Risk Management

GitHub Improves Secret Scanning Feature With Expanded Token Validity Checks

cloud security, Risk Management, Supply Chain Security /

GitHub Improves Secret Scanning Feature With Expanded Token Validity Checks 05/10/2023 at 19:02 By Ionut Arghire GitHub beefs up its secret scanning feature, now allowing users to check the validity of exposed credentials for major cloud services. The post GitHub Improves Secret Scanning Feature With Expanded Token Validity Checks appeared first on SecurityWeek. This article […]

React to this headline:

Loading spinner

GitHub Improves Secret Scanning Feature With Expanded Token Validity Checks Read More »

Making privacy sustainable: Incorporating privacy into the ESG agenda

BH Consulting, Compliance, data breach, Don't miss, EU, Expert analysis, Expert corner, framework, GDPR, Hot stuff, IoT, legislation, News, opinion, Privacy, regulation, Risk Management, USA /

Making privacy sustainable: Incorporating privacy into the ESG agenda 04/10/2023 at 08:02 By Help Net Security Data breaches have been rising in frequency and magnitude over the last two decades. In fact, the Identity Theft Resource Centre (ITRC) found that between 2005 and 2020, data breach events in the US alone increased from 57 to

React to this headline:

Loading spinner

Making privacy sustainable: Incorporating privacy into the ESG agenda Read More »

Tackling cyber risks head-on using security questionnaires

Artificial Intelligence, cyber risk, cybersecurity, Data Protection, Don't miss, Features, framework, Hot stuff, News, opinion, remediation, risk assessment, Risk Management, Skypher, standards, supply chain /

Tackling cyber risks head-on using security questionnaires 04/10/2023 at 07:33 By Mirko Zorz In this Help Net Security interview, Gaspard de Lacroix-Vaubois, CEO at Skypher, talks about the implementation of security questionnaires and how they facilitate assessments and accountability across all participants in the technology supply chain, fostering trust and safeguarding sensitive data. Many organizations

React to this headline:

Loading spinner

Tackling cyber risks head-on using security questionnaires Read More »

CISO’s compass: Mastering tech, inspiring teams, and confronting risk

CISO, Compliance, cyber insurance, cybersecurity, data, Don't miss, Features, Hot stuff, law, News, opinion, Privacy, regulation, Risk Management, skill development, Skillsoft, strategy /

CISO’s compass: Mastering tech, inspiring teams, and confronting risk 03/10/2023 at 07:32 By Mirko Zorz In this Help Net Security interview, Okey Obudulu, CISO at Skillsoft, talks about the increasing complexity of the CISO role and challenges they face. He discusses the business environment, tech innovation, the evolving regulatory landscape, limited resources, and budgets. Obudulu

React to this headline:

Loading spinner

CISO’s compass: Mastering tech, inspiring teams, and confronting risk Read More »

Moving From Qualitative to Quantitative Cyber Risk Modeling

Quantitative, risk, Risk Management /

Moving From Qualitative to Quantitative Cyber Risk Modeling 28/09/2023 at 17:01 By Fawaz Rasheed Migrating to a quantitative cyber risk model of analysis allows for more accurate data, which leads to more informed decision-making. The post Moving From Qualitative to Quantitative Cyber Risk Modeling appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Moving From Qualitative to Quantitative Cyber Risk Modeling Read More »

Balancing cybersecurity with convenience and progress

certification, CompTIA, cybercriminals, cybersecurity, digital transformation, Don't miss, education, framework, generative AI, hacking, Malware, News, phishing, policy, Privacy, Ransomware, report, Risk Management, skill development, threats, training, zero trust /

Balancing cybersecurity with convenience and progress 25/09/2023 at 07:02 By Help Net Security Changing approaches to cybersecurity have led to slow but steady progress in defense and protection. Still, competing interests create a growing challenge for cybersecurity decision makers and practitioners, according to CompTIA. The state of cybersecurity Most business and technology professionals feel that

React to this headline:

Loading spinner

Balancing cybersecurity with convenience and progress Read More »

