SC Magazine

MAY 11, 2021

Today’s columnist, Sean McDermott of RedMonocle, says that companies should use the NIST 800-53 security and privacy controls to help find cyber risk blind spots. After that, companies need to fund and then fix the security gaps. That’s how many CISOs and security leaders feel in the “find” stage. Credit: NIST.

Cyber Risk 66

Cyber Risk Risk CISO Digital transformation 66

CyberSecurity Insiders

JANUARY 24, 2022

by Great American, a powerful cyber risk management platform that combines the National Institute of Standards and Technology (NIST) driven, inside-out review of an organization’s cyber security posture with insights from continuous, external vulnerability scans and best-in-class cyber security ratings from SecurityScorecard.

Cyber Risk 52

Cyber Risk Insurance Risk Cyber Insurance 52

CyberSecurity Insiders

APRIL 29, 2022

ITAM makes non-traditional IT gadgets accessible to security officers, guaranteeing that all machines, like IoT equipment and supporting tools, are fully secure and up to date with the most recent safety and software updates. Conclusion.

Cyber Risk 122

Cyber Risk Software Risk IoT 122

The Last Watchdog

DECEMBER 31, 2019

Related: Good to know about IoT Physical security is often a second thought when it comes to information security. Despite this, physical security must be implemented correctly to prevent attackers from gaining physical access and taking whatever they desire.

Cyber Risk 173

Cyber Risk Risk Firewall Surveillance 173

The Security Ledger

MAY 3, 2022

The post Feel Good Ukraine Tractor Story Highlights Ag Cyber Risk appeared first on The Security Ledger with Paul F. Related Stories DEF CON: Security Holes in Deere, Case IH Shine Spotlight on Agriculture Cyber Risk Episode 235: Justine Bone of MedSec on Healthcare Insecurity Episode 234: Rep.

Cyber Risk 40

Cyber Risk Risk Cyber Attacks Healthcare 40

The Security Ledger

FEBRUARY 26, 2021

Here’s the deal with the information security industry in the United States: our country doesn’t have nearly the number of information security professionals that it needs. According to an estimate from Cybersecurity Ventures, the shortage of US cyber security workers could reach 500,000 people in 2021.

Cyber Risk 52

Cyber Risk Risk InfoSec Information Security 52

Security Boulevard

SEPTEMBER 9, 2022

As digital initiatives and supply chains extend attack surfaces and increase exposure, modern organizations face unprecedented security challenges. But hiring a full-time chief information security officer (CISO) is not always possible for organizations – nor is it always needed. SilverSky can help.

Information Security 57

Information Security CISO Risk Cybersecurity 57

The Security Ledger

SEPTEMBER 11, 2019

Third party cyber risk is growing. In this Spotlight Podcast, a companion to our new eBook, Rethinking Third Party Cyber Risk Management, we go deep on the topic of building a mature third party cyber risk program with Dave Stapleton the Director of Assessment. Third party cyber risk is growing.

Cyber Risk 40

Cyber Risk Risk Data privacy Insurance 40

SecureWorld News

MAY 27, 2021

6 key areas where NASA's information security is failing. General Accounting Office says previous audits have identified more than two dozen information security shortfalls at NASA that still need to be implemented. Pervasive weaknesses exist in NASA IT internal controls and risk management practices.

Cyber Risk 58

Cyber Risk Risk Architecture Cyber threats 58

The Security Ledger

AUGUST 20, 2019

Related Stories Episode 155: Disinformation is a Cyber Weapon and APTs warm to Mobile Malware Podcast Episode 117: Insurance Industry Confronts Silent Cyber Risk, Converged Threats NotPetya Horror Story Highlights Need for Holistic Security. Read Security Ledger coverage of NotPetya here.

Insurance 40

Insurance Cyber Risk Risk Cyber Insurance 40

Joseph Steinberg

DECEMBER 11, 2023

Veteran cybersecurity expert witness executive will help strengthen law enforcement capabilities to prevent, investigate, and prosecute information-age crimes. Steinberg has helped many organizations improve their management of cyber risk, and has assisted attorneys in achieving just compensation for parties wrongly harmed by cyberattacks.

Cybersecurity 250

Cybersecurity Artificial Intelligence CISO Technology 250

CSO Magazine

NOVEMBER 30, 2022

Ransomware and data breaches pose a massive risk to organizations, resulting in loss of customer trust and shareholder value, reputation damage, hefty fines, and penalties. Cyber risk is a top concern in US corporate boardrooms, elevating the role of the chief information security officer to rapid prominence.

