framework

Modeling organizations’ defensive mechanisms with MITRE D3FEND

CISO, collaboration, Compliance, cybersecurity, Don't miss, Features, framework, Hot stuff, MITRE, News, NSA, opinion, security ROI, security standard, standards, strategy /

Modeling organizations’ defensive mechanisms with MITRE D3FEND 15/11/2023 at 09:02 By Mirko Zorz Funded by the National Security Agency, MITRE’s D3FEND framework is helping to provide standardization, specificity, and repeatability needed by cybersecurity engineers. As the framework moves from the beta version to version 1.0 in 2024, we asked D3FEND creator Peter Kaloroumakis how D3FEND […]

React to this headline:

Loading spinner

Modeling organizations’ defensive mechanisms with MITRE D3FEND Read More »

Collaborative strategies are key to enhanced ICS security

access control, antivirus, collaboration, cybersecurity, Don't miss, Encryption, Features, firewall, framework, Hot stuff, identity management, News, opinion, regulation, risk assessment, Schneider Electric, standards, strategy, training /

Collaborative strategies are key to enhanced ICS security 14/11/2023 at 08:32 By Mirko Zorz In this Help Net Security interview, Marko Gulan, Cyber Security Consultant at Schneider Electric, discusses the complexities of safeguarding industrial control systems (ICS). Our conversation will explore the importance of cross-departmental collaboration, balancing security with system functionality, and the dynamic nature

React to this headline:

Loading spinner

Collaborative strategies are key to enhanced ICS security Read More »

CISOs vs. developers: A battle over security priorities

Chainguard, CISO, cybersecurity, framework, News, report, software development, supply chain, survey /

CISOs vs. developers: A battle over security priorities 13/11/2023 at 09:01 By Help Net Security A majority of both developers and CISOs view software supply chain security as a top priority in their roles (70% and 52% respectively), according to Chainguard. However, there is a clear disconnect and even some distrust between CISOs and developers

React to this headline:

Loading spinner

CISOs vs. developers: A battle over security priorities Read More »

Exploring the global shift towards AI-specific legislation

Artificial Intelligence, cybersecurity, data, Don't miss, EU, Features, framework, GDPR, Government, Hot stuff, Hunton Andrews Kurth, legislation, News, opinion, Privacy, regulation, UK, USA /

Exploring the global shift towards AI-specific legislation 06/11/2023 at 09:01 By Mirko Zorz In this Help Net Security interview, Sarah Pearce, Partner at Hunton Andrews Kurth, offers insights into the evolving landscape of AI legislation and its global impact. Pearce explores key principles, public participation, the future of AI laws in a world of rapid

React to this headline:

Loading spinner

Exploring the global shift towards AI-specific legislation Read More »

Securing data at the intersection of the CISO and CDO

ALTR, CISO, cybersecurity, data, Don't miss, framework, Hot stuff, Risk Management, security practices, strategy, Video /

Securing data at the intersection of the CISO and CDO 06/11/2023 at 08:34 By Help Net Security Two groups in particular play a key and critical role in ensuring data governance and security: the CISO and the CDO. CISOs are responsible for identifying and managing risks associated with data security, while CDOs are responsible for

React to this headline:

Loading spinner

Securing data at the intersection of the CISO and CDO Read More »

MITRE ATT&CK v14 released

Don't miss, enterprise, framework, Hot stuff, MITRE, MITRE ATT&CK, News /

MITRE ATT&CK v14 released 02/11/2023 at 12:16 By Zeljka Zorz MITRE has released MITRE ATT&CK v14, the newest iteration of its popular investigation framework / knowledge base of tactics and techniques employed by cyber attackers. MITRE ATT&CK v14 ATT&CK’s goal is to catalog and categorize behaviors of cyber adversaries in real-world attacks. The framework is

React to this headline:

Loading spinner

MITRE ATT&CK v14 released Read More »

White House issues Executive Order for safe, secure, and trustworthy AI

Artificial Intelligence, critical infrastructure, cybersecurity, DHS, framework, Government, legislation, News, NIST, Privacy, regulation, software, standards, strategy, USA /

White House issues Executive Order for safe, secure, and trustworthy AI 30/10/2023 at 15:47 By Help Net Security President Biden issued a landmark Executive Order to ensure that America leads the way in seizing the promise and managing the risks of artificial intelligence (AI). New standards for AI safety and security As AI’s capabilities grow,

React to this headline:

Loading spinner

White House issues Executive Order for safe, secure, and trustworthy AI Read More »