Despite rising insider risk costs, budgets are being wasted in the wrong places

attacks, cybersecurity, data breach, Dtex Systems, Gartner, News, Ponemon Institute, remediation, report, risk, Risk Management, social engineering, survey /

Despite rising insider risk costs, budgets are being wasted in the wrong places 25/09/2023 at 06:02 By Help Net Security The cost of an insider risk is the highest it’s ever been, as organizations spend more time than ever trying to contain insider incidents, according to DTEX Systems. The average annual cost of an insider

React to this headline:

Loading spinner

Despite rising insider risk costs, budgets are being wasted in the wrong places Read More »

Faster Patching Pace Validates CISA’s KEV Catalog Initiative

CISA, CISA KEV, Government, Risk Management, Vulnerabilities /

Faster Patching Pace Validates CISA’s KEV Catalog Initiative 22/09/2023 at 15:17 By Ionut Arghire CISA says Known Exploited Vulnerabilities Catalog has helped federal agencies significantly accelerate their vulnerability remediation pace. The post Faster Patching Pace Validates CISA’s KEV Catalog Initiative appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Faster Patching Pace Validates CISA’s KEV Catalog Initiative Read More »

Balancing budget and system security: Approaches to risk tolerance

Axonius, cyber risk, cybersecurity, data breach, data security, Don't miss, Expert analysis, Expert corner, Hot stuff, opinion, Risk Management, vulnerability management /

Balancing budget and system security: Approaches to risk tolerance 19/09/2023 at 08:16 By Help Net Security Data breaches are a dime a dozen. Although it’s easy to look at that statement negatively, the positive viewpoint is that, as a result, cybersecurity professionals have plenty of learning moments. Learning what went wrong and why can be

React to this headline:

Loading spinner

Balancing budget and system security: Approaches to risk tolerance Read More »

Regulatory activity forces compliance leaders to spend more on GRC tools

Compliance, cybersecurity, Gartner, Government, GRC, investment, monitoring, News, regulation, report, Risk Management, survey, training /

Regulatory activity forces compliance leaders to spend more on GRC tools 18/09/2023 at 07:48 By Help Net Security Legal and compliance department investment in GRC (governance, risk, and compliance) tools will increase 50% by 2026, according to Gartner. Assurance leaders are seeking out technology solutions to help them address increasing regulatory attention on executive risk

React to this headline:

Loading spinner

Regulatory activity forces compliance leaders to spend more on GRC tools Read More »

Unimplemented controls could derail your ESG compliance efforts

AuditBoard, Compliance, ESG, investment, News, regulation, report, Risk Management /

Unimplemented controls could derail your ESG compliance efforts 08/09/2023 at 06:01 By Help Net Security Two-thirds of organizations have not implemented environmental, social and governance (ESG) controls, and 60% do not currently perform internal ESG audits, according to a report by AuditBoard. Lack of ESG program readiness This lack of ESG program readiness raises the

React to this headline:

Loading spinner

Unimplemented controls could derail your ESG compliance efforts Read More »

Exploring the traits of effective chief audit executives

auditing, Gartner, News, report, Risk Management, strategy /

Exploring the traits of effective chief audit executives 01/09/2023 at 06:03 By Help Net Security Chief audit executives (CAEs) have identified risk orientation, stakeholder management, and team leadership as the top three characteristics of the most effective individuals, according to Gartner. In April 2023, Gartner surveyed 114 CAEs across 180 areas to identify the most

React to this headline:

Loading spinner

Exploring the traits of effective chief audit executives Read More »

Did Microsoft Just Upend the Enterprise Browser Market?

Edge for Business, Enterprise Browser, Funding/M&A, Identity & Access, Microsoft, Risk Management, secure browsing /

Did Microsoft Just Upend the Enterprise Browser Market? 29/08/2023 at 17:36 By Ryan Naraine NEWS ANALYSIS: Redmond plants its feet firmly in the enterprise browser space, sending major ripples through Silicon Valley’s bustling venture-backed startup ecosystem. The post Did Microsoft Just Upend the Enterprise Browser Market? appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Did Microsoft Just Upend the Enterprise Browser Market? Read More »

