In my first column I invited you into the office of the CSO and the CEO of a company that had re-positioned itself as a security risk management services (SRMS) provider; a new category that I feel is emerging to address the need for a 360-degree view and understanding of an organization’s risk strategy, plan, processes and metrics.
The March multiple terror attacks in Brussels that resulted in more than 30 people killed and more than 250 injured raises again the specter of terrorism globally. While since 9/11 fewer than 50 people have been in killed in the United States due to jihadist-inspired terrorism, that paltry number fails to illustrate that the jihadi threat here is significant as hundreds – if not thousands – of persons would have succumbed to otherwise stymied plots.
Public health officials and policy makers have recently learned lessons regarding high-profile health events of international concern. SARS revealed that disease may be more easily transportable with global travel.
Companies in every industry are investing heavily in corporate command centers – dedicated physical spaces for risk response such as NOCs, SOCs, etc. – with the hope of building a risk resilient organization, but many are falling short of expectations and not providing real value.
The Food and Drug Administration (FDA) issued a new set of draft guidelines in hopes that medical device manufacturers not only address cybersecurity risks before they design products, but also during the maintenance of them.
A recent survey by Rapid 7 found that security professionals are struggling to detect and investigate incidents because the monitoring solutions available do not provide visibility into today’s modern IT environments and cannot give users the insight they need to make decisions quickly.
Starting last August, we began the current series of articles to provide our readers with a deep dive into the NIST Framework and its approach to Identify, Protect, Detect, Respond to and Recover from cybersecurity incidents.
Schools, businesses and enterprises across the world have experienced a paradigm shift since the terrorist attacks on Paris and Belgium. As active shooters and terrorists get more creative in choosing and evaluating softer targets, security leaders are striving to keep their enterprises safe and alert without damaging the culture.