Cyber Risk and InfoSec - Cyber Security Informer

MY TAKE: Peerlyst shares infosec intel; recognizes Last Watchdog as a top cybersecurity influencer

The Last Watchdog

OCTOBER 3, 2019

Started by infosec professionals, Peerlyst takes the characteristics of B2B communications we’ve become accustomed to on Twitter and LinkedIn and directs it toward cybersecurity. Related: Automating threat feed analysis Peerlyst is another step in that direction.

InfoSec

InfoSec B2B Cybersecurity Cyber Risk

News alert: One Identity wins 2024 Cyber Defense Award: Hot Company – PAM category

The Last Watchdog

DECEMBER 5, 2024

One Identity embodies three major features we judges look for with the potential to become winners: understanding tomorrows threats today, providing a cost-effective solution and innovating in unexpected ways that can help mitigate cyber risk and get one step ahead of the next breach, said Gary S. Ackerman Jr.

InfoSec

InfoSec Cyber Risk CISO Cybersecurity

Seeds of Destruction: Cyber Risk Is Growing in Agriculture

The Security Ledger

MAY 4, 2021

In this episode of the podcast (#213): Molly Jahn of DARPA and University of Wisconsin joins us to talk about the growing cyber risk to the Food and Agriculture sector, as industry consolidation and precision agriculture combine to increase the chances of cyber disruption of food production. Read the whole entry. »

Cyber Risk

Cyber Risk Risk Digital transformation InfoSec

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

Security Boulevard

DECEMBER 30, 2024

In partnership with senior executives, they need to pay close attention to the risks their companies face and the strategies those companies put in place to comply. As the rules were authorized in late 2023, we shared what we see as the implications for infosec leaders. View cyber risk as business risk.

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

Friday Five 7/9

Digital Guardian

JULY 9, 2021

Ransomware negotiators, cyber risks to the financial system, and why traditional passwords are here to stay - catch up on all of the week's infosec news with the Friday Five!

InfoSec

InfoSec Cyber Risk Passwords Ransomware

Secure Communications: Relevant or a Nice to Have?

Jane Frankland

FEBRUARY 7, 2025

When data breaches escalate, cyber-attacks grow more sophisticated, nation states ramp up their digital warfare, and regulations tighten the noose, staying ahead isnt just an optionits your only line of defence. Amid a backdrop of increasingly sophisticated and frequent cyberattacks, APTs are a growing concern for CISOs and cyber risk owners.

Cyber Risk

Cyber Risk CISO Risk Encryption

Incident Response: 5 Principles to Boost the Infosec/Legal Relationship

Threatpost

OCTOBER 11, 2021

Effective cyber-incident response means working well with legal. Matt Dunn, associate managing director for cyber-risk at Kroll, lays out how to do it.

InfoSec

InfoSec Cyber Risk Risk Hacking

InfoSec Leaders Weigh in on New SEC Rules Making CISO Hotseat Hotter

SecureWorld News

JULY 31, 2023

Cybersecurity professionals have various views on last week's news from the United States Securities and Exchange Commission (SEC) when it surprised the InfoSec community and the C-suites of corporate America.

CISO

CISO InfoSec Risk Cybersecurity

Assessing the Human Element in Cyber Risk Analysis

Threatpost

SEPTEMBER 24, 2018

The human factor doesn't have to be an intangible when assessing cyber risks within a company.

Cyber Risk

Cyber Risk Risk Data breaches InfoSec

Ostrich Cyber-Risk Welcomes Risk Management Expert Jack Whitsitt as Director of Risk Quantification

Security Boulevard

JANUARY 4, 2023

Jack Whitsitt, former InfoSec Risk Quantification Program Architect at. Freddie Mac, joins Ostrich Cyber-Risk as the Director of Risk. The post Ostrich Cyber-Risk Welcomes Risk Management Expert Jack Whitsitt as Director of Risk Quantification appeared first on Security Boulevard.

Cyber Risk

Cyber Risk Risk InfoSec

How security pros, the insurance industry, and regulators can combat ransomware

SC Magazine

APRIL 19, 2021

Rather than rely solely on factors like compliance or case law developing over time, embracing a risk management coordination role can help insurers take the fight to ransomware. Have insurers and infosec professionals coordinate closely on security risk metrics.

