Collaborate Disseminate
A person recently asked me if it was possible to implement ISO 27001 using a specific project management software product. They used the tool in the past to define project plans and make project reviews. While I told them this is entirely possible, the… Continue reading Establishing Information Security in Project Management
Large organizations have always focused on managing risk, but the technological breakthroughs that have enhanced our world in countless ways have also transformed how leading executives engage in enterprise risk management (ERM). The pervasive and ever… Continue reading Why Cyber Security is Key to Enterprise Risk Management for all Organizations
As technology advances and the costs of connecting electronic components to the internet decreases, the lower the cost of having an internet connected smart home is. Sensors placed throughout a house and integrated into home appliances can provide home… Continue reading The Risk of Credential Stuffing to the Smart Home
When you hear about a data breach in the news, it’s usually related to a major company or social media network that has been targeted. The erroneous conclusion would be that the hackers only focus on exploiting security flaws in large organizatio… Continue reading If the Data Breach Doesn’t Kill Your Business, the Fine Might
A data breach remains a common headline in the news cycle. A different company, website or social network reports a security issue almost daily. If it feels like using the internet has become a risky endeavor, the feeling is accurate. But what exactly … Continue reading When Is a Data Breach a Data Breach?
Return on investment: is it worth the money? That is the central question both government and industry in deciding on any procurement. Demonstrating ROI on cybersecurity products is notoriously difficult and is one of the underlying reasons for the poo… Continue reading Cybersecurity ROI: An Oxymoron?
“The best defense is a good offense.” History credits Revolutionary War hero George Washington with being among the first to vocalize this concept, later famously echoed by heavyweight boxing champ Jack Dempsey and football god Vince Lombar… Continue reading Like Football, Your Cybersecurity Defense Needs a Strong Offense
Your company has decided to adopt the Cloud. Or maybe it was among the first ones that decided to rely on virtualized environments before it was even a thing. In either case, cloud security has to be managed. How do you go about that? Before checking o… Continue reading Why You Need to Align Your Cloud Strategy to Your Business Goals
The discovery of a significant container-based (runc) exploit sent shudders across the Internet. Exploitation of CVE-2019-5736 can be achieved with “minimal user interaction”; it subsequently allows attackers to gain root-level code executi… Continue reading Five Easy Steps to Keep on Your Organization’s DevOps Security Checklist
For various reasons, many executives and senior team members with privileged status on the network and/or access to financial assets oftentimes need to access corporate IT systems from a public place outside the office. What is very common in these typ… Continue reading Do Security Cameras Undermine your Authentication?