Management
%{topic} RSS FeedCreate Account

Solutions for security enterprise leadership and management to enable the business.

Topics

Security Enterprise Services

From security officers to mass notification to workplace violence mitigation, enterprise services work to add value to your organization.

Security Leadership and Management

Solutions for security executives to lead and manage their security staff, mitigate risk for their enterprise and show security's value in the C-suite.

Logical Security

Learn how to better manage authentication with Logical Security features and news.

Security Education & Training

What pitfalls can complicate background checks? How can you build a better whistleblower program? Learn a different skill monthly with Education & Training.

Profiles in Excellence

The security industry is changing, as is the profile of a successful security executive. Maintaining the status quo is no longer an option, and ignorance of risks is no longer an excuse for not mitigating them. This topic in Security features game-changing security directors or industry leaders in different sectors. So who is breaking new ground in the security industry, making great strides forward in risk management while better supporting the enterprise as a whole? If you know someone (or are someone) who fits this bill – let us know! Send your recommendations and suggestions for future Profiles in Excellence to Security Associate Editor Maria Henriquez at henriquezm@bnpmedia.com.

ARTICLES

34fcdaaa-bc8c-11ea-baf8-a0369f103266.jpg

What’s your BCP plan?

Diane 2016 200
Diane Ritchey
July 3, 2020
No Comments

The COVID-19 pandemic revealed the weakness of many organizations’ business continuity plans. Many companies learned too late that their plans were inadequate, lacking interoperability with other critical plans for crisis management, disaster recovery, and pandemic readiness.


Read More
internet of things

Protecting Industrial IoT Devices

Part 1
Bud Broomhead
July 2, 2020
No Comments
The nature of IIoT devices and infrastructure makes them high-value cyber targets. This is because they are relatively easy to compromise and are often connected to internal networks with high-value content with links to other networks. Moreover, IIoT devices rarely have direct user interaction, and this unattended nature means that many types of device compromise are likely to go unnoticed and undetected – particularly when the malware does not disrupt the device’s primary functionality. Here are a dozen reasons why intelligent IIoT devices are attractive targets for hackers.
Read More
cloud-cyber

Back up your cloud data

Roger grimes knowbe4
Roger A. Grimes
July 2, 2020
No Comments
My favorite definition of the (public) cloud is “It’s someone else’s computer.” That is really what any external cloud service is. And if your services, data and other assets are located on someone else’s equipment, you are at their mercy on whether you can access those assets and data at any time. It isn’t up to you. It’s solely determined by them, and any service level agreement you agreed to. And you can lose everything stored there permanently. You should have multiple backups of your data no matter where it is stored, especially including if it is stored using a cloud service.
Read More
SEC0520-cyber-Feat-slide1_900px

Lookout research: mobile APT surveillance campaigns targeting Uyghurs

July 2, 2020
No Comments
The Lookout Threat Intelligence team has discovered four Android surveillanceware tools, which they named SilkBean, DoubleAgent, CarbonSteal, and GoldenEagle. These four interconnected malware tools are elements of much larger mAPT (mobile advanced persistent threat) campaigns originating in China, and primarily targeting the Uyghur ethnic minority, says the team.
Read More
Ask the Five Ws to Enhance Your Physical Identity and Access Management Program - Security Magazine

Why identity and access management is critical to securing a remote workforce

July 1, 2020
No Comments

Identity and access management (IAM) protects the business while keeping employees securely connected, but were organizations prepared for their employees to work from anywhere? LastPass ran a study with IT decision makers, in partnership with IDG, to discover the impacts of remote work to IAM and found that IAM is critical to securing a remote workforce, but almost all organizations have had to adjust their IAM strategy to securely enable employees to work from anywhere.


Read More

EVENTS

Webinar

9/17/19 to 9/17/20
Contact: Vania

Building the Business Case for Critical Event Management

ON DEMAND: A critical event is defined as an incident that disrupts normal operations, such as severe weather, crime, violence and critical equipment or technology failures. Business continuity and crisis response plans can only go so far if there isn't buy-in across functions, with executive-level support.

Read More

Webinar

1/23/20 to 1/23/21
Contact: Vania

The Value of a Unified Approach to Critical Event Management

ON DEMAND: From extreme weather to cyberattacks to workplace violence, every organization will experience at least one, if not multiple, critical events per year. And in today’s interconnected digital and physical world, the cascading safety, brand, and revenue impacts of critical events are more severe. Organizations need to be prepared through a unified and rapid response to these events.

Read More

Webinar

2/13/20 to 2/13/21
Contact: Vania

Novel Coronavirus: Crisis Management & Pandemic Planning

ON DEMAND: The current novel coronavirus (2019nCov) outbreak has been spreading across the globe infecting thousands of people in dozens of countries. This has created anxiety around the globe, affected company supply chains and caused The World Health Organization to enact the Public Health Emergency of International Concern (PHEIC) designation for only the sixth time since 2005.

Read More