• Services
    • About
    • Team
    • Blog
    • Downloads
    • Contact

  • Vulnerable and Outdated Components (OWASP top 10)

    Vulnerable and Outdated Components (OWASP top 10)

    OWASP (The Open Worldwide Application Security Project) is an online community that produces freely available articles, methodologies, documentation, tools, and technologies in the fields of IoT, system software and web application security.The OWASP Top 10 is a regularly updated list of some of the most critical risks in application security. Vulnerable and Outdated Components is…

    March 20, 2024
  • Guideline for preventing scams targeting employees and organizations

    Guideline for preventing scams targeting employees and organizations

    Overview In recent incidents, company employees are being targeted on WhatsApp by an unknown contact posing as eg the CEO. We have ourselves faced this issue however thanks to our robust security measures, none of the employees contacted fell victim to this fraudulent attempt. Immediate reporting to the team and blocking the unknown number showcased…

    January 22, 2024
  • How Kaizen, continuous improvement, helped with a great approach to optimisation and security.

    How Kaizen, continuous improvement, helped with a great approach to optimisation and security.

    The challenge?Every company/organisation has internal tasks which include organization goals, compliances, governing body requirements etc which need to be accomplished. These could be related to Finance Human Resource Documentation Security Operation Compliance Infrastructure In the mix of so many daunting challenges or issues it’s easy to get lost or push it for the future, when…

    December 12, 2023
  • Our festive offer of £1,000 discount for vulnerability / penetration test

    Our festive offer of £1,000 discount for vulnerability / penetration test

    Years back we started our security division because we noted a gap in the market. Regulatory body expected website and web service owners to ensure various security measures including conducting annual ethical hack (vulnerability/penetration test) however the charges for these was expensive. We felt the need for many of our clients and could not find…

    November 21, 2023
  • Company / employee handbook for vision and compliance policies and procedures

    Company / employee handbook for vision and compliance policies and procedures

    What is a company/employee handbook? A company handbook is a document which has all the key information that an employee, and others associated with the company might need for compliance and for understanding the companies vision, policy and procedures for general operations and data protection etc. It helps having a central document easily accessible by…

    October 18, 2023
  • Security Awareness Training Policy

    Security Awareness Training Policy

    Purpose The purpose of this Security Awareness Training Policy is to establish guidelines and requirements for the ongoing education and training of all employees, contractors, and third-party vendors of sapnagroup regarding cybersecurity best practices and threats. This policy aims to ensure that all individuals associated with the organization are well-informed and equipped to protect sensitive…

    September 21, 2023
  • Why are surveys and acknowledgements important for an organization for process compliance? And how to use Google forms for this.

    Why are surveys and acknowledgements important for an organization for process compliance? And how to use Google forms for this.

    Every organization has policies and procedures which are shared with the employees, partners, suppliers etc. In an ideal world everything will be fine, however from experience we all know things can go wrong. The management decides on the topics of a training program without checking with the staff or key players what problems employees face.…

    July 17, 2023
  • sapnagroup is migrating to a new password management system. Do you need to as well?

    sapnagroup is migrating to a new password management system. Do you need to as well?

    Why does one need a password manager? Central system for all your passwords One password to access all the others Secure way to store passwords What should one look for in a password manager? Sync across devices if needed Backups Master key or alternative recovery option Allows creating folders Allows performing search Active support and…

    June 12, 2023
  • Data & intellectual property protection/security, wrt ChatGPT, Bard AI and other tools; What’s your company policy?

    Data & intellectual property protection/security, wrt ChatGPT, Bard AI and other tools; What’s your company policy?

    Samsung banned the use of generative AI tools like ChatGPT by its employees after an accidental leak of sensitive internal source code by an engineer.  In January 2023, Amazon warned employees about sharing confidential information with ChatGPT after it noticed responses closely matching its existing material Major banks which include Bank of America, Deutsche Bank,…

    May 4, 2023

←Previous Page
1 2 3 4 … 9
Next Page→
           
  • Services
  • About
  • Team
  • Blog
  • Downloads
  • Contact
GDPR, Privacy and Cookies policy
Security policy

Impressum

Proud member of

Pimento Member