The Coalfire Blog

Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique cybersecurity issues that impact the industries we serve, including Cloud Service Providers, RetailFinancial Services, Healthcare, Higher Education, Payments, Government.

The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts.

  • Payments paradigm shift

    Karl Steinkamp, Director, PCI Product and Quality Assurance

    Crypto assets have been around for over a decade, and with the recent Coinbase IPO, we believe we are well past the point of calling this a “passing fad.” In fact, we believe that crypto assets — particularly bitcoin — have now passed the tipping point from being considered an unconventional investment vehicle to an international payment system.

    Read more
  • Cybersecurity opportunities for the public and private sectors

    Patrick Kehoe, Chief Marketing and Strategy Officer, Coalfire

    I’m happy to share a new paper by Cynergy Partners, co-authored by Coalfire board member, Jim Pflaging, titled Cybersecurity Opportunities for the Public and Private Sectors.

    Read more
  • MIME sniffing in browsers and the security implications

    Thought Leadership Team, Coalfire

    Whenever a website in opened in a browser, there are many tasks that are being silently performed in the background. One of those tasks is fetching resources such as images, stylesheets and JavaScript from different domains on the internet and then parsing those resources. Read more
  • Avoid oversights in HIPAA risk management

    Rich Curtiss, Director, Healthcare Cyber Risk Services, Coalfire

    Since HIPAA regulations first came about in 1996, organizations have looked for ways to analyze and manage risk within this complex framework. Although guided by the HIPAA Security Rule as well as additional guidance from the U.S. Department of Health and Human Services (HHS) and Office for Civil Rights (OCR), healthcare entities and business associates still struggle with the cybersecurity risk analysis component.

    Read more
  • Coalfire ramps up for StateRAMP — What you need to know…

    Jason Oksenhendler, Director, FedRAMP Advisory Services, Coalfire

    There has been a lot of buzz during the past year or so about StateRAMP (SR). SR was an idea born out of helping state and local governments efficiently and effectively verify cybersecurity and manage third-party risk. SR is a 501-c6 non-profit, membership-based organization based in Indiana and after April 1st, cloud service provider (vendor) memberships and assessments will begin. Here is an FAQ we put together on StateRAMP.

    Read more
  • Displaying results 16-20 (of 163)
     |<  <  1 - 2 - 3 - 4 - 5 - 6 - 7 - 8 - 9 - 10  >  >| 

Recent Posts

Post Topics