entities and business associates still struggle with the cybersecurity risk analysis component.

    Read more
  • Coalfire ramps up for StateRAMP — What you need to know…

    Jason Oksenhendler, Director, FedRAMP Advisory Services, Coalfire

    There has been a lot of buzz during the past year or so about StateRAMP (SR). SR was an idea born out of helping state and local governments efficiently and effectively verify cybersecurity and manage third-party risk. SR is a 501-c6 non-profit, membership-based organization based in Indiana and after April 1st, cloud service provider (vendor) memberships and assessments will begin. Here is an FAQ we put together on StateRAMP.

    Read more
  • Waking up to the new realities of privacy risk and the need for focused expertise

    David Forman, VP, Privacy and International Assurance, Coalfire

    Last month, Coalfire announced that our certification body was awarded yet another of many “firsts.” In this scenario, Coalfire was the first to expand its registration to a second accreditation body as part of its certification services related to ISO 27701, a framework that governs the activities of privacy information management.

    Read more
  • Success stories in cybersecurity and information technology

    Ian Walters, Principal, Thought Leader, Coalfire

    RISE is Coalfire’s initiative to Recruit, Influence, Support, and Educate women in cybersecurity. I am honored to have been invited to be an active member of the RISE steering committee and help contribute to this worthy cause.

    Read more
  • New cybersecurity legislation to amend the Health Information Technology for Economic and Clinical Health (HITECH) Act – an analysis of H.R. 7898

    Rich Curtiss, Director, Healthcare Cyber Risk Services, Coalfire

    New legislation was passed by Congress and signed by the president on January 5, 2021 that amends the HITECH Act with an additional section titled: SEC. 13412. RECOGNITION OF SECURITY PRACTICES.1

    Read more
  • Displaying results 1-5 (of 138)
     |<  < 1 - 2 - 3 - 4 - 5 - 6 - 7 - 8 - 9 - 10  >  >| 

Recent Posts

Post Topics

Archives

Tags

Top