Cyber Risk, Event and Information Security

GUEST ESSAY: As cyber risks rise in 2020, as they surely will, don’t overlook physical security

The Last Watchdog

DECEMBER 31, 2019

Physical security is the protection of personnel and IT infrastructure (such as hardware, software, and data) from physical actions and events that could cause severe damage to an organization. Related: Good to know about IoT Physical security is often a second thought when it comes to information security.

Cyber Risk

Cyber Risk Risk Firewall Surveillance

How to Use Your Asset Management Software to Reduce Cyber Risks

CyberSecurity Insiders

APRIL 29, 2022

Ambiguity about cyber security threats, legal responsibilities, and unexpected events is exacerbated for IT security professionals who don’t understand where resources are positioned, how well they are handled, or whether they are susceptible. . . Respond fast to incidents via IT experts. . Conclusion.

Cyber Risk

Cyber Risk Software Risk IoT

Unlock Your Cybersecurity Potential: SecureWorld PLUS Training Courses

SecureWorld News

JANUARY 22, 2025

By the end of the course, you'll have a clear understanding of how AI impacts cybersecurity and practical steps your organization can take to securely adopt and maintain AI systems. Cyber Risk Mapping (CR-MAP) Conduct a step-by-step CR-MAP of your organization to identify vulnerabilities, create remediation plans, and minimize cyber risks.

Cybersecurity

Cybersecurity Artificial Intelligence Cyber Risk Risk

Fitch Ratings: Cyberattacks could pose a material risk to water and sewer utilities

Security Affairs

APRIL 11, 2021

Fitch Ratings published an alert last week to warn of the “material risk” to water and sewer utilities caused by cyber attacks that could also impact their ability to repay debt. Cyber risk is both a social risk in terms of safety and security, as well as a governance risk in terms of management effectiveness.

Risk

Risk Cyber Risk Cyber Attacks Government

How Diversity and Inclusion Initiatives Can Reduce Cyber Risk

Centraleyes

NOVEMBER 26, 2023

In the aftermath of the national reckoning on racial justice ignited by the tragic events involving George Floyd, it became evident that despite good intentions, the cybersecurity sector had not tackled the field’s predominantly white and male composition. User-Centric Design Poor user decisions often exacerbate cyber risk.

Cyber Risk

Cyber Risk Risk Cybersecurity Cyber threats

News alert: Blackwired launches ‘ThirdWatch?’ — an advanced third-party risk management platform

The Last Watchdog

SEPTEMBER 4, 2024

is a subject-directed monitoring platform that provides a comprehensive 360-degree view in 3D of existential threats that impact organizations and the associated cyber risks posed by their vendors, partners, suppliers, networks, and digital assets. As cyber risks escalate, ThirdWatch? ThirdWatch?

Risk

Risk Artificial Intelligence Cyber Risk Cyber threats

Six strategic cyber investments for the next six months – and beyond

CyberSecurity Insiders

MARCH 23, 2022

We are also now seeing the proliferation of weaponized cyberattacks in the face of geopolitical events. This new era of attacks demonstrate that the cyber landscape will never be the same. Real-time cyber risk monitoring enables firms to protect their most sensitive data and safeguard against internal and external threats.

Cyber Risk

Cyber Risk Risk Ransomware Technology

Episode 205 – Google’s Camille Stewart: InfoSec’s Lack of Diversity is a Cyber Risk

The Security Ledger

FEBRUARY 26, 2021

Here’s the deal with the information security industry in the United States: our country doesn’t have nearly the number of information security professionals that it needs. According to an estimate from Cybersecurity Ventures, the shortage of US cyber security workers could reach 500,000 people in 2021.

Cyber Risk

Cyber Risk Risk InfoSec Information Security

Hiring – Technical Cybersecurity Consultant

BH Consulting

MARCH 13, 2025

We provide a market leading range of information security services focused on cybersecurity, cyber risk management, ISO 27001, and data protection. Deliver cybersecurity GRC related projects to clients, including, internal audits, risk assessments, security maturity assessments and ISO 27001 certification projects.