Security Team Huddle: Using the Full NIST Cybersecurity Framework for the Win

Management & Strategy, NIST, Risk Management /

Security Team Huddle: Using the Full NIST Cybersecurity Framework for the Win 29/08/2023 at 15:01 By Matt Wilson Just as a professional football team needs coordination, strategy and adaptability to secure a win on the field, a well-rounded cybersecurity strategy must address specific challenges and threats. The post Security Team Huddle: Using the Full NIST

React to this headline:

Loading spinner

Security Team Huddle: Using the Full NIST Cybersecurity Framework for the Win Read More »

Cypago Raises $13 Million for GRC Automation Platform 

Cybersecurity Funding, funding, GRC, Risk Management /

Cypago Raises $13 Million for GRC Automation Platform  25/08/2023 at 15:51 By Ionut Arghire Israeli startup Cypago raises $13 million in funding and launches a governance, risk management and compliance (GRC) automation platform. The post Cypago Raises $13 Million for GRC Automation Platform  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Cypago Raises $13 Million for GRC Automation Platform  Read More »

Lawmaker Wants Federal Contractors to Have Vulnerability Disclosure Policies 

Laws, Management & Strategy, Risk Management, VDP, vulnerability /

Lawmaker Wants Federal Contractors to Have Vulnerability Disclosure Policies  25/08/2023 at 14:48 By Eduard Kovacs Congresswoman Nancy Mace has introduced a bill that would require federal contractors to have a Vulnerability Disclosure Policy (VDP). The post Lawmaker Wants Federal Contractors to Have Vulnerability Disclosure Policies  appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Lawmaker Wants Federal Contractors to Have Vulnerability Disclosure Policies  Read More »

Reinventing OT security for dynamic landscapes

asvin, authentication, CISO, critical infrastructure, cybersecurity, Don't miss, Features, Hot stuff, how-to, News, opinion, regulation, Risk Management, strategy, tips, zero trust /

Reinventing OT security for dynamic landscapes 18/08/2023 at 07:05 By Mirko Zorz From understanding the challenges of disparate OT protocols and the increasing convergence with IT to grappling with the monumental role of human error, our latest interview with Rohit Bohara, CTO at asvin, delves deep into the landscape of OT security. As cloud solutions

React to this headline:

Loading spinner

Reinventing OT security for dynamic landscapes Read More »

How CISOs break down complex security challenges

CISO, cyber resilience, cyber risk, cybersecurity, digital transformation, Don't miss, Features, Hot stuff, News, opinion, Risk Management, strategy, tips, Uptycs /

How CISOs break down complex security challenges 16/08/2023 at 07:33 By Mirko Zorz The role of the CISO has evolved into a critical position that encompasses many responsibilities aimed at safeguarding digital assets, preserving data integrity, and mitigating cyber threats. In essence, the role of the CISO is a complex and ever-evolving one that demands

React to this headline:

Loading spinner

How CISOs break down complex security challenges Read More »

Navigating generative AI risks and regulatory challenges

Artificial Intelligence, cyber risk, cybersecurity, Gartner, generative AI, News, Privacy, regulation, report, Risk Management, survey /

Navigating generative AI risks and regulatory challenges 14/08/2023 at 06:33 By Help Net Security The mass availability of generative AI, such as OpenAI’s ChatGPT and Google Bard, became a top concern for enterprise risk executives in the second quarter of 2023, according to Gartner. A benchmarked view of emerging risks “Generative AI was the second

React to this headline:

Loading spinner

Navigating generative AI risks and regulatory challenges Read More »

What to know about FedRAMP Rev. 5 Baselines

CISO, Compliance, cyber risk, cybersecurity, Don't miss, Government, Hot stuff, risk assessment, Risk Management, strategy, tips, USA, Video /

What to know about FedRAMP Rev. 5 Baselines 10/08/2023 at 06:31 By Help Net Security In this Help Net Security video, Kaus Phaltankar, CEO at Caveonix, discusses how the recent approval of the FedRAMP Rev. 5 Baselines is a significant step forward in the cloud security and compliance domain. The implications for CSPs and third-party

React to this headline:

Loading spinner

What to know about FedRAMP Rev. 5 Baselines Read More »

Optimized by Optimole
Scroll to Top