cyber risk

Review: Engineering-grade OT security: A manager’s guide

critical infrastructure, cyber risk, cyberattack, Don't miss, Hot stuff, ICS/SCADA, News, Review, Reviews, Waterfall Security Solutions /

Review: Engineering-grade OT security: A manager’s guide 2024-01-08 at 08:01 By Helga Labus Andrew Ginter is a widely-read author on industrial security and a trusted advisor for industrial enterprises. He holds a BSc. in Applied Mathematics and an MSc. in Computer Science from the University of Calgary. He developed control system software products for Hewlett […]

React to this headline:

Loading spinner

Review: Engineering-grade OT security: A manager’s guide Read More »

Which cybersecurity controls are organizations struggling with?

BitSight, cyber risk, cybersecurity, Google, News, report, security controls, trends /

Which cybersecurity controls are organizations struggling with? 13/12/2023 at 13:02 By Help Net Security How are organizations performing across cybersecurity controls in the Minimum Viable Secure Product (MVSP) framework? A recent analysis by Bitsight and Google reveals some good and some bad results – and room for improvement. What is MVSP? Minimum Viable Secure Product

React to this headline:

Loading spinner

Which cybersecurity controls are organizations struggling with? Read More »

CISA offers cybersecurity services to non-federal orgs in critical infrastructure sector

CISA, critical infrastructure, cyber risk, Don't miss, Hot stuff, News, USA /

CISA offers cybersecurity services to non-federal orgs in critical infrastructure sector 22/11/2023 at 12:47 By Helga Labus The Cybersecurity and Infrastructure Security Agency (CISA) has announced a pilot program that aims to offer cybersecurity services to critical infrastructure entities as they have become a common target in cyberattacks. “In alignment with CISA’s ‘Target Rich, Resource

React to this headline:

Loading spinner

CISA offers cybersecurity services to non-federal orgs in critical infrastructure sector Read More »

Only 9% of IT budgets are dedicated to security

automation, Compliance, cyber risk, cybersecurity, data management, generative AI, News, regulation, report, survey, Vanta /

Only 9% of IT budgets are dedicated to security 20/11/2023 at 07:31 By Help Net Security Despite their best efforts, 67% of businesses say they need to improve security and compliance measures with 24% rating their organization’s security and compliance strategy as reactive, according to Vanta. The expansion of attack surfaces in a post-pandemic hybrid

React to this headline:

Loading spinner

Only 9% of IT budgets are dedicated to security Read More »

Internal audit leaders are wary of key tech investments

AuditBoard, automation, cyber risk, cybersecurity, data security, digital transformation, ESG, generative AI, News, report, survey /

Internal audit leaders are wary of key tech investments 17/11/2023 at 11:49 By Help Net Security As the digital transformation of business accelerates, risk and internal audit leaders shift their focus to managing technology-driven risk, according to AuditBoard. The report reveals a growing gap between risk and assurance teams’ capacity to manage risks effectively and

React to this headline:

Loading spinner

Internal audit leaders are wary of key tech investments Read More »

Cyber risk is business risk: Qualys Enterprise TruRisk Platform sets new industry standard

CEO, CISO, cyber risk, cybersecurity, Don't miss, Features, Hot stuff, News, opinion, Qualys, Risk Management, strategy /

Cyber risk is business risk: Qualys Enterprise TruRisk Platform sets new industry standard 13/11/2023 at 10:33 By Help Net Security In this Help Net Security interview, Sumedh Thakar, President and CEO of Qualys explores the vision behind the Qualys Enterprise TruRisk Platform, a strategic move aimed at redefining how enterprises measure, communicate, and eliminate cyber

React to this headline:

Loading spinner

Cyber risk is business risk: Qualys Enterprise TruRisk Platform sets new industry standard Read More »

CISOs and board members are finding a common language

CISO, cyber risk, cyberattack, digital transformation, generative AI, News, Ransomware, report, Risk Management, Splunk, strategy, survey /

CISOs and board members are finding a common language 16/10/2023 at 07:39 By Help Net Security 86% of CISOs believe generative AI will alleviate skills gaps and talent shortages on the security team, filling labor-intensive and time-consuming security functions and freeing up security professionals to be more strategic, according to Splunk. 35% report using generative