Insurance

Insurance Cyber Insurance Ransomware InfoSec

Episode 209: Fortinet’s Renee Tarun on Scaling InfoSec To Meet Tomorrow’s Challenges

The Security Ledger

APRIL 2, 2021

The post Episode 209: Fortinet’s Renee Tarun on Scaling InfoSec To Meet Tomorrow’s Challenges appeared first on The. Fixing InfoSec Demands Scale, Diversity. Read the whole entry. » The information security industry is simultaneously robust and beset by problems and challenges.

InfoSec

InfoSec CISO Information Security Cyber Risk

Peer Report Explores Concerns, Challenges Facing Cybersecurity Leaders

SecureWorld News

AUGUST 23, 2023

This morning, Critical Start released its first ever Cyber Risk Landscape Peer Report , which explores some of the major concerns and challenges currently confronting cybersecurity leaders as they manage risk within their organizations. Here are some comments on the cyber risk landscape from cybersecurity vendor experts.

Cybersecurity

Cybersecurity Cyber Risk Risk Cyber Insurance

5 Fundamental But Effective IoT Device Security Controls

Threatpost

APRIL 23, 2021

Matt Dunn, the associate managing director for cyber-risk at Kroll, discusses how to keep networks safe from insecure IoT devices.

IoT

IoT Cyber Risk Risk InfoSec

Cyber Risk Retainers: Not Another Insurance Policy

Threatpost

JUNE 7, 2022

The costs associated with a cyberattack can be significant, especially if a company does not have an Incident Response plan that addresses risk.

Cyber Risk

Cyber Risk Insurance Risk InfoSec

Episode 232: Log4j Won’t Go Away (And What To Do About It.)

The Security Ledger

DECEMBER 16, 2021

Tomislav tells us why issues related to Log4j won’t be going away anytime soon and how organizations must adapt to deal with the risk it poses. Episode 218: Denial of Sustenance Attacks -The Cyber Risk To Agriculture. Supply Chain Risks: The New Normal. Tomislav Peri?in Log4j: A Very Popular Library.

Cyber Risk

Cyber Risk Software InfoSec Risk

The Case for Cyber-Risk Prospectuses

Threatpost

DECEMBER 24, 2019

Cyber-disclosure statements noting how long a company can go without a breach can help customers understand the reality of cyber-incidents and their exposure to loss.

Cyber Risk

Cyber Risk Risk Data breaches InfoSec

This Is How Twitter Reacted to a log4j Weekend

SecureWorld News

DECEMBER 13, 2021

And Rob Joyce, the head of NSA Cyber, was also spreading the news: From there, the announcements kept pouring out. Minecraft warned users to secure Java versions of the game: Amazon Web Services posted about the new cyber risk on its blog: "This vulnerability is severe and due to the widespread adoption of Apache Log4j, its impact is large.".

InfoSec

InfoSec Cyber Risk Cybersecurity Risk

Is Remote Desktop Protocol Secure? It Can Be

Threatpost

JULY 13, 2021

Matt Dunn, associate managing director in Kroll's Cyber Risk practice, discusses options for securing RDP, which differ significantly in terms of effectiveness.

Cyber Risk

Cyber Risk Risk InfoSec Hacking

New York Financial Services Firms to Face More Cybersecurity Oversight

SecureWorld News

NOVEMBER 28, 2022

These requirements are a great example of how cyber risk isn't purely a bits and bytes issue to be 'handled by the security team,'" Jamil Farshchi, EVP and CISO at Equifax, said in a LinkedIn post today about the NYDFS proposal. Senior 'cyber deciphers' are now vital ~> Professional, experienced strategic communicators who also.

Financial Services

Financial Services Cybersecurity CISO InfoSec

CyberSaint STRONGER 2022 Conference Call for Speakers is Open!

CyberSecurity Insiders

FEBRUARY 1, 2022

BOSTON–( BUSINESS WIRE )– CyberSaint , the developer of the leading platform delivering cyber risk automation, today announced that the company is seeking speaker submissions for its virtual STRONGER conference, set to occur September 13th-15th 2022. InfoSec 360. Abstracts for each of the themes can be found below.

Digital transformation

Digital transformation InfoSec CISO Education

Cyber-Risk Business Cases: Using Economic Impact to Justify TIG Investment

Threatpost

SEPTEMBER 26, 2019

How to determine -- and communicate -- the value of Threat Intelligence Gateways (TIGs) in your enterprise.