CISO 88

CISO Cyber Risk Data breaches Information Security 88

Threatpost

DECEMBER 24, 2019

Cyber-disclosure statements noting how long a company can go without a breach can help customers understand the reality of cyber-incidents and their exposure to loss.

Cyber Risk 54

Cyber Risk Risk Data breaches InfoSec 54

Security Boulevard

APRIL 1, 2021

When it comes to information security and stressing the importance of cyber risk management, getting the whole company (especially the C-suite) on the same playing field becomes paramount. There’s no question that when diving into it for the first time, cyber security can be a daunting function.

Cyber Risk 137

Cyber Risk Information Security Risk 137

Schneier on Security

NOVEMBER 9, 2018

The privacy frontier facing research universities spans open access practices, uses and misuses of data, public records requests, cyber risk, and curating data for privacy protection.

Data collection 207

Data collection Cyber Risk Risk Government 207

CyberSecurity Insiders

AUGUST 13, 2021

As the needs in cyber risk management change, so must the credentials that support them. CAP information security practitioners champion system security commensurate with organizations’ missions and risk tolerance while meeting legal and regulatory requirements.

Risk 126

Risk Artificial Intelligence Cyber Risk IoT 126

Krebs on Security

DECEMBER 12, 2018

Is it fair to judge an organization’s information security posture simply by looking at its Internet-facing assets for weaknesses commonly sought after and exploited by attackers, such as outdated software or accidentally exposed data and devices? the security posture of vendor partners). How useful is such a score?

Cyber Risk 187

Cyber Risk Energy and Utilities Risk Marketing 187

Centraleyes

FEBRUARY 13, 2024

Enter the need for a more precise and actionable approach — Cyber Risk Quantification. This blog aims to serve as a guide to navigating the intricate terrain of cyber risk quantification, providing insights into its significance, methodologies, and the transformative impact it can have on organizational cybersecurity strategies.

Risk 52

Risk Cyber Risk Cybersecurity Penetration Testing 52

CyberSecurity Insiders

DECEMBER 14, 2021

“Enterprises use an array of tools to generate and manage data, and each tool has its own security settings – making it difficult to review every setting and control access across all their disparate technology,” said Brian Spanswick, chief information security officer, Cohesity.

Cyber Risk 52

Cyber Risk Ransomware Risk Backups 52

The Security Ledger

JULY 22, 2020

In this Spotlight podcast* we’re joined by Andrew Jaquith, the CISO at QOMPLX to talk about how the COVID pandemic is highlighting longstanding problems with cyber risk management and cyber resilience. Andy Jaquith is the Chief Information Security Officer at QOMPLX Inc. Read the whole entry. »

CISO 52

CISO Cyber Risk Ransomware Risk 52

The Security Ledger

OCTOBER 28, 2021

In this Spotlight edition of the podcast, we’re joined by Curtis Simpson, the Chief Information Security Officer at Armis. Curtis and I discuss the growing cyber risks posed by Internet of Things devices within enterprise networks. Curtis Simpson is the Chief Information Security Officer at Armis.

IoT 98

IoT Risk CISO Cyber Risk 98

The Last Watchdog

JANUARY 9, 2023

It’s important to continually assess security posture and take corrective action when necessary. Neumetric helps organizations perform DPIAs as well as numerous other types of cybersecurity and cyber risk assessments, in addition to security awareness training for employees.

Data privacy 210

Data privacy Small Business Data collection Cyber Risk 210

The Security Ledger

MAY 2, 2024

Jim and I talk about the findings of DirectDefense’s latest Security Operations Threat Report and dig into the intriguing ways artificial intelligence (AI) is shaping both cyberattack and defense automation strategies. Jim Broome is the President and CTO at DirectDefense.

Cyber threats 52

Cyber threats Artificial Intelligence Threat Reports Technology 52

Security Affairs

DECEMBER 28, 2022

With the increase in the number of cyber attacks, a growing number of organizations opted to transfer the cyber risk by underwriting cyber insurance. The increase in cyber losses in recent years pushed up prices, some insurance companies also changed their policies to limit their refunds in case of cyber incidents.

Cyber Attacks 91

Cyber Attacks Cyber Insurance Insurance Cyber Risk 91

Security Affairs

APRIL 11, 2021

Cyber risk is both a social risk in terms of safety and security, as well as a governance risk in terms of management effectiveness. A utility’s ESG Relevance Score would be elevated if cyber risk were deemed to be material to the rating.” SecurityAffairs – hacking, cyber risk).