Cybersecurity

Cybersecurity Risk Cyber Risk Information Security

Story of the Year: global IT outages and supply chain attacks

SecureList

DECEMBER 9, 2024

This incident serves as a stark reminder of the critical risks posed by global IT disruptions and supply chain weaknesses. As part of Kaspersky Security Bulletin 2024, our “Story of the Year” centers on these pressing issues. However, delegating tasks also introduces new information security challenges.

Internet

Internet Internet Risk Social Engineering

Sopra Steria estimates financial Impact of ransomware attack could reach €50 Million

Security Affairs

NOVEMBER 29, 2020

The Group’s insurance coverage for cyber risks totals €30 million.” The IT services provider said that sales activity for the fourth quarter should not be significantly affected by this event. ” the company added. Sopra Steria expects to see negative organic revenue growth of between 4.5%

Ransomware

Ransomware Insurance Cyber Risk Media

Spotlight on Cybersecurity Leaders: Kip Boyle

SecureWorld News

NOVEMBER 2, 2022

In the SecureWorld Spotlight Series, we learn about the speakers and Advisory Council members that make our events a success. Kip Boyle is the virtual Chief Information Security Officer (vCISO) for several companies. A : I own a small business called Cyber Risk Opportunities LLC.

Cybersecurity

Cybersecurity Cyber Insurance Insurance Cyber Risk

Charlotte Conference Kicks Off Season with Thought Leaders' Expertise

SecureWorld News

MARCH 8, 2023

The 2023 event saw a 33 percent increase in Conference Pass attendees over the 2022 event. The next opportunity to catch a SecureWorld event is SecureWorld Boston , taking place at the Hynes Convention Center on March 22-23.

Cybersecurity

Cybersecurity Risk InfoSec Data privacy

SPOTLIGHT: Women in Cybersecurity

McAfee

NOVEMBER 3, 2020

The RSA Conference USA 2019 held in San Francisco — which is the world’s largest cybersecurity event with more than 40,000 people and 740 speakers — is a decent measuring stick for representation of women in this field. “At Please join McAfee, AWS, and our customers to discuss the impact women are having on information security in the cloud.

Cybersecurity

Cybersecurity Architecture Cloud Migration Retail

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Centraleyes

MARCH 13, 2025

The regulation requires an incident response plan outlining how to detect, respond to, and recover from cybersecurity events. Enhanced Governance Requirements Entities must appoint a qualified Chief Information Security Officer (CISO) with a direct reporting line to the board of directors. These changes took effect in 2024.

Cybersecurity

Cybersecurity Financial Services Risk Encryption

New for '22: NIST Updating its Cybersecurity Framework

SecureWorld News

DECEMBER 10, 2021

Considering new features that will help organizations better manage their cyber risk, and drawing on current CSF users and the cyber community to identify what these things might be. NIST will for the information security community's input in early 2022 and we'll let you know when that happens.

Cybersecurity

Cybersecurity Technology Cyber Risk CISO

New York SHIELD Act: Everything You Need to Know for Compliance

Centraleyes

MARCH 3, 2025

Similarly, the states Information Security Breach and Notification Act (2005) was one of the earliest breach notification laws in the U.S., NYDOH Oversight (10 NYCRR 405.46) The New York Department of Health enforces standards for securing healthcare data, complementing HRIPA and federal HIPAA requirements.

Data breaches

Data breaches Risk Financial Services Data privacy

Ransomware Attack Hits Carnival Cruise Corporation: What We Know

SecureWorld News

AUGUST 18, 2020

Here is Carnival Corporation's ransomware and cyber incident statement, in full: On August 15, 2020, Carnival Corporation and Carnival plc (together, the "Company," "we," "us," or "our") detected a ransomware attack that accessed and encrypted a portion of one brand’s information technology systems. And number one is cyber insurance.

Cyber Insurance

Cyber Insurance Ransomware Insurance Technology

InfoSec Leaders Weigh in on New SEC Rules Making CISO Hotseat Hotter

SecureWorld News

JULY 31, 2023

If you are a CISO today who is not getting face time with the board, look at this as an opportunity to continue to press for the need to discuss the current state and cyber risks currently being faced by the company. For sanity, manage to a written information security policy.

