Mahesh CG

Senior Consultant – Information Security | Data Privacy Enthusiast | CIPM | CISA | CEH v11 | CCNA |

Social

Facebook
Twitter
LinkedIn
Instagram

My Recent Blogs

Schedule time with me

Blogs

Unlocking the Differences: A Closer Look at Identity and Access Management (IAM) and Privileged Access Management (PAM)

Identity and Access Management (IAM) and Privileged Access Management (PAM) are both critical components of an organization’s overall security strategy, but they serve different purposes. Understanding the differences between these two concepts is crucial for effectively managing and securing access to a company’s resources and data. IAM is a framework that controls who has access
Read More

Understanding Vulnerability Assessment and Penetration Testing (VAPT): Techniques, Tools, and Best Practices

Vulnerability Assessment and Penetration Testing (VAPT) is a security technique that helps identify and evaluate the security of a computer system, network, or web application. VAPT involves identifying vulnerabilities in a system or network through automated tools or manual testing and then attempting to exploit those vulnerabilities to evaluate the effectiveness of existing security controls. This process helps organizations identify potential vulnerabilities, prioritize, and address them, and ultimately improve their overall security posture.

Cybersecurity Career Path

Over the years, cybersecurity career paths have become more formalized as security incidents have increased and the skills required to keep companies safe have become more specialized. As a result, the cybersecurity field offers distinct career paths with milestones to be met and requirements to fulfill. The Information Systems Security Association (ISSA) International developed a career path
Read More

What is IT governance? A formal way to align IT & business strategy

7 things you should know about IT governance, including choosing a framework and how to ensure a smooth implementation. Organizations need an IT governance framework to ensure that their IT investments support business goals. The framework provides a structure for corporate and IT management to align the organization’s technology with its business strategy. The need
Read More

What is The CIA TRIAD?

The CIA TRIAD Helps to Increase Security, Ensure Business Continuity and Protect an Organization’s Reputation #Confidentiality, #integrity, and #availability — also known as the CIA triad—are often used to define the purpose of security. Using relevant and meaningful words, these terms help make security more understandable to management and users. What is the #CIATRIAD? Confidentiality Confidentiality involves
Read More

Risk Management

A security professional uses knowledge, skills, and experience to examine an organization’s operational risk management, develop strategies to use risk data effectively, work cross-functionally within an organization and report actionable information and findings to the stakeholders concerned. Terms such as threats, vulnerabilities, and assets are familiar to most cybersecurity professionals. ·       An asset is something in need
Read More
Verified by MonsterInsights