React to this headline:

Loading spinner

CISOs and board members are finding a common language Read More »

Companies rethinking degree requirements for entry-level cybersecurity jobs

attacks, cyber risk, cybersecurity, ISACA, News, report, survey, threat, training /

Companies rethinking degree requirements for entry-level cybersecurity jobs 09/10/2023 at 06:31 By Help Net Security While the threat landscape is evolving for most on the front lines, little has changed in recent years, according to ISACA. The research finds that of the cybersecurity professionals who said they were experiencing an increase or decrease in cybersecurity

React to this headline:

Loading spinner

Companies rethinking degree requirements for entry-level cybersecurity jobs Read More »

Tackling cyber risks head-on using security questionnaires

Artificial Intelligence, cyber risk, cybersecurity, Data Protection, Don't miss, Features, framework, Hot stuff, News, opinion, remediation, risk assessment, Risk Management, Skypher, standards, supply chain /

Tackling cyber risks head-on using security questionnaires 04/10/2023 at 07:33 By Mirko Zorz In this Help Net Security interview, Gaspard de Lacroix-Vaubois, CEO at Skypher, talks about the implementation of security questionnaires and how they facilitate assessments and accountability across all participants in the technology supply chain, fostering trust and safeguarding sensitive data. Many organizations

React to this headline:

Loading spinner

Tackling cyber risks head-on using security questionnaires Read More »

The pitfalls of neglecting security ownership at the design stage

cyber risk, cybersecurity, Don't miss, Features, Hot stuff, investment, Lenovo, News, opinion, policy, product development, SMBs, software, software development, strategy /

The pitfalls of neglecting security ownership at the design stage 27/09/2023 at 07:01 By Mirko Zorz For companies to avoid bleeding millions through cyber threats, they must build adaptability into their security strategy from the start while considering a range of inputs that go beyond the IT and network access aspects. In this Help Net

React to this headline:

Loading spinner

The pitfalls of neglecting security ownership at the design stage Read More »

Balancing budget and system security: Approaches to risk tolerance

Axonius, cyber risk, cybersecurity, data breach, data security, Don't miss, Expert analysis, Expert corner, Hot stuff, opinion, Risk Management, vulnerability management /

Balancing budget and system security: Approaches to risk tolerance 19/09/2023 at 08:16 By Help Net Security Data breaches are a dime a dozen. Although it’s easy to look at that statement negatively, the positive viewpoint is that, as a result, cybersecurity professionals have plenty of learning moments. Learning what went wrong and why can be

React to this headline:

Loading spinner

Balancing budget and system security: Approaches to risk tolerance Read More »

How CISOs break down complex security challenges

CISO, cyber resilience, cyber risk, cybersecurity, digital transformation, Don't miss, Features, Hot stuff, News, opinion, Risk Management, strategy, tips, Uptycs /

How CISOs break down complex security challenges 16/08/2023 at 07:33 By Mirko Zorz The role of the CISO has evolved into a critical position that encompasses many responsibilities aimed at safeguarding digital assets, preserving data integrity, and mitigating cyber threats. In essence, the role of the CISO is a complex and ever-evolving one that demands

React to this headline:

Loading spinner

How CISOs break down complex security challenges Read More »

Navigating generative AI risks and regulatory challenges

Artificial Intelligence, cyber risk, cybersecurity, Gartner, generative AI, News, Privacy, regulation, report, Risk Management, survey /

Navigating generative AI risks and regulatory challenges 14/08/2023 at 06:33 By Help Net Security The mass availability of generative AI, such as OpenAI’s ChatGPT and Google Bard, became a top concern for enterprise risk executives in the second quarter of 2023, according to Gartner. A benchmarked view of emerging risks “Generative AI was the second

React to this headline:

Loading spinner

Navigating generative AI risks and regulatory challenges Read More »

What to know about FedRAMP Rev. 5 Baselines

CISO, Compliance, cyber risk, cybersecurity, Don't miss, Government, Hot stuff, risk assessment, Risk Management, strategy, tips, USA, Video /

