CISO Suite
What’s the Cause of the Problem?
This is the third post in a series of posts inspired by reading Sheryl Sandberg's book, Lean In: Women, Work, and the Will to Lead. In the previous post, I shared some of the statistics ...
Updating Your Risk Assessment Process for the Modern Era of GRC
Mastering the risk assessment process in the dynamic Governance, Risk, and Compliance (GRC) landscape is fundamental for your business’s stability and growth. Starting from scratch or regularly updating your risk register might ...
A CISO’s Guide to SaaS Security Posture Management
As today’s security threat environment evolves, SaaS security posture management (SSPM) has become a key part of a CISO's security defense plan ...
Security Boulevard
Risk Management Strategy in an Economic Downturn: How to Take a Holistic Approach to GRC
Economic uncertainty has been a hot topic for all businesses lately. The good news: the US economy might have avoided a recession, and rising interest rates haven’t slowed economic growth. However, bad ...
Getting Ahead of Cybersecurity Materiality Mayhem
Cybersecurity leaders must differentiate between strategic (material) and tactical threats in a cross-functional manner and determine 'materiality.' ...
Security Boulevard
Lost to the Highest Bidder: The Economics of Cybersecurity Staffing
When it comes to cybersecurity talent, supply and demand economics are amplified far beyond what is experienced in other fields ...
Security Boulevard
The Problem is the People, but Which People?
In my second job out of college, my boss' boss would often say, "Wherever you go there's always a problem and the problem is always the people." I wondered to myself, "Yeah, ...
Residual Risk Defined: Expert Strategies for Management and Mitigation
You may think you’ve covered all your bases, but can modern organizations let their guard down in the face of residual risks? Today’s corporations face increasingly complex risks, including new challenges that ...
10 steps to effective board leadership on cyber security
Boards and non executive directors can lead from the front on cyber security and reduce risk for your organisation. Yet sometimes it is not easy to find a path forward to engage ...
Enterprise Risk Management Solutions: Giving Equal Weight to Governance, Risk, and Compliance
In enterprise risk management (ERM), the “R” in Governance, Risk, and Compliance often commands the spotlight. However, organizations must assign equal importance to all three components. So, how do you maintain a ...