Cyber Risk

Cyber Risk Risk InfoSec

Charlotte Conference Kicks Off Season with Thought Leaders' Expertise

SecureWorld News

MARCH 8, 2023

The next opportunity to catch a SecureWorld event is SecureWorld Boston , taking place at the Hynes Convention Center on March 22-23.

Cybersecurity

Cybersecurity Risk InfoSec Data privacy

December 15 Marks Deadline for SEC's New Cyber Disclosure Rules

SecureWorld News

DECEMBER 11, 2023

The SEC announced its new cyber incident disclosure rules on July 26, 2023, when it appeared the rules were effective immediately. We covered the new rules on July 31, with some thoughts from InfoSec leaders. Immediately or not, Dec. 15 is now here, and the new rules will be in effect.

CISO

CISO Risk Government CSO

Remember GDPR? Expect another set of cyber regulations around vulnerabilities

SC Magazine

APRIL 14, 2021

A seemingly arcane topic, every organization should have vulnerability management as top-of-mind when it comes to managing cyber risk. Finnish infosec pros organized to track and protect patients from further abuse. Why should organizations pay attention? For American organizations, only the GDPR wake-up call in 2018 compares.

Government

Government Risk Information Security InfoSec

Opinion: We need a way to talk about Cyber Physical Risk

The Security Ledger

JULY 15, 2019

It has to do with our evolving and still immature system of rating (and therefore thinking about) cyber risk. How does a flaw potentially affecting the integrity of printer management application get a “critical” severity rating and one affecting the integrity and operation of anesthesia machines get a “moderate” severity rating?

Risk

Risk InfoSec Cyber Risk Hacking

Spotlight Podcast: Security Automation is (and isn’t) the Future of Infosec

The Security Ledger

SEPTEMBER 18, 2019

We talk about the growing demand for security automation tools and how the chronic cyber security talent shortage in North America and. Read the whole entry. »

InfoSec

InfoSec Artificial Intelligence Computers and Electronics Telecommunications

Seven Massachusetts Cities Join Forces to Bolster Cybersecurity Posture

SecureWorld News

MAY 16, 2023

Brennan is speaking at SecureWorld Chicago on June 8, tackling the topic of "I Can See Clearly Now, the Threats Are Gone: The State of InfoSec and Threat Intelligence Today." Botts is Director of the Global Cyber Security Program at University of St. He, too, is speaking on a panel at SecureWorld Houston on May 18.

Cybersecurity

Cybersecurity Insurance Cyber Risk CISO

Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk

The Security Ledger

MAY 16, 2024

In this Spotlight Podcast, host Paul Roberts talks with Chris Walcutt, the CSO of DirectDefense about the rising cyber threats facing operational technology (OT) and how organizations that manage OT - including critical infrastructure owners can best manage increased cyber risks to OT environments. Read the whole entry. »

CSO

CSO Risk Energy and Utilities Social Engineering

Cyber CEO: How to Get Executive and Board Level Buy-In for Cybersecurity

Herjavec Group

MAY 27, 2021

InfoSec professionals tend to describe the benefits of a strong cybersecurity program with technical jargon and acronyms. Having been on both sides of the equation as the infosec executive and the enterprise leader, I can confidently say the key is to speak the language of the executive team and board. Believe me – I’ve been there !

Cybersecurity

Cybersecurity InfoSec Cyber Risk Risk

5 Essential Actions for Cybersecurity Leaders

SecureWorld News

JUNE 16, 2020

What is the CISA: Cyber Essentials Toolkit? And the Cyber Essentials Toolkit is a set of modules concentrating vital advice for IT and InfoSec into bit-sized pieces for employees and leaders to implement. CISA says it wants to break cybersecurity down to a series of essentials.

Cybersecurity

Cybersecurity InfoSec Risk Cyber Risk

Episode 207: Sarah Tatsis of BlackBerry on finding and Keeping Women in Cyber

The Security Ledger

MARCH 19, 2021

The post Episode 207: Sarah Tatsis of BlackBerry on finding and Keeping Women in Cyber. Episode 205 – Google’s Camille Stewart: InfoSec’s Lack of Diversity is a Cyber Risk. Read the whole entry. » to foster awareness of cybersecurity as a field and discipline.

