The Key To Turning Your Security Program Into A Marketing Asset While Staying Secure
It is often said, “if you don’t want something noticed, don’t talk about it”. This is true of a bad GPA, a stain on a carpet, or a project you might have missed a deadline for. Many security leaders see their security programs in this way too - talking about ... Read More
Solving The Cybersecurity Skills Gap Through Employee “Crosswalking”
It is no shock to those in the cyber community that cybersecurity has become a board-level issue for many enterprises. A PwC survey showed a 20% increase in CEO’s concern over cyber threats. With more and more eyes on CISO’s and their teams, the cybersecurity skills gap has continued to ... Read More
The Corporate Compliance and Oversight Solution Buying Guide
Corporate compliance and oversight (CCO) is one of the main pillars to a strong integrated risk management (IRM) program and solution. Today, compliance leaders are faced with a rapidly changing landscape of new compliance requirements from regulatory bodies, partners, and vendors. When iterating your CCO program, ensure that the solution ... Read More
Securing the AI powered enterprise
Machine learning and artificial intelligence (AI) has become the competitive differentiator of our time. By 2020, Gartner predicts that almost all new products to enter the market will integrate some form of ‘smart’ functionality. All AI, though, requires data to train - both general to the function and data specific ... Read More
In Review: NIST Cybersecurity Risk Management Conference
From November 7th-9th, NIST hosted their annual Cybersecurity Risk Management conference in Baltimore. At the conference, NIST assembled some of the greatest minds in cybersecurity spanning multiple industries and company sizes to discuss the current risk landscape and how the NIST frameworks (CSF, RMF, etc.) can help mitigate and manage ... Read More
Shift to Integrated Risk Management and a Risk-Based Lens
Why a compliance-based mindset will fail With the National Cyber Strategy, the rise of regulations like the CCPA and GDPR, the future for a compliance-based CISO is a patchwork of cross-border regulations that will result in further fractionation of an already siloed cybersecurity organization. Without a common thread or foundation ... Read More
The Supply Chain Risk Management Solution Buying Guide
In an ongoing effort to secure their organizations, CISO’s are continually challenged with an ever-expanding list of vendors and vendor risk. In fact, 75% of mid-sized companies and enterprises expect their vendor list to grow by 20% or more in the coming years, while only 38% are very confident that ... Read More
National Cyber Strategy Signals Changes To DFARS Mandate
As of December 2017, any member of the Department of Defense supply chain needed to implement the NIST Special Publication (SP) 800-171 to be compliant to Defense Federal Acquisition Regulation Supplement (DFARS). For CISO’s in manufacturing and aerospace, this mandate caused massive reviews of cybersecurity posture and efforts to ensure ... Read More