The Key To Turning Your Security Program Into A Marketing Asset While Staying Secure

It is often said, “if you don’t want something noticed, don’t talk about it”. This is true of a bad GPA, a stain on a carpet, or a project you might have missed a deadline for. Many security leaders see their security programs in this way too - talking about ... Read More

Solving The Cybersecurity Skills Gap Through Employee “Crosswalking”

It is no shock to those in the cyber community that cybersecurity has become a board-level issue for many enterprises. A PwC survey showed a 20% increase in CEO’s concern over cyber threats. With more and more eyes on CISO’s and their teams, the cybersecurity skills gap has continued to ... Read More

The Corporate Compliance and Oversight Solution Buying Guide

Corporate compliance and oversight (CCO) is one of the main pillars to a strong integrated risk management (IRM) program and solution. Today, compliance leaders are faced with a rapidly changing landscape of new compliance requirements from regulatory bodies, partners, and vendors. When iterating your CCO program, ensure that the solution ... Read More

Securing the AI powered enterprise

Machine learning and artificial intelligence (AI) has become the competitive differentiator of our time. By 2020, Gartner predicts that almost all new products to enter the market will integrate some form of ‘smart’ functionality. All AI, though, requires data to train - both general to the function and data specific ... Read More

In Review: NIST Cybersecurity Risk Management Conference

|
From November 7th-9th, NIST hosted their annual Cybersecurity Risk Management conference in Baltimore. At the conference, NIST assembled some of the greatest minds in cybersecurity spanning multiple industries and company sizes to discuss the current risk landscape and how the NIST frameworks (CSF, RMF, etc.) can help mitigate and manage ... Read More

Shift to Integrated Risk Management and a Risk-Based Lens

Why a compliance-based mindset will fail With the National Cyber Strategy, the rise of regulations like the CCPA and GDPR, the future for a compliance-based CISO is a patchwork of cross-border regulations that will result in further fractionation of an already siloed cybersecurity organization. Without a common thread or foundation ... Read More

The Supply Chain Risk Management Solution Buying Guide

In an ongoing effort to secure their organizations, CISO’s are continually challenged with an ever-expanding list of vendors and vendor risk. In fact, 75% of mid-sized companies and enterprises expect their vendor list to grow by 20% or more in the coming years, while only 38% are very confident that ... Read More

National Cyber Strategy Signals Changes To DFARS Mandate

| | DFARS
As of December 2017, any member of the Department of Defense supply chain needed to implement the NIST Special Publication (SP) 800-171 to be compliant to Defense Federal Acquisition Regulation Supplement (DFARS). For CISO’s in manufacturing and aerospace, this mandate caused massive reviews of cybersecurity posture and efforts to ensure ... Read More