Cyber Risk

Cyber Risk Surveillance InfoSec Information Security

Episode 207: Sara Tatsis of Blackberry on finding and Keeping Women in Cyber

The Security Ledger

MARCH 19, 2021

The post Episode 207: Sara Tatsis of Blackberry on finding and Keeping Women in Cyber. Episode 205 – Google’s Camille Stewart: InfoSec’s Lack of Diversity is a Cyber Risk. Read the whole entry. » to foster awareness of cybersecurity as a field and discipline.

Cyber Risk

Cyber Risk Surveillance InfoSec Information Security

Top 5 Security Trends this Summer: RSA Conference & Black Hat 2022

Webroot

JULY 25, 2022

Cyber insurance becomes mainstream discussion. As cyberattacks have become more costly and more challenging to track, cyber insurance has gained prominence across the industry. The cyber insurance market is expected to reach around $20B by 2025.

Cyber Insurance

Cyber Insurance Insurance Marketing Ransomware

Taking a Proactive Approach to Mitigating Ransomware Part 1: You Can’t Neglect the Application Layer

Security Boulevard

DECEMBER 6, 2023

The proliferation of attacks - 66% of organizations were hit in the past year - and the ability for threat actors to more easily execute these attacks at scale, makes ransomware “ arguably the biggest cyber risk facing organizations today.” The problem is putting those strategies into practice is easier said than done.

Ransomware

Ransomware Digital transformation InfoSec Risk

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

SC Magazine

FEBRUARY 8, 2021

Ultimately, he believes “this is good for businesses as, through the insurance process, they will gain better visibility into their cyber risks and measures they can deploy to keep digital operations secure and compliant to data privacy regulations.”. billion in premium. But much will rely on regulation.

Insurance

Insurance Cybersecurity Cyber Insurance Government

Global Cybersecurity Skills Gap Still Widening Despite Growing Workforce

SecureWorld News

NOVEMBER 7, 2023

With technological innovations like cloud computing, AI/ML, the Internet of Things, and more making cyber risks even more complex, qualified talent is hugely in demand. Cybersecurity is one of the fastest-growing professions, with demand far outpacing supply even in normal economic conditions.

Cybersecurity

Cybersecurity Artificial Intelligence Government Risk

Why CISOs Are Joining 'The Great Resignation'

SecureWorld News

DECEMBER 8, 2022

The CEO of BlackFog is quoted in the post as saying, "Adapting to a fast-changing landscape is key, however, and organizations need to ensure that their security teams are given the time and resources to devote to keeping pace with the latest thinking, frameworks and innovations designed to lower their cyber risk.".

CISO

CISO Cyber Risk Cybersecurity Accountability

10 Best Integrated Risk Management Solutions

Centraleyes

JULY 25, 2024

An integrated risk management (IRM) approach would have anticipated the vulnerabilities in such a critical artery of global trade, enabling stakeholders to foresee potential disruptions and implement contingency plans. Third-Party Reliance As businesses increasingly rely on third-party vendors , the associated risks also rise.

Risk

Risk Cyber Risk Cyber threats Government

Meet the 2021 SC Awards judges

SC Magazine

MAY 1, 2021

Since founding Cedric Leighton Associates, he has become an internationally known strategic risk expert. Leighton is also a founding partner of CYFORIX, specializing in the field of cyber risk. He is responsible for strategic technology systems that support and enhance the lives of people and communities across the globe.

Computers and Electronics

Computers and Electronics Technology Information Security Education

Herjavec Group is Recognized by Cyber Defence Black Unicorn Awards

Herjavec Group

AUGUST 2, 2021

He is a trusted cybersecurity advisor for the Government of Canada, was a panelist on the recent White House Summit on Cybersecurity, is a cyber expert featured on CNN, CNBC, ABC, and BNN, and is Google’s Most Searched Person in Cybersecurity. Along with these contributions, Robert is active in a number of impactful infosec initiatives.

InfoSec

InfoSec Cybersecurity Computers and Electronics Technology

Cyber Playbook: Information Technology vs Operational Technology – How to Leverage IT to Secure Your OT Systems

Herjavec Group

JANUARY 31, 2022

But technological advancement inherently results in greater cyber risk, and today’s OT systems are more vulnerable than ever. . As threat actors continue to target critical infrastructure and industrial assets, we have seen ICS cyber-attacks increase in frequency and sophistication.