What is operational risk and why should you care? Assessing SEC rule readiness for OT and IoT

cybersecurity, DHS, Don't miss, Expert analysis, Expert corner, framework, Hot stuff, IoT, News, Nozomi Networks, opinion, policy, resilience, security controls, standards /

What is operational risk and why should you care? Assessing SEC rule readiness for OT and IoT 25/10/2023 at 07:31 By Help Net Security The newly released Security and Exchange Commission (SEC) cyber incident disclosure rules have been met with mixed reviews. Of particular concern is whether public companies who own and operate industrial control

React to this headline:

Loading spinner

What is operational risk and why should you care? Assessing SEC rule readiness for OT and IoT Read More »

Navigating OT/IT convergence and securing ICS environments

CISO, Compliance, critical infrastructure, cybersecurity, disaster recovery, Don't miss, framework, GuidePoint Security, Hot stuff, Incident Response, risk assessment, Video /

Navigating OT/IT convergence and securing ICS environments 23/10/2023 at 07:33 By Help Net Security Escalating threats to operational technology (OT) have prompted an increasing number of global enterprises to adopt sophisticated technologies and services to enhance the security of their assets. In this Help Net Security video, Christopher Warner, Senior GRC-OT Security Consultant at GuidePoint

React to this headline:

Loading spinner

Navigating OT/IT convergence and securing ICS environments Read More »

The real impact of the cybersecurity poverty line on small organizations

Afni, CISO, cybersecurity, Don't miss, Features, framework, Hot stuff, MFA, News, opinion, policy, resilience, risk, risk assessment, strategy, threats /

The real impact of the cybersecurity poverty line on small organizations 20/10/2023 at 07:03 By Mirko Zorz The financial constraints many smaller organizations face often cast shadows on their ability to fortify defenses. In this Help Net Security interview, Brent Deterding, CISO at Afni, delves into the realities and myths surrounding the cybersecurity poverty line,

React to this headline:

Loading spinner

The real impact of the cybersecurity poverty line on small organizations Read More »

Addressing cyber threats in healthcare operational technology

cybersecurity, data security, Don't miss, Entelgy, framework, healthcare, Hot stuff, IoMT, medical devices, regulation, strategy, threats, Video /

Addressing cyber threats in healthcare operational technology 19/10/2023 at 07:01 By Help Net Security The proliferation of connected medical devices (IoMT) in hospitals demands a holistic approach to cybersecurity beyond just the digital IT realm. Industrial cybersecurity (OT) requires integrated solutions to address its unique challenges. In this Help Net Security video, Estefanía Rojas Campos,

React to this headline:

Loading spinner

Addressing cyber threats in healthcare operational technology Read More »

Middle East regulatory clarity drives crypto industry growth — Binance FZE head

Alex Chehade, Bahrain, Binance, Cryptocurrency, Dubai, framework, industry., regulatory, UAE /

Middle East regulatory clarity drives crypto industry growth — Binance FZE head 18/10/2023 at 13:06 By Cointelegraph By Gareth Jenkinson UAE, Dubai and Bahrain continue to attract major cryptocurrency exchanges and businesses due to their progressive regulatory approaches. This article is an excerpt from Cointelegraph.com News View Original Source React to this headline:

React to this headline:

Loading spinner

Middle East regulatory clarity drives crypto industry growth — Binance FZE head Read More »

The evolution of deception tactics from traditional to cyber warfare

Acalvio, Artificial Intelligence, automation, CISA, cyber resilience, cybersecurity, Cyberwarfare, data, deception, digital transformation, Don't miss, Features, framework, Government, Hot stuff, News, opinion, regulation, strategy, USA /

The evolution of deception tactics from traditional to cyber warfare 18/10/2023 at 07:33 By Mirko Zorz Admiral James A. Winnefeld, USN (Ret.), is the former vice chairman of the Joint Chiefs of Staff and is an advisor to Acalvio Technologies. In this Help Net Security interview, he compares the strategies of traditional and cyber warfare,

React to this headline:

Loading spinner

The evolution of deception tactics from traditional to cyber warfare Read More »

Making privacy sustainable: Incorporating privacy into the ESG agenda

BH Consulting, Compliance, data breach, Don't miss, EU, Expert analysis, Expert corner, framework, GDPR, Hot stuff, IoT, legislation, News, opinion, Privacy, regulation, Risk Management, USA /

