Articles Tagged with ''risk management''

Averting Targeted School Violence: A U.S. Secret Service Analysis of Plots Against Schools focuses on prevented violence

April 2, 2021

The U.S. Secret Service National Threat Assessment Center (NTAC) released Averting Targeted School Violence: A U.S. Secret Service Analysis of Plots Against Schools, the newest report out of the center. For the first time in agency history, NTAC specifically examines attacks that were successfully prevented.

CSA survey finds cloud security is improving

Survey finds that 58% of respondents are concerned about security in the cloud, while misconfigurations are one of the leading causes of breaches and outages, as public cloud adoption doubles over past two years

April 2, 2021

The Cloud Security Alliance (CSA) new survey, “State of Cloud Security Concerns, Challenges, and Incidents, finds that 58% of respondents are concerned about security in the cloud, while misconfigurations are one of the leading causes of breaches and outages, as public cloud adoption doubles over past two years.

CISA releases supplemental direction on emergency directive for Microsoft Exchange Server

April 2, 2021

CISA has issued supplemental direction to Emergency Directive (ED) 21-02: Mitigate Microsoft Exchange On-Premises Product Vulnerabilities providing additional forensic triage and server hardening, requirements for federal agencies. Specifically, this update directs federal departments and agencies to run newly developed tools —Microsoft’s Test-ProxyLogon.ps1 script and Safety Scanner MSER—to investigate whether their Microsoft Exchange Servers have been compromised.

David Guthrie joins Sharecare as CIO and CISO

April 1, 2021

Sharecare announced the expansion of its executive team with David Guthrie joining as chief information officer (CIO) and chief information security officer (CISO).

Cybrary and MITRE announce MAD (MITRE ATT&CK Defender)

April 1, 2021

Cybrary, and MITRE Engenuity announced a partnership to offer MITRE ATT&CK Defender (MAD), a new online training and certification solution designed to enable defenders to gain the advantage over cyber adversaries.

Hudson’s Bay Company incident response team wins the International Cyber League (ICL) competition

April 1, 2021

Cyberbit,announced the Hudson’s Bay Company incident response team as winner of the inaugural International Cyber League (ICL) competition, the America’s Cyber Cup, outperforming nearly 100 Security Operations Center (SOC) and incident response teams over the course of four rounds of simulated cyberattack challenges. Hudson’s Bay Company was declared the winner based on quality of performance, and time to response, achieving the title of Best Cyber Defense Team in the Americas.

Lone worker protection: A commitment to duty of care and security

Organizations in charge of protecting lone workers must fulfill their duty of care, taking all steps reasonably possible to ensure their safety.

Maria Henriquez

April 1, 2021

The impact of the COVID-19 pandemic has been widespread and unprecedented, creating more lone workers than ever. Organizations in charge of protecting lone workers must fulfill their duty of care, taking all steps reasonably possible to ensure the safety, well-being and physical and mental health of their employees, or else, risk leaving critical employees unprotected and at risk.

Cyber Tactics

Mission-critical supply chain software: A growing operational priority

John McClurg

April 1, 2021

Today, open-source code is everywhere. In fact, 99% of all codebases contain open-source code, and anywhere from 85% to 97% of enterprise codebases come from open-source. What does that mean, exactly? It means that the vast majority of our applications consist of code we did not write.

Leadership & Management

A CSO and a sea horse walk into a bar…

Michael Gips

April 1, 2021

Last month this column looked at how humor can enhance leadership. Inspired by the book "Plato and a Platypus Walk Into a Bar: Understanding Philosophy Through Jokes," this month’s column explains security leadership through jokes.

When security and resiliency converge: A CSO’s perspective on how security organizations can thrive

John Scimone

April 1, 2021

Implementing a converged security organization is perhaps one of the most resourceful and beneficial business decisions an organization can make when seeking to enhance security risk management. In this era of heightened consequences and sophisticated security threats, the need for integration between siloed security and risk management teams is imperative. The need for collaboration between those two teams and the business is equally imperative. Let’s look at five more specific benefits:

OSHA fines grab headlines, but most compliance issues start with everyday operational gaps: missed protocols, unsecured areas, or slow response. Learn how emerging technologies & AI can be leveraged towards a more proactive model of compliance.

Security teams have never had more visibility. We’ll explore how a new decision layer is helping security teams move from detection to decision. Turn alerts into decision-ready context, reducing reliance on manual triage and enabling faster action.

Articles Tagged with ''risk management''

Averting Targeted School Violence: A U.S. Secret Service Analysis of Plots Against Schools focuses on prevented violence

CSA survey finds cloud security is improving

CISA releases supplemental direction on emergency directive for Microsoft Exchange Server

David Guthrie joins Sharecare as CIO and CISO

Cybrary and MITRE announce MAD (MITRE ATT&CK Defender)

Hudson’s Bay Company incident response team wins the International Cyber League (ICL) competition

Lone worker protection: A commitment to duty of care and security

Mission-critical supply chain software: A growing operational priority

A CSO and a sea horse walk into a bar…

When security and resiliency converge: A CSO’s perspective on how security organizations can thrive

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.