Web Exclusive Stories - Articles - Page 166

Disaster recovery and planning: implementing a service option

Disaster Recovery as a Service: What is it and do you need it?

March 15, 2021

Disaster recovery as a service can potentially save organizations money and resources while ensuring they’re prepared for an incident that could potentially put them out of business. But what is DraaS, how can it be implemented at your organization and what are the benefits?

5 minutes with Michael Lines - Why the IT/infosec community should be concerned after SolarWinds

Maria Henriquez

March 12, 2021

The recent attack on SolarWind's Orion product demonstrated how vital it is for Chief Information Security Officers (CISOs) and their teams manage supply chain risks and understand all the products in their environment and how they are being used. Here we talk to Michael Lines, CISO and Head of Security Product Management at Cleanshelf, about why the IT and information security community should be concerned after the SolarWinds hack.

How to defend against human operated ransomware

Raj Bhowmick

March 12, 2021

Ransomware can be delivered via several mechanisms, the most popular of which is often phishing. However, a new category called “Human-Operated“ Ransomware is now being used to execute multi-level attacks against company networks. Here’s how it works:

Key considerations for contact tracing applications

Janet Jones

March 12, 2021

While the jury’s out on whether these applications will be an effective tool for contact tracers, or if the majority of citizens will fully embrace these applications, it’s clear that contact tracing will likely become a part of our daily lives. To keep these technologies on the right track, developers, policymakers and stakeholders must ask questions to measure effectiveness, while addressing key issues to prevent abuse and secure consumer data.

How to reason your way through the Certified Protection Professional (CPP) exam

Daniil Davydoff

March 11, 2021

ASIS International’s Certified Protection Professional (CPP) certification is highly beneficial for security professionals seeking leadership roles. It has its flaws but, anecdotally, I have seen it mentioned in job ads more often than any other designation. When I passed the requisite exam in early February and promised to offer my thoughts, the reaction from future test-takers was welcoming. So here they are. To paraphrase the Law & Order TV franchise, “this is my story. DUN DUN.”

New York’s DFS publishes a Cyber Insurance Risk Framework

New York’s Division of Financial Services (DFS) now requires Property and Casualty Insurers writing cyber insurance to comply with the Division’s Cyber Insurance Risk Framework to manage their risk.

Erik Dullea Eric Levy

March 11, 2021

New York’s Division of Financial Services (DFS) now requires Property and Casualty Insurers writing cyber insurance to comply with the Division’s Cyber Insurance Risk Framework to manage their risk.

Is the World Economic Forum's prediction of a global cybersecurity failure in the next 10 years avoidable?

Shira Rubinoff

March 11, 2021

The World Economic Forum's Global Risk Report for 2021 placed cybersecurity failure among the greatest threats facing humanity within the next ten years. Clearly, in this climate, and since many jumped into the world of cyber operations without adequate preparation, cybersecurity is now a critical priority.

Moving from ‘working at from home’ to a hybrid work experience

Nelson Cicchitto

March 11, 2021

Identity management has become a focal point for enterprise security. With the 2020 COVID-19 pandemic and the scramble to support work-from-home employees, the real threat to business data assets, whether in the enterprise or the cloud, has become unsecured remote access.

System security: The key to optimal healthcare

Stuart Kurutac

March 11, 2021

Access to clinical applications and medical information in a digital healthcare environment is vital. Yet, careful consideration must be made to ensure data and systems are protected against unintended or malicious activities. Securing infrastructure and applications is essential and security professionals must not forget about the devices that facilitate, segregate and protect the network.

5 minutes with Michael Borromeo – Cybersecurity best practices with a hybrid workforce

Maria Henriquez

March 10, 2021

Hybrid work is emerging as a norm, especially for companies who have a mix of workers whose job requires coming into the office, and those who are able to accomplish their work at home. This hybrid workforce is expected to become more prevalent as 75% of workers want to retain flexibility over their schedule beyond the pandemic. To get some insight into how security executives executives can implement consistent security practices for the new hybrid workforce environment, we spoke to Michael Borromeo, Vice President, Data Protection at Stericycle, the provider of Shred-it information security services.