CISO

CISO InfoSec Risk Cybersecurity

New CACTUS ransomware appeared in the threat landscape

Security Affairs

MAY 9, 2023

“CACTUS essentially encrypts itself, making it harder to detect and helping it evade antivirus and network monitoring tools,” Laurie Iacono, Associate Managing Director for Cyber Risk at Kroll, told Bleeping Computer. The Cactus ransomware relies on multiple legitimate tools (e.g.

Ransomware

Ransomware VPN Antivirus Encryption

As market for cyber insurance booms, watchdog calls for better data

SC Magazine

MAY 24, 2021

In a report released May 20, the Government Accountability Office looked at how the private cybersecurity insurance market has developed over the past five yearsRich Baich is global chief information security officer for insurance giant AIG. billion in damages – that it caused a broader reevaluation of cyber risk by the industry.

Cyber Insurance

Cyber Insurance Insurance Marketing Cyber Risk

Insider Risk: Unconventional Thoughts and Lessons Learned

CyberSecurity Insiders

MAY 3, 2023

Investment in internal access control, auditing, and logging are often seen as secondary risks. As a result, policies and protocols insufficient to prevent or detect insider risk are implemented and only become a priority when there is a loss or impactful security event. government information security domains.

Risk

Risk Cyber threats Marketing Engineering

Risk Register Templates: Enhancing Your Risk Management Strategy

Centraleyes

SEPTEMBER 1, 2024

They emphasize regulatory risks and compliance requirements. Cyber Risk Register Template Cyber risk templates, or information security risk register templates focus on managing risks related to information security and cyber threats, helping organizations protect digital assets and respond effectively to incidents.

Risk

Risk Cyber Risk DDOS Data breaches

Cyber Insurance and the Changing Global Risk Environment

Security Affairs

APRIL 22, 2022

This shift to digital technology has created a new class of digital risks that are constantly evolving and strike faster and often with more severity than traditional risks. Our reliance on digital technology and the inherited risk is a key driving factor for buying cyber risk insurance.

Cyber Insurance

Cyber Insurance Insurance Risk Technology

2021 Security Outcomes Study: Stress Relief for CISOs

Cisco Security

FEBRUARY 19, 2021

This intensification of our digital life, with shopping, work, leisure, and several other activities that we were able to take into the networks, just shed more light on a confrontation that needs to be collective and global – the fight against cyber threats and crimes. Clear responses to events. Technological update.

CISO

CISO Technology Digital transformation Cybersecurity

How Do You Quantify Risk? Best Techniques

Centraleyes

FEBRUARY 13, 2024

Enter the need for a more precise and actionable approach — Cyber Risk Quantification. This blog aims to serve as a guide to navigating the intricate terrain of cyber risk quantification, providing insights into its significance, methodologies, and the transformative impact it can have on organizational cybersecurity strategies.

Risk

Risk Cyber Risk Cybersecurity Penetration Testing

Top Certifications in Cybersecurity and How they Can Advance Your Career

SecureWorld News

JULY 25, 2023

As organizations across industries grapple with escalating cyber risks, the demand for skilled information security professionals has skyrocketed. If you are looking to take advantage of this opportunity, head to SecureWorld's Events page to find a conference near you!

Cybersecurity

Cybersecurity Education Cyber threats Information Security

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

SC Magazine

FEBRUARY 8, 2021

Ultimately, he believes “this is good for businesses as, through the insurance process, they will gain better visibility into their cyber risks and measures they can deploy to keep digital operations secure and compliant to data privacy regulations.”. billion in premium. .

Insurance

Insurance Cybersecurity Cyber Insurance Government

7 Methods for Calculating Cybersecurity Risk Scores: A Guide to Risk Analysis

Centraleyes

AUGUST 12, 2024

Cyber risk scores measure the potential impact and likelihood of cyber threats. These scores help organizations prioritize their security efforts, allocate resources efficiently, and communicate risks to stakeholders clearly.

Risk

Risk Cybersecurity Cyber Risk Cyber threats

Spotlight on Cybersecurity Leaders: Krista Arndt

SecureWorld News

AUGUST 21, 2023

In the SecureWorld Spotlight Series, we learn about the speakers and Advisory Council members that make our events a success. Krista Arndt is the Chief Information Security Officer for United Musculoskeletal Partners (UMP). She has worked in and around security, risk, and governance since 2008 in various roles.

