Archive - Sensible Security

SOC 2 is dead, long live SOC 2!

With a healthy dose of in-depth continuous assurance

Sep 17 •

June 2024

Apple PCC is the future of consumer cloud computing we all deserve

Microsoft, Google, and literally everyone else need to get their act together

Jun 20, 2024 •

March 2024

Are we doing vulnerability management all wrong? Part 2.1: evolving beyond CVEs and the NVD

While working on part 3 of this series (title TBD), something strange happened in the world of vulnerability management: NIST’s NVD quietly posted a…

Mar 12, 2024 •

February 2024

Are we doing vulnerability management all wrong? Part 2: a better approach (maybe)

Update: part 2.1 is out in response to the NVD’s February 2024 service degradation announcement.

Feb 15, 2024 •

November 2023

Are we doing vulnerability management all wrong? Part 1: Probably

A call to action for more innovation and focus on proactive vulnerability management

Nov 2, 2023 •

December 2022

Protecting against a password manager breach: part 2

A recipe for keeping your online accounts safe

Dec 23, 2022 •

Protecting against a password manager breach: part 1

Prepare for the inevitable to avoid digital disaster

Dec 13, 2022 •

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts