Web Exclusive Stories - Articles - Page 178

Developing a risk-based cybersecurity approach

February 5, 2021

McKinsey & Company reports that most risk managers at large organizations are flying blind when it comes to evaluating their cyber resilience due to bloated reporting processes and overly complicated reporting tools. Here's how organizations can implement a risk-based approach to their cybersecurity controls.

Cybercrime on the rise: Plotting a way forward

How cybersecurity professionals can push back against bad actors taking advantage of increased remote work and pandemic-related changes.

Dan L. Dodson

February 5, 2021

The modern workplace will likely remain partially remote long term, so a robust remote cybersecurity program is now a critical element of your cybersecurity program, which may require a larger IT staff or assistance from a managed IT provider.

The Big 8: How to heighten cybersecurity governance

Tom Kellermann

February 4, 2021

The daunting threats and attack techniques from 2020 are expected to continue into this year. And while 2021 offers a fresh start, cybercriminals will continue to become increasingly savvy, deploying a wide range of techniques to extort, disrupt, and infiltrate organizations. Now more than ever, government and corporate leaders and consumers must become engaged in ensuring effective cybersecurity strategies are in place. Here are eight steps organizations can implement to heighten cybersecurity governance:

5 reasons why Active Directory is the CISO’s Achilles heel

Chris Roberts

February 4, 2021

Despite the heavy reliance on the 20-year-old technology, Active Directory, cybersecurity efforts seem to continuously overlook this obvious and frequent target, which only puts organizations at further risk. Despite cybersecurity advances, Active Directory is still one part of an organization’s environment that gets the least cybersecurity attention. While most security programs have a SIEM solution monitoring logs for anything out of the norm, this is simply not enough.

It’s time to rethink cybersecurity training… Again

Samuel Cameron

February 4, 2021

As we think about adapting our cybersecurity training to be more realistic, applicable, and effective, what are some things you should definitely keep and what are some things you should lose in your current security training?

5 minutes with Pam Verick - Enhancing fraud risk assessments

Maria Henriquez

February 4, 2021

We speak to Pamela Verick, a Director in the Investigations and Fraud Risk Management group at global consulting firm Protiviti, to discuss how organizations across various industries can strengthen their fraud risk assessments from a cyber fraud perspective.

A post-pandemic guide to cybersecurity budgeting for 2021

Bernard Brode

February 3, 2021

While it might not feel like it right now, the kind of root-and-branch assessment of cybersecurity budgets necessitated by the pandemic might, overall, be a positive development. Many firms haven't looked at their budgets and the assumptions they are based on for many years. This review has been long overdue.

5 biggest cybersecurity threats

How hackers utilize remote work and human error to steal corporate data

Juta Gurinaviciute

February 3, 2021

Cybersecurity threats are getting more sophisticated and intense amid the increasing levels of remote work and dependence on digital devices. Here are 5 that were the most damaging for enterprises in 2020.

2021 could bring more vaccine-related cyberattacks, here’s how distribution organizations should prep

Jay Paz

February 2, 2021

As vaccine distribution continues through 2021, the companies managing the process must proactively think about their current risk level, how they can decrease that risk, and how they can strengthen their security posture moving forward.

Security risks of personal business in the workplace

Brian Parks Sanjiv Kalkar

February 2, 2021

File-sharing services, such as Google Drive, DropBox and personal OneDrive folders, also pose significant risk to the corporate network. The additional layering effect of file-sharing service — such as multiple shares of a potentially malicious file through a chain of services — create an additional layer of complexity and risk.