Cybersecurity

Cybersecurity Healthcare Risk Cyber Risk

The challenges of being a CISO during the COVID-19 pandemic

IT Security Guru

OCTOBER 14, 2021

The global COVID-19 pandemic has been a tumultuous time for Chief information security officers (CISOs) who on any given day have a long and complicated list of responsibilities. An explosion of cyber risks and a complicated and constantly changing threat landscape. Opportunities and positives on the security industry.

CISO

CISO Social Engineering Marketing Cyber Risk

What Is a SaaS Security Checklist? Tips & Free Template

eSecurity Planet

APRIL 9, 2024

Common compliance standards include GDPR, which governs data processing for EU members; PCI DSS, which guarantees safe credit card transactions; and NIST 800-53 for IT risk management. ISO 27000 is a standard for information security and SOC is for maintaining consumer data integrity and security across several dimensions.

Risk

Risk Threat Detection Data breaches Encryption

At Pride Summit: A Warning On Cyber Literacy

The Security Ledger

JULY 11, 2021

The post At Pride Summit: A Warning On Cyber Literacy appeared first on The Security Ledger with Paul F.

CSO

CSO Cyber Risk Ransomware Risk

Suing the CISO: SolarWinds Fires Back

SecureWorld News

AUGUST 5, 2021

However, this is not just another nameless, faceless piece of litigation; this one specifically names the company's Chief Information Security Officer. A group of investors filed the suit which specifically calls out SolarWinds, its former CEO, and also Tim Brown, who is VP of Security and CISO.

CISO

CISO Passwords Software Government

Cyber CEO: A Look Back at Cybersecurity in 2021

Herjavec Group

DECEMBER 15, 2021

This forced security leaders and enterprise executives to assess their information security operations and overall cybersecurity posture to ensure their organizations were ready to face the challenges ahead. Provide resources and training for your team on best practices and good cyber hygiene. Be Prepared for the Worst.

Cybersecurity

Cybersecurity Digital transformation Ransomware Cyber Risk

No more snack attacks? Mondelez hopes new security training program can help prevent the next ‘NotPetya’

SC Magazine

APRIL 14, 2021

Indeed, Nikolay Betov, information security officer at Mondelez, told SC media that this event “changed everything.” I joined information security in 2015… The area was really exciting and growing – and it grew even faster after that. Nikolay Betov, information security officer at Mondelez International.

Manufacturing

Manufacturing Security Awareness Phishing Passwords

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

It is vital for any enterprise landscape to ensure viable, open, and reliable corporate communications – fostering innovation and economic prosperity, with respect to safeguarding against disruption and serious cyber risk perception. What are the benefits of cyber security awareness trainings?

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

Strong medical device security awareness stifled by inventory, knowledge gaps

SC Magazine

JULY 1, 2021

This creates a major gap in security awareness, considering the 65,000 ransomware attacks deployed in the U.S. in the last year and the continued rise in cyber events. As the former chief information security officer of Boston Medical Center, Sehgal has seen a shift in the focus hospitals place on security.

Security Awareness

Security Awareness IoT Risk Healthcare

7 Things Every CISO Needs to Know About PKI

Security Boulevard

OCTOBER 7, 2022

With PKI, CISOs and other information security specialists can implement hardware, software, policies, and procedures to better establish, manage, distribute, implement, and protect digital certificates and key policies. See how Zero Touch PKI Can Be Customized to the Exact Security You Need! Focus on and defend the bottom line.

CISO

CISO Risk Cyber Attacks Technology

Top 5 Strategies for Vulnerability Mitigation

Centraleyes

DECEMBER 6, 2023

Vulnerability management is a critical element of information security. The technology surrounding information security is developing at a rapid pace and vulnerabilities are inevitable. Using a dedicated cybersecurity risk management platform can help you to stay informed of new vulnerabilities and threats.

Risk

Risk Cyber Risk Software Information Security

Episode 155: Disinformation is a Cyber Weapon and APTs warm to Mobile Malware

The Security Ledger

AUGUST 1, 2019

» Related Stories Israeli Group Exploited WhatsApp to Spy on Users Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk Episode 149: How Real is the Huawei Risk? The information security industry has been raising red flags about mobile malware for more than a decade.