What to know about FedRAMP Rev. 5 Baselines 10/08/2023 at 06:31 By Help Net Security In this Help Net Security video, Kaus Phaltankar, CEO at Caveonix, discusses how the recent approval of the FedRAMP Rev. 5 Baselines is a significant step forward in the cloud security and compliance domain. The implications for CSPs and third-party

React to this headline:

Loading spinner

What to know about FedRAMP Rev. 5 Baselines Read More »

Inspiring secure coding: Strategies to encourage developers’ continuous improvement

Application Security, bug bounty, code, cyber risk, cybersecurity, Don't miss, education, Features, framework, Hot stuff, News, opinion, Secure Code Warrior, security culture, training, vulnerability /

Inspiring secure coding: Strategies to encourage developers’ continuous improvement 25/07/2023 at 07:38 By Mirko Zorz In software development, the importance of secure coding practices cannot be overstated. Fostering a security culture within development teams has become crucial to ensure the integrity and protection of digital systems. To delve deeper into this topic, we had the

React to this headline:

Loading spinner

Inspiring secure coding: Strategies to encourage developers’ continuous improvement Read More »

CISO perspective on why Boards don’t fully grasp cyber attack risks

attacks, CISO, cyber risk, cybersecurity, Don't miss, Features, Hot stuff, investment, News, opinion, PlanSource, strategy /

CISO perspective on why Boards don’t fully grasp cyber attack risks 11/07/2023 at 07:33 By Mirko Zorz Due to their distinct perspectives, Board members and CISOs often have differing views on cyber attack risks. The discrepancy arises when Boards need cybersecurity expertise, need help comprehending technical jargon, or when CISOs need to communicate in business

React to this headline:

Loading spinner

CISO perspective on why Boards don’t fully grasp cyber attack risks Read More »

ChatGPT’s unknown potential keeps us guessing

Artificial Intelligence, ChatGPT, cyber risk, cybersecurity, Malwarebytes, News /

ChatGPT’s unknown potential keeps us guessing 06/07/2023 at 06:31 By Help Net Security An overwhelming number of respondents familiar with ChatGPT were concerned about the risks it poses to security and safety, according to Malwarebytes. They also don’t trust the information it produces, and would like to see a pause in development so that regulation

React to this headline:

Loading spinner

ChatGPT’s unknown potential keeps us guessing Read More »

Preparing health systems for cyber risks and insurance coverage

CISO, cyber insurance, cyber risk, cyberattack, cybersecurity, Don't miss, Features, healthcare, Hot stuff, how-to, News, opinion, Risk Management, strategy, TRIMEDX /

Preparing health systems for cyber risks and insurance coverage 28/06/2023 at 07:32 By Mirko Zorz Our healthcare systems are at risk of infiltration by threat actors, potentially disrupting services, compromising sensitive data, and even jeopardizing patient outcomes. Among the people addressing these challenges is Dennis Fridrich, VP of Cybersecurity at TRIMEDX, who not only understands

React to this headline:

Loading spinner

Preparing health systems for cyber risks and insurance coverage Read More »

ChatGPT and data protection laws: Compliance challenges for businesses

Artificial Intelligence, ChatGPT, Compliance, cyber risk, Data Protection, data security, Don't miss, Features, GDPR, HIPAA, Hot stuff, law, News, opinion, PCI DSS, Privacy, Private AI, regulation, training /

ChatGPT and data protection laws: Compliance challenges for businesses 20/06/2023 at 07:33 By Mirko Zorz In this Help Net Security interview, Patricia Thaine, CEO at Private AI, reviews the main privacy concerns when using ChatGPT in a business context, as well as the risks that businesses can face if they betray customers’ trust. Thaine also

React to this headline:

Loading spinner

ChatGPT and data protection laws: Compliance challenges for businesses Read More »

Cyber debt levels reach tipping point

Artificial Intelligence, CISO, cyber risk, CyberArk, cybersecurity, digital transformation, News, report /

Cyber debt levels reach tipping point 15/06/2023 at 06:35 By Help Net Security The tension between difficult economic conditions and the pace of technology innovation, including the evolution of AI, is influencing the growth of identity-led cybersecurity exposure, according to CyberArk. The CyberArk’s report details how these issues – allied to an expected 240% growth

React to this headline:

Loading spinner

Cyber debt levels reach tipping point Read More »

Scroll to Top