Carl Carpenter, Author at PECB Insights

Carl Carpenter

Consultant at Arrakis Consulting Carl is a former CISO of a $6billion entity where he was responsible for protecting data of all types and regulatory environments such as FFIEC, HIPAA, and PCI as well as working with the FBI, IRS, and US Department of Labor around investigations relating to money laundering. He has performed assessments against Fortune 10 and 50 companies in the areas of GDPR, CCPA, ISO/IEC 27001, and as a CMMC-AB Registered Practitioner (RP). Carl currently performs CMMC assessments, as well as, CMMC pre-audit support to help ensure a successful CMMC audit. Carl is also a PECB trainer in ISO/IEC 27001, ISO/IEC 27032, and CMMC Foundations and hold numerous other certifications.

Penetration Testing Strategies for a Secure Network Infrastructure

Carl Carpenter

April 7, 2025

As a penetration tester, I find the penetration testing activity to be exciting! It’s exciting to be able to attack a target, legally mind you, with the intention of breaking in and stealing data or creating backdoors for persistent connections or any other sort of cool penetration testing activity. Before I…

CMMC, ISO/IEC 27001, and ISO/IEC 27032 Differences and Similarities

Carl Carpenter

February 18, 2022

In order to be able to discuss the similarities and differences between the three frameworks, we need to understand the background of each one. There certainly are some similarities between all three but also wide areas of vast differences. Firstly, we need to understand that ISO/IEC 27032 is really about…

50 Shades of Learning – The New Generation of #keeplearning

ISO/IEC 42001 Explained: Building Trust in AI Systems

The Fundamentals of ISO/IEC 27032 – What You Need to…

ISO/IEC 27002 New Version Highlights and Impacts on Compliance

DORA and Digital Resilience: A New Doctrine for the Era…

Integrating ISO/IEC 27001 and ISO 31000: A Risk-Based Approach to…

Building the Zero Trust Philosophy in Compliance with ISO/IEC 27001

Cybersecurity in the Age of Innovation: Safeguarding Next-Generation ICT Solutions

How Can Organizations Harness the Use of AI and Maintain…

Closing the Cyber Skills Gap with Inclusive Training Initiatives

Building a Culture of Risk Awareness in Organizations

Compliance and Cybersecurity: Building Trust in the Digital Age

The Future of AI Regulations and You

NIS2 for the Automotive Sector – Why Suppliers Must Mature…

Cybersecurity Challenges in Industry 4.0 – Risks and Mitigation Strategies…

The Future of Cybersecurity: Modernizing Red and Blue Team Strategies…

Operationalizing Responsible AI in Light of the EU AI Act:…

Cybersecurity with a Focus on the Financial Sector and Technology…

Q&A from the Webinar “The Role of ISO/IEC 27034 in…

Implementing Effective IT Governance with ISO Standards

Carl Carpenter

Penetration Testing Strategies for a Secure Network Infrastructure

CMMC, ISO/IEC 27001, and ISO/IEC 27032 Differences and Similarities

Newsletter

Subscribe to our newsletter and stay updated.