Securapilot (Kim Borg)Feb 3

🔐 Hot take: If your ISO 27001 Statement of Applicability still uses binary "Implemented / Not Implemented" for control status, you're losing valuable insight.

We've adopted the N-P-L-F scale from ISO/IEC 15504 (now 33020):

N – Not achieved (0–15%)
P – Partially achieved (>15–50%)
L – Largely achieved (>50–85%)
F – Fully achieved (>85–100%)

It turns the SOA from a checkbox exercise into a real maturity roadmap and auditors appreciate the transparency.

How do you handle implementation status in your SOA? Binary, CMMI-style levels or something else entirely? 😅

#ISO27001 #InfoSec #ISMS #GRC #Compliance #SecurityMaturity

Finite StateJun 26, 2025

Immature product security isn’t just inefficient, it’s dangerous, & organizations can’t afford to treat it as an afterthought anymore.

Learn more in our latest blog 👉 https://finitestate.io/blog/immature-product-security-risks

#ProductSecurity #CyberSecurity #IoTSecurity #DevSecOps #SecurityMaturity

The Real Costs of Immature Product Security Programs

Immature product security programs create hidden costs, from delayed launches to regulatory fines. Learn how to reduce risk and mature your security.

dispatchJul 21, 2023
Few Fortune 100 Firms List Security Pros in Their Executive Ranks https://krebsonsecurity.com/2023/07/few-fortune-100-firms-list-security-pros-in-their-executive-ranks/ #securitymaturity #ALittleSunshine #DatosInsights #TariSchreider #Accenture #IANS
Few Fortune 100 Firms List Security Pros in Their Executive Ranks – Krebs on Security

KrebsOnSecurity RSSJul 21, 2023

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

https://krebsonsecurity.com/2023/07/few-fortune-100-firms-list-security-pros-in-their-executive-ranks/

#securitymaturity #ALittleSunshine #DatosInsights #TariSchreider #Accenture #IANS

Few Fortune 100 Firms List Security Pros in Their Executive Ranks – Krebs on Security

ITSEC NewsJul 21, 2023
Few Fortune 100 Firms List Security Pros in Their Executive Ranks - Many things have changed since 2018, such as the names of the companies in the For... https://krebsonsecurity.com/2023/07/few-fortune-100-firms-list-security-pros-in-their-executive-ranks/ #securitymaturity #alittlesunshine #datosinsights #tarischreider #accenture #ians
Few Fortune 100 Firms List Security Pros in Their Executive Ranks – Krebs on Security

OPSEC Cybersecurity News LiveDec 9, 2022
Preparing for 2023 and what lies in store for Endpoint Security

https://blogs.cisco.com/security/preparing-for-2023-and-what-lies-in-store-for-endpoint-security

#Securityresilience #endpointsecurity #securitymaturity #securitytrends #Security #survey
Preparing for 2023 and what lies in store for Endpoint Security

Cisco surveyed 100 IT & security leaders on the Gartner Peer Insights platform to understand their level of security and their view on endpoint security’s future.

Cisco Blogs