At Triaxiom Security, we certainly appreciate that there are numerous options when choosing an information security vendor. So today, we would like to detail who we are and what we have to offer. Who we are: We are a small, innovative team who pride ourselves on being on the cutting edge of the ever-changing security […]
The reason most companies conduct a penetration test is to uncover vulnerabilities so that they can remediate or mitigate them, ultimately improving security posture. But in order to do that, one of the key components following any penetration test is the transfer of knowledge from the penetration test team to the organization’s defenders. And taking […]
Maintaining PCI Compliance requires you to keep your security program up to date and perform certain activities throughout the year. If you don’t stay on top of it, you could find yourself missing a key component, such as a quarterly ASV Scan, which will result in a failing Report on Compliance (RoC) or Self Assessment […]
The Center for Internet Security (CIS), in collaboration with the SANS Institute, developed the CIS Top 20 Critical Security Controls (CSC) to help organizations prioritize their efforts in information security and protect their organization from the most common attack vectors. These controls are grouped into three broad categories. Basic controls are the starting block for […]
Organizations continue migrating to the cloud at an extremely fast pace overall. With the advances in scalability, security, and flexibility, the cloud is more or less a known quantity now, and even the most resistant sectors (looking at you government and financial) are starting to embrace this paradigm shift in technology. With the shift in […]
In information security, there are generally two “sides.” The Blue Team, or defenders, are comprised of those who are trying to protect a network. They are made up of SOC analysts, firewall administrators, etc. Their job is to ensure the network is secure and operational. The Red Team, or attackers, conversely attempt to hack or […]