Mobile

Mobile Malware Insurance Cyber Risk

What’s new at BH Consulting: marking European Cybersecurity Month and more

BH Consulting

NOVEMBER 3, 2020

In this blog, we’re rounding up some of the main events we were involved in during European Cybersecurity Month. Staying with the theme of awareness, we also published a security assurance checklist. Our preferred candidate will have at least 10 years’ background in cyber risk roles, with excellent leadership skills.

Cybersecurity

Cybersecurity Risk Ransomware Passwords

Understanding the Different Types of Audit Evidence

Centraleyes

APRIL 18, 2024

Risk Assessments These audits identify and mitigate potential threats and vulnerabilities, ensuring organizations are well-prepared for cyber risks. Documentary Evidence: Tangible and straightforward, documentary evidence encompasses policies, procedures, and documentation related to information security controls.

Risk

Risk Penetration Testing Encryption Information Security

Security Awareness Training and Human Risk Management Company AwareGO Achieves Year of Outstanding Growth

CyberSecurity Insiders

FEBRUARY 3, 2022

Created by cybersecurity experts, behavioral scientists, and interaction designers, the product continuously observes top human threat vectors, identifies vulnerable departments and roles, and offers actionable insights to create informed security strategies to improve a company’s overall cyber defense and reduce cybersecurity risks.

Security Awareness

Security Awareness Risk Marketing InfoSec

GUEST ESSAY: As cyber risks rise in 2020, as they surely will, don’t overlook physical security

How to Use Your Asset Management Software to Reduce Cyber Risks

Trending Sources

Unlock Your Cybersecurity Potential: SecureWorld PLUS Training Courses

Fitch Ratings: Cyberattacks could pose a material risk to water and sewer utilities

How Diversity and Inclusion Initiatives Can Reduce Cyber Risk

News alert: Blackwired launches ‘ThirdWatch?’ — an advanced third-party risk management platform

Six strategic cyber investments for the next six months – and beyond

Episode 205 – Google’s Camille Stewart: InfoSec’s Lack of Diversity is a Cyber Risk

Hiring – Technical Cybersecurity Consultant

Story of the Year: global IT outages and supply chain attacks

Sopra Steria estimates financial Impact of ransomware attack could reach €50 Million

Spotlight on Cybersecurity Leaders: Kip Boyle

Charlotte Conference Kicks Off Season with Thought Leaders' Expertise

SPOTLIGHT: Women in Cybersecurity

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

New for '22: NIST Updating its Cybersecurity Framework

New York SHIELD Act: Everything You Need to Know for Compliance

Ransomware Attack Hits Carnival Cruise Corporation: What We Know

InfoSec Leaders Weigh in on New SEC Rules Making CISO Hotseat Hotter

New CACTUS ransomware appeared in the threat landscape

As market for cyber insurance booms, watchdog calls for better data

Insider Risk: Unconventional Thoughts and Lessons Learned

Risk Register Templates: Enhancing Your Risk Management Strategy

Cyber Insurance and the Changing Global Risk Environment

2021 Security Outcomes Study: Stress Relief for CISOs

How Do You Quantify Risk? Best Techniques

Top Certifications in Cybersecurity and How they Can Advance Your Career

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

7 Methods for Calculating Cybersecurity Risk Scores: A Guide to Risk Analysis

Spotlight on Cybersecurity Leaders: Krista Arndt

The challenges of being a CISO during the COVID-19 pandemic

What Is a SaaS Security Checklist? Tips & Free Template

At Pride Summit: A Warning On Cyber Literacy

Suing the CISO: SolarWinds Fires Back

Cyber CEO: A Look Back at Cybersecurity in 2021

No more snack attacks? Mondelez hopes new security training program can help prevent the next ‘NotPetya’

Cyber Security Awareness and Risk Management

Strong medical device security awareness stifled by inventory, knowledge gaps

7 Things Every CISO Needs to Know About PKI

Top 5 Strategies for Vulnerability Mitigation

Episode 155: Disinformation is a Cyber Weapon and APTs warm to Mobile Malware

What’s new at BH Consulting: marking European Cybersecurity Month and more

Understanding the Different Types of Audit Evidence

Security Awareness Training and Human Risk Management Company AwareGO Achieves Year of Outstanding Growth

Stay Connected