Virtually Simone

Tech News Analysis

Staying up to date

Grasping the relevance of frameworks like NIST, SOC2, FISMA, and more is essential to meaningful learning. Through my tech news analysis blog, I aim to connect theoretical concepts to real-world events, building a practical and applicable knowledge base.

  • GRC AI Agent Tool

    GRC AI Agent Tool

    I started this mini project about a month ago to get familiar with the rise of AI agent tools we are currently seeing overtake not only all tech news outlets, but also all over social media. Everyone is trying to sell you the architecture they created in tools like n8n. But why buy when you…

  • Is Concern of the NO FAKES Act Really Necessary?

    Is Concern of the NO FAKES Act Really Necessary?

    The Nurture Originals, Foster Art and Keep Entertainment Safe (NO FAKES) Act has had a controversial update that now addresses gen-AI “replicas” by creating an entirely new intellectual property infrastucture. Many critics argue that it crosses into over-censorship. The term digital replica is defined in S.4875 as “a newly-created, computer-generated, highly realistic electronic representation that…

  • NIST CSF 2.0 Tool: Part 3

    NIST CSF 2.0 Tool: Part 3

    My process in determining the policy and practice maturity has been lengthy, but I take pride in it being thorough. I first would read through the FISMA Report. There were 8 points of contention that the Office of Inspector General (OIG) and their contractor Clifton Larson Allen LLP (CLG) found with the VA’s current security…

  • NIST CSF 2.0 Tool: Part 2

    NIST CSF 2.0 Tool: Part 2

    Since the 2025 FISMA Audit for the VA’s 2024 Fiscal Year (FY) has not been released yet, I will be using data from both the 2023 FISMA Audit and the 2024 Financial Report. We begin our journey with first understanding the NIST CSF Core Functions and Categories. The NIST’s Core Functions include: Each one of…

  • Me v AI: An Experiment

    Me v AI: An Experiment

    I woke up today to an anxiety-inducing headline that preyed on one of my biggest ongoing fears: AI taking our jobs. While recently this fear had been mitigated due to what I would call an enlightening period – where after an enormous layoff season we have begun to come to terms with AI’s limits (with…

  • NIST CSF 2.0 Tool: Part 1

    NIST CSF 2.0 Tool: Part 1

    A masterpiece created by John Masserini applies the 2024 release of NIST CSF 2.0 and allows us mere mortals to take somewhat subjective cybersecurity scores and graphically display the overall policy and practice maturity level of an organization. Today I want to begin a project using this tool to grade a federal agency. After conducting…

  • TTX: Pulling the Plug

    TTX: Pulling the Plug

    One week ago BBC posted an article about Co-op’s fast-acting yet thoughtful response to a ransomware cyber attack (Source: BBC via Birmingham Mail). Co-op, also known as The Co-operative Group, is a British consumer co-operative ranging from grocery retailers to legal services. In fact, Co-Op Food, being its largest division, covers the largest geographical spread of…

Design a site like this with WordPress.com
Get started