Risk 113

Risk Cyber Risk Cyber Attacks Government 113

The Security Ledger

MARCH 19, 2021

In this week’s episode of the podcast (#207) we speak with Sara Tatsis of the firm Blackberry about her 20 year career at the legendary mobile device maker and the myriad challenges attracting women to- and keeping them in the information security field. Read the whole entry. »

Cyber Risk 52

Cyber Risk Surveillance InfoSec Mobile 52

The Security Ledger

MARCH 19, 2021

In this week’s episode of the podcast (#207) we speak with Sara Tatsis of the firm Blackberry about her 20 year career at the legendary mobile device maker and the myriad challenges attracting women to- and keeping them in the information security field. Read the whole entry. »

Cyber Risk 52

Cyber Risk Surveillance InfoSec Mobile 52

SecureWorld News

NOVEMBER 2, 2022

Kip Boyle is the virtual Chief Information Security Officer (vCISO) for several companies. He helps senior decision makers overcome cybersecurity sales objections and manages unlimited cyber risks through rigorous prioritization. A : I own a small business called Cyber Risk Opportunities LLC.

Cybersecurity 82

Cybersecurity Cyber Insurance Insurance Cyber Risk 82

The Security Ledger

DECEMBER 9, 2019

Gerald Beuchelt, the Chief Information Security Officer at LogMeIn talks about how changes in authentication may deliver a passwordless future. Imagining the Future of Authentication appeared first on The Security. Will we ever rid ourselves of them and, if so, how? The post Passwordless? Read the whole entry. »

Authentication 52

Authentication Passwords Cyber Risk Information Security 52

Centraleyes

NOVEMBER 8, 2023

stock exchanges must adhere to the cyber risk management and material incident reporting guidelines, commencing in mid-December 2023 (or Spring 2024 for qualifying small companies). Review and Strengthen Your Cyber Risk Management Program: Ensure that your cybersecurity risk management program adheres to best practices and is robust.

CISO 52

CISO Cyber Risk Risk Cybersecurity 52

CyberSecurity Insiders

NOVEMBER 4, 2021

Cyber Security Analyst is paid £40k as a minimum basic pay and the max he/she can get is £80k. And the role he/she needs to play is to track down any potential cyber risks existing in the IT infrastructure and keep it free from issues such as data theft, Ddos attacks and ransomware attacks.

Cybersecurity 99

Cybersecurity CISO DDOS Cyber Risk 99

Security Boulevard

OCTOBER 25, 2021

Wouldn’t it be great if you had enough confidence in your information security program that if a criminal gang attacked you, you would be able to defend yourself, keep your business going and notify the appropriate legal authorities and any vendor partners that might be impacted? The post Can you Become Ransomware-Proof?

Ransomware 130

Ransomware Information Security Cyber Risk CISO 130

Security Affairs

FEBRUARY 4, 2024

The spectrum of cyber risks associated with this new development transforms proportionally, ranging from the use of this information in further fraudulent and scam campaigns to targeted phishing and malicious cyber activity.

Scams 127

Scams Passwords Phishing Accountability 127

SecureWorld News

NOVEMBER 4, 2020

Cyber risk is business risk. Mattel's ransomware attack is more evidence that cyber risk is also business risk. And look what we found in the small print of Mattel's 10-Q statement, where it lists material risks: ".legal,

Ransomware 57

Ransomware Cyber Risk Risk Retail 57

The Security Ledger

MARCH 12, 2021

Women are more than 50% of the population, but barely 20% of the information security workforce. In this encore episode of the podcast, in honor of Women’s History Month, we’re revisiting a 2019 interview with Veracode CEO Sam King to talk about the information security industry’s struggles to attract and retain talented women.

Information Security 52

Information Security Hacking Cyber Risk Accountability 52

The Security Ledger

APRIL 2, 2021

The information security industry needs both better tools to fight adversaries, and more people to do the fighting, says Fortinet Deputy CISO Renee Tarun in this interview with The Security Ledger Podcast’s Paul Roberts. The information security industry is simultaneously robust and beset by problems and challenges.

InfoSec 52

InfoSec CISO Information Security Cyber Risk 52

The Security Ledger

JANUARY 22, 2021

» Related Stories Episode 195: Cyber Monday Super Deals Carry Cyber Risk Episode 198: Must Hear Interviews from 2020 DHS Looking Into Cyber Risk from TCL Smart TVs. Life for independent security researchers has changed a lot in the last 30 years. Update: DHS Looking Into Cyber Risk from TCL Smart TVs.

Hacking 52

Hacking Cyber Risk Software Risk 52