Author: Pansy

Pansy is an ISC2 Certified in Cybersecurity content marketer with a background in Computer Science engineering. Lately, she has been exploring the world of marketing through the lens of GRC (Governance, risk & compliance) with Sprinto. When she’s not working, she’s either deeply engrossed in political fiction or honing her culinary skills. You may also find her sunbathing on a beach or hiking through a dense forest.
    vendor questionnaire
    Vendor Questionnaire: 95+ Questions Across Multiple DomainsΒ 
     Vendors are more than just service providersβ€”they’re an integral part of your business operations. But here’s the catch: 61% of data breaches now stem from third-party vendors. That’s a stark reminder of the risks tied to vendor relationships. Vendor due diligence questionnaires form a crucial part of your vendor onboarding process. You need to make…
    profile_icon
    Pansy
    | Dec 13, 2024
    defense in depth
    ,
    Defense In Depth (DiD): A Castle Approach To GRC With Layered Defenses
     In 2016, the U.S. Department of Homeland Security (DHS) listed Defense in Depth (DiD) as a recommended strategy for improving β€˜industrial control system cybersecurity’ practices. This was done in a bid to make systems less attractive to attackers during a period experiencing a sharp increase in cyber incidents.  So, is DiD a new concept or…
    profile_icon
    Pansy
    | Dec 12, 2024
    list of cybersecurity standards
    ,
    13 Cybersecurity Standards You Must Know (Industry-Specific)
     USD 4.88M – That’s the average number of global data breaches in 2024. The exponential growth of cyber threats has made cybersecurity standards a crucial requirement for all businesses.  Cybersecurity standards are no longer just guidelines to help you manage and protect data. They’ve become a testament to your business’s security posture. In most deals,…
    profile_icon
    Pansy
    | Dec 06, 2024
    pyramid with influence of change management in GRC
    ,
    Regulatory Change Management: Process, Tools & Tips
     Imagine this: You’re a 500-person company with ten departments, rolling out GDPR protocols since you’re expanding in the EU. A support employee working on a customer ticket downloads a file with personal data to get a β€œquick, unofficial second opinion.” Seems innocent enough, right? But in the GRC world, that’s a major red flag. So…
    profile_icon
    Pansy
    | Dec 02, 2024
    ISC2 Security Congress 2025: Everything You Need To Know
     β€œIntense learning experience,” β€œBuilt my confidence,” β€œThe impact is huge.”, β€œWell worth it!” This is how people who have attended the ISC2 Security Congress in the past have described it.  The ISC2 Security Congress brings together cybersecurity professionals from around the world. If you haven’t attended it before, it is definitely worth attending in 2025….
    profile_icon
    Pansy
    | Nov 21, 2024
    compliance vs risk management
    , ,
    Compliance vs Risk Management: Key Differences & Similarities
     A report by Bloomsberg states that companies are spending 6-10% of their revenue solely on compliance! Furthermore, over 50% of executives see cybercrime as a top five risk now and in the next three years, with concerns rising. The above statistics are pieces of evidence that in the absence of compliance, you can lose money…
    profile_icon
    Pansy
    | Nov 05, 2024