Risk Management

Fortifying the Weakest Link: How to Safeguard Against Supply Chain Cyberattacks

Risk Management, supply chain, Supply Chain Security /

Fortifying the Weakest Link: How to Safeguard Against Supply Chain Cyberattacks 2024-09-26 at 15:01 By Torsten George As organizations have fortified their defenses against direct network attacks, hackers have shifted their focus to exploiting vulnerabilities in the supply chain to gain backdoor access to systems. The post Fortifying the Weakest Link: How to Safeguard Against […]

React to this headline:

Loading spinner

Fortifying the Weakest Link: How to Safeguard Against Supply Chain Cyberattacks Read More »

Top priorities for federal cybersecurity: Infrastructure, zero trust, and AI-driven defense

Booz Allen Hamilton, Compliance, critical infrastructure, cybersecurity, Don't miss, Features, framework, Government, News, opinion, Risk Management, USA /

Top priorities for federal cybersecurity: Infrastructure, zero trust, and AI-driven defense 2024-09-12 at 07:01 By Mirko Zorz In this Help Net Security, Erica Banks, VP and a leader in Booz Allen’s civilian services business, discusses the Federal Cybersecurity Strategy’s role in safeguarding national assets. Banks outlines key areas for improvement, including funding, talent retention, and

React to this headline:

Loading spinner

Top priorities for federal cybersecurity: Infrastructure, zero trust, and AI-driven defense Read More »

How AI and zero trust are transforming resilience strategies

access control, Active Directory, Compliance, cyber resilience, cybersecurity, Don't miss, Features, Hot stuff, News, opinion, Quest Software, regulation, Risk Management, strategy, zero trust /

How AI and zero trust are transforming resilience strategies 2024-09-11 at 07:01 By Mirko Zorz In this Help Net Security interview, John Hernandez, President and General Manager at Quest Software, shares practical advice for enhancing cybersecurity resilience against advanced threats. He underscores the need to focus on on-premises and cloud environments, adapt to new regulations,

React to this headline:

Loading spinner

How AI and zero trust are transforming resilience strategies Read More »

Managing low-code/no-code security risks

cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, News, Nokod Security, opinion, Risk Management, strategy, vulnerability management /

Managing low-code/no-code security risks 2024-09-03 at 07:31 By Help Net Security Continuous threat exposure management (CTEM) – a concept introduced by Gartner – monitors cybersecurity threats continuously rather than intermittently. This five-stage framework (scoping, discovery, prioritization, validation, and mobilization) allows organizations to constantly assess and manage their security posture, reduce exposure to threats, and integrate

React to this headline:

Loading spinner

Managing low-code/no-code security risks Read More »

Georgia Tech Sued Over Alleged False Cybersecurity Reports to Win DoD Contracts

DoD, lawsuit, Risk Management /

Georgia Tech Sued Over Alleged False Cybersecurity Reports to Win DoD Contracts 2024-08-26 at 19:16 By Ionut Arghire Complaint alleges that defendants submitted a false and fraudulent cybersecurity assessment score. The post Georgia Tech Sued Over Alleged False Cybersecurity Reports to Win DoD Contracts appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Georgia Tech Sued Over Alleged False Cybersecurity Reports to Win DoD Contracts Read More »

How NoCode and LowCode free up resources for cybersecurity

News, Risk Management, strategy, tips, Video /

How NoCode and LowCode free up resources for cybersecurity 2024-08-16 at 06:31 By Help Net Security In this Help Net Security video, Frederic Najman, Executive Member of the SFPN (French Union of NoCode Professionals), discusses how NoCode and LowCode technologies enable companies to free up development resources to tackle cybersecurity issues. In a context where

React to this headline:

Loading spinner

How NoCode and LowCode free up resources for cybersecurity Read More »

Where internal audit teams are spending most of their time

AuditBoard, auditing, Compliance, News, report, Risk Management, strategy /

Where internal audit teams are spending most of their time 2024-08-09 at 06:30 By Help Net Security Over half of key stakeholders including audit committees, company boards, and chief financial officers are looking to internal audit teams to take on more risk-related work, according to AuditBoard. The study revealed that these expanding expectations are coming

