A major Communications & Media company faced a large number of long-lived vulnerabilities in their service delivery network for which the asset owner was unknown. Without an asset owner for whom to turn for remediation, each day the situation was going from bad to worse. Their existing manual ownership identification processes were hopelessly overwhelmed by […]
Read MoreIn 2023, DayBlink Consulting made substantial contributions to our local communities, with our team dedicating over 300 hours of volunteer service. This commitment led to $25K+ in donations and $40K+ in pro bono services delivered to organizations, enriching the communities we hold dear. Follow the link to explore the breadth of our involvement and its […]
Tysons Corner, VA, March 2nd, 2024 – DayBlink Consulting has placed 11th on Vault’s 2024 list of Best Boutique Consulting Firms to Work For, and 32nd on Vault’s 2024 Consulting 50: Best Consulting Firms to Work For. This marks the 8th year in a row that DayBlink Consulting has been recognized with this honor. DayBlink Consulting ranked […]
As the story goes, and more recently popularized in the movie The Founder, Ray Kroc was speaking to a class at Harvard when asked “What business is McDonalds in?” “Restaurants!” “Hospitality!” “Supply Chain!” “Franchising!” “Entertainment!” “No!” Ray laughed and replied to each student. “Ladies and gentlemen, I’m not in the hamburger business. My business is real estate.” This […]
Vulnerability Management as a function has been around as long as we’ve had sophisticated IT and security organizations. Yet the overall scope and responsibilities of that function have morphed considerably over the past decade. Many organizations used to use a very narrow definition of vulnerability and simply compare configurations and software versions against a database […]
The average cost of a data breach in the United States is nearly 10 million dollars, the highest of any country in the world. In spite of this, the United States does not have a single comprehensive federal consumer privacy law comparable to the European Union’s General Data Protection Regulation (“GDPR”). Due to the fragmented […]
AI-assisted code development (AICD) is a powerful tool that can be leveraged in the DevSecOps cycle to increase code efficiency. However, the increased speed and capacity for development also bring new risks to organizations. While organizations that are fast adopters of this technology will have a significant advantage over their competitors, their new development capabilities […]
Identifying a company’s most important assets to protect should arguably be any cybersecurity organization’s first priority. Traditionally, the Crown Jewels Analysis method is thorough and comprehensive, but arguably heavy and slow to scale. While this approach is considered to be the gold standard and a worthwhile investment, we argue that the approach may not be […]
Originally released in March 2022, version 4.0 of the Payment Card Industry Data Security Standard (PCI DSS 4.0) officially takes effect on March 31, 2024. The updated PCI DSS presents important changes to the world of payments, placing heavier emphasis on risk management practices, strong authentication capabilities and security awareness training. Learn more about the […]
Even though it’s widely known that culture alignment is important for business success, it’s often overlooked, especially within M&A scenarios. In many cases, there are clear operational and financial synergies that justify the transaction, and yet lacking culture alignment has led to countless failed integrations. Follow the link below to learn more about why cultural […]