Home » Topics » Enterprise Security Risk Management
A 30-minute movie, inspired by true events, called “The Nevernight Connection," details the fictional account of a former U.S. Intelligence Community official targeted by foreign intelligence service via a fake profile on a professional networking site and recruited to turn over classified information.
A new reports aims to understand the maturity and effectiveness of web application security in organizations worldwide. For example, 75% of executives believe their organization scans all web applications for security vulnerabilities, while nearly 50% of security staff say they don’t.
New research, The Cybersecurity in the Remote Work Era: A Global Risk Report, dives into the new challenges that organizations face in preventing, detecting and containing cybersecurity attacks in today’s unpredictable environment.
Acting Secretary of Homeland Security Chad F. Wolf released the Department of Homeland Security’s (DHS) Homeland Threat Assessment (HTA). This first-of-its-kind report synthesizes threat information across DHS including intelligence and operational components.
The report, Death on the Job: The Toll of Neglect by the American Federation of Labor and Congress of Industrial Organizations (AFL–CIO), features state and federal data on worker fatalities, injuries and illnesses, as well as worker protections. In particular, the report examines some of the industries and workers most affected by the pandemic. In addition, it found that workplace violence is the second leading cause of occupational fatalities.
As security professionals around the globe are involved in their organization’s COVID-19 response, many security staff are contemplating how to assess their protocols and procedures, as well as what new protocols and procedures to put in place. How can security technologies be a part of the overall COVID-19 response for an enterprise and how can security professionals use technology now that will serve them well in the future with continued enterprise risk mitigation?
The Cybersecurity and Information Security Agency (CISA) has released an infographic mapping analysis of 44 of its Risk and Vulnerability Assessments (RVAs) conducted in Fiscal Year 2019 to the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) Framework.
nVisium released the findings of their recent research which explores the current state of cybersecurity awareness and security training initiatives within today’s remote workforce. The research reveals that only 35% of respondents classify security awareness training as a ‘top priority’ while working remotely, and nearly half say that their DevOps teams are not experts in understanding how to protect at home wireless networks.
September is designated as National Insider Threat Awareness Month. Unfortunately, to close out the month, Shopify publicly disclosed that it was the latest victim of a data breach. Events like this are just another reminder of why zero trust must become the new enterprise security standard and why CISO’s must move quickly to implement the practice.
This month in Security magazine, we explore how Corning's global security group ensured business continuity and employee safety during the global COVID-19 pandemic. Also, we highlight the global security team at Uber and their recent security programs and initiatives. Industry experts discuss travel safety programs, career hackers, working for terrible bosses, group attribution error and more.