Risk Management Archives - Page 8 of 18

More than half of organizations don’t have an insider risk response plan

Issued by: Help Net Security

Both business and security leaders are allowing massive insider risk problems to fester in the aftermath of the significant shift to remote work in the past year, according to a Code42 report. During that same time, 76% of IT security leaders said that their organizations have experienced one or more data breaches involving the loss…

Cloud Security

Modernizing Your Security Operations Center for the Cloud

Issued by: Security Intelligence

Several factors are converging to exert pressure on how security operations centers (SOCs) traditionally function. Evolving information technology (IT) infrastructure, such as cloud migration, serverless services and endpoints being off-network, are straining existing SOC methodologies and tooling. The attack surface is expanding as a result of the distributed workforce and adoption of cloud-based infrastructure and…

Vulnerabilities

How to drive business value through balanced development automation

Issued by: Help Net Security

Aligning security and delivery at a strategic level is one of the most complex challenges for executives. It starts with an understanding that risk-based thinking should not be perceived as an overhead or tax, but a value added component of creating a high-quality product or service. One solution is balanced development automation, which is about…

Vulnerabilities

Many companies have not taken basic steps to protect their remote workforce

Issued by: Help Net Security

New research shows almost three quarters of large businesses believe remote working policies introduced to help stop the spread of COVID-19 are making their companies more vulnerable to cyberattacks. You need to take steps to protect the remote workforce AT&T’s study of 800 cybersecurity professionals across the UK, France and Germany shows that while 88%…

Software Security

CyberStrong platform updates allow customers to dynamically manage their risk posture

Issued by: Help Net Security

CyberSaint announced new updates to its flagship CyberStrong platform allowing customers to identify, measure, and dynamically manage IT and cybersecurity risks along the risk management lifecycle. These updates reinforce CyberSaint’s mission to enable organizations to manage cybersecurity as a business function by enabling agility, measurement, and automation across risk, compliance, audit, vendor, and governance functions…

Vulnerabilities

What is the Risk Management Framework (RMF)? A standardized security framework from the DoD

Issued by: CIO Security

The Risk Management Framework (RMF) was first developed by the Department of Defense (DoD) to act as criteria for strengthening and standardizing the risk management process of information security organizations. The framework later became widely adopted by the rest of the U.S. federal information systems in 2010. While originally developed by the DoD, the National…

Malware & Threats

Organizations need an agile response to unexpected risks

Issued by: Help Net Security

The average $5 billion company incurs delays of roughly 5 weeks per year in new product launches due to missed risks, with a $99 million opportunity cost, according to Gartner. Opportunity costs from missing risks A survey of more than 382 strategic initiative leaders quantified the cost of missing risks in strategic initiatives. For an…

Cloud Security

Three Approaches to Cybersecurity Planning for Post-Pandemic Cloud Adoption

Issued by: Security Intelligence

The global pandemic has been dictating how the whole world is reforming, businesses included. Different forums and analyst reports are increasingly calling out the future of businesses as they are moving their workloads to the cloud gradually. IDC “expects 2021 to be the year of multi-cloud” as the global COVID-19 pandemic reinforces the need for…

Vulnerabilities

Only 36% of critical infrastructures have a high level of cyber resilience

Issued by: Help Net Security

Greenbone Networks revealed the findings of a research assessing critical infrastructure providers’ ability to operate during or in the wake of a cyberattack. The cyber resilience of critical infrastructures The research investigated the cyber resilience of organizations operating in the energy, finance, health, telecommunications, transport and water industries, located in the world’s five largest economies:…

Network Security

Leveraging automation to maximize security budgets

Issued by: Help Net Security

With the economic impact of COVID-19 increasingly looking like an imminent recession and the way we do work altered perhaps forever, CIOs and CISOs will most likely be managing reduced budgets and a vastly different threat landscape. With the average cost of a breach continuing to skyrocket, the already slim margin for error will shrink…