React to this headline:

Loading spinner

Where internal audit teams are spending most of their time Read More »

How network segmentation can strengthen visibility in OT networks

communication, cybersecurity, DirectDefense, Don't miss, Expert analysis, Expert corner, firewall, Hot stuff, network, News, opinion, Risk Management, strategy, vulnerability management /

How network segmentation can strengthen visibility in OT networks 2024-08-08 at 07:31 By Help Net Security What role does the firewall play in the protection of operational technology (OT) networks and systems? Many would say that it’s the defensive mechanism to protect that environment from IT and the outside world. For the operators responsible for

React to this headline:

Loading spinner

How network segmentation can strengthen visibility in OT networks Read More »

AI security 2024: Key insights for staying ahead of threats

Artificial Intelligence, cybersecurity, Don't miss, Features, generative AI, Hot stuff, News, opinion, regulation, Risk Management, Robust Intelligence /

AI security 2024: Key insights for staying ahead of threats 2024-08-08 at 07:01 By Mirko Zorz In this Help Net Security interview, Kojin Oshiba, co-founder of Robust Intelligence, discusses his journey from academic research to addressing AI security challenges in the industry. Oshiba highlights vulnerabilities in technology systems and the proactive measures needed to mitigate

React to this headline:

Loading spinner

AI security 2024: Key insights for staying ahead of threats Read More »

Secure by Default: What It Means for the Modern Enterprise

Risk Management /

Secure by Default: What It Means for the Modern Enterprise 2024-08-07 at 16:01 By Matt Honea What does “secure by default” mean for the average company as you implement security systems and protocols? The post Secure by Default: What It Means for the Modern Enterprise appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Secure by Default: What It Means for the Modern Enterprise Read More »

Breaking down FCC’s proposal to strengthen BGP security

BGP, cybersecurity, Don't miss, Features, Hot stuff, ISP, Kentik, network, News, opinion, Risk Management, security standard /

Breaking down FCC’s proposal to strengthen BGP security 2024-08-07 at 06:31 By Mirko Zorz In this Help Net Security interview, Doug Madory, Director of Internet Analysis at Kentik, discusses the FCC’s proposal requiring major U.S. ISPs to implement RPKI Route Origin Validation (ROV), and addresses concerns about the impact on smaller ISPs and the global

React to this headline:

Loading spinner

Breaking down FCC’s proposal to strengthen BGP security Read More »

AI in the Enterprise: Cutting Through the Hype and Assessing Real Risks

AI, Artificial Intelligence, risk, Risk Management, Uncategorized /

AI in the Enterprise: Cutting Through the Hype and Assessing Real Risks 2024-08-05 at 16:47 By Joshua Goldfarb The introduction of AI can bring benefits to the enterprise while not introducing additional risk that is beyond acceptable levels. The post AI in the Enterprise: Cutting Through the Hype and Assessing Real Risks appeared first on

React to this headline:

Loading spinner

AI in the Enterprise: Cutting Through the Hype and Assessing Real Risks Read More »

Vanta Raises $150 Million at $2.45 Billion Valuation

Compliance, Cybersecurity Funding, funding, Risk Management /

Vanta Raises $150 Million at $2.45 Billion Valuation 2024-07-24 at 15:46 By Eduard Kovacs Vanta has raised $150 million in a Series C funding round and it plans on using the money to fuel expansion and AI innovation. The post Vanta Raises $150 Million at $2.45 Billion Valuation appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Vanta Raises $150 Million at $2.45 Billion Valuation Read More »

The CISO’s approach to AI: Balancing transformation with trust

access control, Artificial Intelligence, CISO, cybersecurity, Devo Technology, Don't miss, Expert analysis, Expert corner, Hot stuff, News, opinion, policy, risk, Risk Management /

The CISO’s approach to AI: Balancing transformation with trust 2024-07-23 at 07:31 By Help Net Security As organizations increasingly adopt third-party AI tools to streamline operations and gain a competitive edge, they also invite a host of new risks. Many companies are unprepared, lacking clear policies and adequate employee training to mitigate these new dangers.