Technology

Technology Cybersecurity InfoSec Software

Episode 162: Have We missed Electric Grid Cyber Attacks for Years? Also: Breaking Bad Security Habits

The Security Ledger

SEPTEMBER 25, 2019

» Related Stories Spotlight Podcast: Security Automation is (and isn’t) the Future of Infosec Episode 159: Deep Fakes and Election (in)Security with ZeroFOX Spotlight Podcast: Rethinking Your Third Party Cyber Risk Strategy. Read the whole entry. » grid happened in March of this year.

Cyber Attacks

Cyber Attacks Energy and Utilities Cyber Risk Firewall

NYDFS Cybersecurity Regulations: Will You Be Ready?

NopSec

JANUARY 4, 2017

Knowing where data are and what level of criticality to assign to the data is difficult and important, and requires significant collaboration among information security (infosec) and IT operations teams.

Cybersecurity

Cybersecurity Penetration Testing CISO Cyber Risk

MY TAKE: Peerlyst shares infosec intel; recognizes Last Watchdog as a top cybersecurity influencer

News alert: One Identity wins 2024 Cyber Defense Award: Hot Company – PAM category

Webinars

Trending Sources

Seeds of Destruction: Cyber Risk Is Growing in Agriculture

Webinars

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

Friday Five 7/9

Secure Communications: Relevant or a Nice to Have?

Incident Response: 5 Principles to Boost the Infosec/Legal Relationship

InfoSec Leaders Weigh in on New SEC Rules Making CISO Hotseat Hotter

Assessing the Human Element in Cyber Risk Analysis

Ostrich Cyber-Risk Welcomes Risk Management Expert Jack Whitsitt as Director of Risk Quantification

How security pros, the insurance industry, and regulators can combat ransomware

Episode 209: Fortinet’s Renee Tarun on Scaling InfoSec To Meet Tomorrow’s Challenges

Peer Report Explores Concerns, Challenges Facing Cybersecurity Leaders

5 Fundamental But Effective IoT Device Security Controls

Cyber Risk Retainers: Not Another Insurance Policy

Episode 232: Log4j Won’t Go Away (And What To Do About It.)

The Case for Cyber-Risk Prospectuses

This Is How Twitter Reacted to a log4j Weekend

Is Remote Desktop Protocol Secure? It Can Be

New York Financial Services Firms to Face More Cybersecurity Oversight

CyberSaint STRONGER 2022 Conference Call for Speakers is Open!

Cyber-Risk Business Cases: Using Economic Impact to Justify TIG Investment

Charlotte Conference Kicks Off Season with Thought Leaders' Expertise

December 15 Marks Deadline for SEC's New Cyber Disclosure Rules

Remember GDPR? Expect another set of cyber regulations around vulnerabilities

Opinion: We need a way to talk about Cyber Physical Risk

Spotlight Podcast: Security Automation is (and isn’t) the Future of Infosec

Seven Massachusetts Cities Join Forces to Bolster Cybersecurity Posture

Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk

Cyber CEO: How to Get Executive and Board Level Buy-In for Cybersecurity

5 Essential Actions for Cybersecurity Leaders

Episode 207: Sarah Tatsis of BlackBerry on finding and Keeping Women in Cyber

Episode 207: Sara Tatsis of Blackberry on finding and Keeping Women in Cyber

Top 5 Security Trends this Summer: RSA Conference & Black Hat 2022

Taking a Proactive Approach to Mitigating Ransomware Part 1: You Can’t Neglect the Application Layer

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

Global Cybersecurity Skills Gap Still Widening Despite Growing Workforce

Why CISOs Are Joining 'The Great Resignation'

10 Best Integrated Risk Management Solutions

Meet the 2021 SC Awards judges

Herjavec Group is Recognized by Cyber Defence Black Unicorn Awards

Cyber Playbook: Information Technology vs Operational Technology – How to Leverage IT to Secure Your OT Systems

Episode 162: Have We missed Electric Grid Cyber Attacks for Years? Also: Breaking Bad Security Habits

NYDFS Cybersecurity Regulations: Will You Be Ready?

Stay Connected