Making privacy sustainable: Incorporating privacy into the ESG agenda 04/10/2023 at 08:02 By Help Net Security Data breaches have been rising in frequency and magnitude over the last two decades. In fact, the Identity Theft Resource Centre (ITRC) found that between 2005 and 2020, data breach events in the US alone increased from 57 to

React to this headline:

Loading spinner

Making privacy sustainable: Incorporating privacy into the ESG agenda Read More »

Tackling cyber risks head-on using security questionnaires

Artificial Intelligence, cyber risk, cybersecurity, Data Protection, Don't miss, Features, framework, Hot stuff, News, opinion, remediation, risk assessment, Risk Management, Skypher, standards, supply chain /

Tackling cyber risks head-on using security questionnaires 04/10/2023 at 07:33 By Mirko Zorz In this Help Net Security interview, Gaspard de Lacroix-Vaubois, CEO at Skypher, talks about the implementation of security questionnaires and how they facilitate assessments and accountability across all participants in the technology supply chain, fostering trust and safeguarding sensitive data. Many organizations

React to this headline:

Loading spinner

Tackling cyber risks head-on using security questionnaires Read More »

MITRE ATT&CK project leader on why the framework remains vital for cybersecurity pros

attacks, Cloud, cybersecurity, Don't miss, education, Features, framework, Government, honeypots, Hot stuff, Incident Response, MITRE, MITRE ATT&CK, network, News, opinion, professional, red team, social media, threats /

MITRE ATT&CK project leader on why the framework remains vital for cybersecurity pros 26/09/2023 at 07:32 By Mirko Zorz MITRE ATT&CK, a common language for cybersecurity professionals to communicate with each other and better understand real-world adversary behaviors, celebrates its 10th anniversary this fall. In this Help Net Security interview, project leader Adam Pennington discusses

React to this headline:

Loading spinner

MITRE ATT&CK project leader on why the framework remains vital for cybersecurity pros Read More »

How global enterprises navigate the complex world of data privacy

Artificial Intelligence, blockchain, Compliance, cybersecurity, data, data analytics, data collection, Data Protection, Don't miss, Encryption, Features, framework, GDPR, Government, Hot stuff, law, machine learning, News, opinion, Oracle, Privacy, Privacy Policy, regulation, standards /

How global enterprises navigate the complex world of data privacy 25/09/2023 at 07:38 By Mirko Zorz In this Help Net Security interview, Evelyn de Souza, Head of Privacy Compliance, Oracle SaaS Cloud, talks about the constant efforts required to keep up with privacy laws in each country, and ensuring compliance across the entire organization. She

React to this headline:

Loading spinner

How global enterprises navigate the complex world of data privacy Read More »

Balancing cybersecurity with convenience and progress

certification, CompTIA, cybercriminals, cybersecurity, digital transformation, Don't miss, education, framework, generative AI, hacking, Malware, News, phishing, policy, Privacy, Ransomware, report, Risk Management, skill development, threats, training, zero trust /

Balancing cybersecurity with convenience and progress 25/09/2023 at 07:02 By Help Net Security Changing approaches to cybersecurity have led to slow but steady progress in defense and protection. Still, competing interests create a growing challenge for cybersecurity decision makers and practitioners, according to CompTIA. The state of cybersecurity Most business and technology professionals feel that

React to this headline:

Loading spinner

Balancing cybersecurity with convenience and progress Read More »

Building GenAI competence for business growth

Compliance, cybersecurity, framework, generative AI, IDC, News, policy, regulation, report, skill development, strategy, training /

Building GenAI competence for business growth 21/09/2023 at 06:02 By Help Net Security To embark on the GenAI technology adoption journey for business success, organizations require foundational activities related to GenAI investment, guidance in prioritizing use cases, and identification of key stakeholders essential for building and implementing successful initiatives, according to IDC. Essential key activities

React to this headline:

Loading spinner

Building GenAI competence for business growth Read More »

The blueprint for a highly effective EASM solution

Compliance, cybersecurity, Don't miss, Features, framework, Hot stuff, misconfiguration, monitoring, News, opinion, remediation, SaaS, shadow IT, SIEM, Threat Intelligence, Uncovery, vulnerability /

The blueprint for a highly effective EASM solution 11/09/2023 at 08:04 By Mirko Zorz In this Help Net Security interview, Adrien Petit, CEO at Uncovery, discusses the benefits that organizations can derive from implementing external attack surface management (EASM) solutions, the essential capabilities an EASM solution should possess, and how it deals with uncovering hidden

React to this headline:

Loading spinner

The blueprint for a highly effective EASM solution Read More »

Scroll to Top