React to this headline:

Loading spinner

The CISO’s approach to AI: Balancing transformation with trust Read More »

How to design a third-party risk management framework

Beaconer, Compliance, cybersecurity, Don't miss, Expert analysis, Expert corner, framework, Hot stuff, Incident Response, News, opinion, Risk Management, security controls /

How to design a third-party risk management framework 2024-07-12 at 07:31 By Help Net Security Most organizations focus on securing routers, servers, firewalls, and other endpoints, but threats can also arise from unfamiliar sources such as third-party networks, which can be used by hackers to attack an organization. Through a strong TPRM framework, companies gain

React to this headline:

Loading spinner

How to design a third-party risk management framework Read More »

Managing cyberattack fallout: Financial and operational damage

access management, Aspida, cyberattacks, cybersecurity, Data Protection, digital transformation, disaster recovery, Don't miss, Features, Hot stuff, News, opinion, penetration testing, Risk Management, strategy /

Managing cyberattack fallout: Financial and operational damage 2024-07-12 at 07:01 By Mirko Zorz In this Help Net Security, Ashley Harrington, Director of Cybersecurity at Aspida, discusses the impact of cyberattack on business operations and financial health. Beyond immediate disruptions and financial burdens, cyber incident can severely damage a company’s reputation among customers and partners. Can

React to this headline:

Loading spinner

Managing cyberattack fallout: Financial and operational damage Read More »

It’s Time to Reassess Your Cybersecurity Priorities

resilience, Risk Management /

It’s Time to Reassess Your Cybersecurity Priorities 2024-07-10 at 15:01 By Torsten George A cyber resilience strategy is vital for business continuity and can provide a range of benefits before, during, and after a cyberattack. The post It’s Time to Reassess Your Cybersecurity Priorities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

It’s Time to Reassess Your Cybersecurity Priorities Read More »

Six months of SEC’s cyber disclosure rules

boardroom, CISO, cybersecurity, Don't miss, Government, Hot stuff, regulation, Risk Management, Tanium, Video /

Six months of SEC’s cyber disclosure rules 2024-06-12 at 06:02 By Help Net Security In this Help Net Security video, Mark Millender, Senior Advisor of Global Executive Engagement at Tanium, discusses the overall sentiment from CISOs of large, public companies on the effectiveness and understanding of SEC’s cyber disclosure rules and common misconceptions and gray

React to this headline:

Loading spinner

Six months of SEC’s cyber disclosure rules Read More »

Cloud migration expands the CISO role yet again

CISO, Cloud, Compliance, cybersecurity, Don't miss, Expert analysis, Expert corner, framework, Hot stuff, News, opinion, RegScale, Risk Management /

Cloud migration expands the CISO role yet again 2024-06-11 at 07:31 By Help Net Security The CISO role used to be focused primarily on information security — creating and implementing policies to safeguard an organization’s data and IT infrastructure from cybersecurity threats. However, as organizations rapidly migrate to cloud environments, the responsibilities and challenges for

React to this headline:

Loading spinner

Cloud migration expands the CISO role yet again Read More »

AI’s role in accelerating vulnerability management

Artificial Intelligence, automation, cybersecurity, data analysis, Don't miss, Expert analysis, Expert corner, Hot stuff, News, opinion, Risk Management, Seemplicity, threats, vulnerability management /

AI’s role in accelerating vulnerability management 2024-06-10 at 08:01 By Help Net Security With its capability to analyze, predict, and automate, AI stands to reshape many corners of business, most notably cybersecurity. In the field of vulnerability management specifically, AI is poised to have a profound impact, enhancing two key areas: Providing quicker analysis and

React to this headline:

Loading spinner

AI’s role in accelerating vulnerability management Read More »

Scroll to Top