Articles By Brian Rutledge

Brian Rutledge

Principal Security Manager

Brian Rutledge is a Certified Information Systems Security Professional (CISSP) in the cybersecurity industry for more than 20 years. He’s currently the security and compliance engineer at Spanning driving all audit compliance initiatives and managing the company's overall security posture. Previously, Brian was a PCI DSS Qualified Security Assessor (QSA) for Trustwave Holdings working with small business, banking, and enterprise clients to help them become Payment Card Industry compliant. Brian has worked in the telecom industry for notable companies like Verizon and MCI maintaining the Windows server infrastructure and driving vulnerability management programs. Brian has also worked as a navigation electronics technician aboard a US Navy submarine.

Business Continuity and Disaster Recovery: Your Organization’s Safety Plan

From hurricanes, errant employees, malware to even a rodent with an appetite for cables — the likelihood of an organization suffering data loss has never been greater. An organization’s best defense is to plan for business continuity and disaster recovery by using processes that guide organizations to possibly prevent and/or better manage an (unpredictable) disruptive event.


READ MORE >


Gone Phishing: Everything You Need to Know About the Ever Present Threat to Your Data

Phishing is a critical security issue that can trick even the most diligent, security-minded users. How do you protect your organization from being another phish in the sea? Let’s start by understanding how phishing works and then move on to practical pointers to avoiding biting the bait.


READ MORE >


How Are You Celebrating National Security Awareness Month?

This October is the 15th annual National Cybersecurity Awareness Month (NCSAM), an initiative to raise awareness about the importance of cybersecurity that grows stronger by the year in significance and scope. This is no surprise given that breaches and malware attacks are getting more frequent, and they don’t discriminate against industry. A cross-section of companies from government, healthcare, finance and retail to nonprofits, car-sharing, and even the Port of San Diego have faced ransomware attacks.


READ MORE >


Learning Held Hostage – How to Prepare for and Prevent Data Loss Due to Ransomware

At the beginning of 2018, the FBI and the Department of Education Inspector General revealed that hackers had tried to sell over 100 million private records from almost 100 schools and businesses as of the end of last year. 100 million records seems like a lot, but when you consider that more than 63 percent of organizations experienced an attempted ransomware attack in 2017, with 22 percent reporting these incidents occurred on a weekly basis, it’s easy to see how pervasive and far-reaching the threat of ransomware is.


READ MORE >


GDPR 2.0 Comes to the United States

On June 28 2018, California Governor Jerry Brown signed into law AB 375, the California Consumer Privacy Act (CCPA) of 2018. The statute, seen as one of the toughest privacy laws in the United States, will require companies to tell California residents what information is being collected and how it’s used. You have 18 months to get ready.


READ MORE >


Prepare or Repair: Pointers for Both Sides of a Ransomware Attack

Ransomware attacks are increasing, getting more sophisticated and sparing no industry. In this blog we examine both sides of a ransomware attack — ways to prepare a solid defense (or offense) to prevent an attack and pointers to repair the damage if you do suffer an attack.


READ MORE >


Countdown to GDPR #10: A GDPR Compliance Checklist

We’ve made it all the way to number 10 in our blog series, and just in in time for Friday, May 25, 2018, the date the GDPR will become enforceable. But relax, we’re here to provide you with peace of mind in the last blog of our GDPR series with tips and pointers to keep you GDPR compliant — on May 25, and beyond.


READ MORE >


Countdown to GDPR #9: How is Spanning Preparing for GDPR?

In the last three blogs of our GDPR series, we examine the impact of the GDPR on your organization, Spanning and SaaS providers in general. In blog #9 in the series, we take a look at our journey to GDPR compliance and provide you with tips for your own organization.


READ MORE >


Countdown to GDPR #8: What is the GDPR Impact on SaaS Providers?

In our GDPR series to date we’ve analyzed the important directives and ways for you to be compliant with them. In our final three blogs, we examine the impact of GDPR on your organization, Spanning and SaaS providers in general. Read #8 for the impact of the GDPR on SaaS Providers.


READ MORE >


Countdown to GDPR #7: Data Protection Impact Assessment

We’re onto #7 in our 10-part GDPR blog series. In this blog post, we tackle Data Protection Impact Assessment (DPIA) and what it may mean for your organization. Read the entire GDPR series to get ready for 25 May 2018.


READ MORE >