Cyber-risk Reporting – WindowsTechs.com

3 Questions Your Board Has About Cybersecurity

Posted on May 27, 2020 by Nate Bradford

Let’s get straight to the point. The main question your board has is, “Are we secure?” As you know, that is an overly simplified and arguably unanswerable question.
The post 3 Questions Your Board Has About Cybersecurity appeared… Continue reading 3 Questions Your Board Has About Cybersecurity→

6 Challenges New CISOs Face in Assessing Breach Risk

Posted on May 22, 2020 by Rich Campagna

Week 2 at the new gig as CISO of the hot company you’ve had your eye on for quite some time. No immediate red flags yet. Your team seems awesome, you’re ready to get going as soon as you wake up, and in internal discussions, you’ve noticed that yo… Continue reading 6 Challenges New CISOs Face in Assessing Breach Risk→

How to Talk to Senior Executives About Cybersecurity

Posted on May 20, 2020 by Nate Bradford

There will always be subjects that we need others to explain to us like we are five years old. Quantum Physics. Super PACs. The Flux Capacitor. For most board members and c-suite personnel, cybersecurity is one of those topics. This presents a dif… Continue reading How to Talk to Senior Executives About Cybersecurity→

Improving Security Posture the Easy Way

Posted on April 24, 2020 by Rich Campagna

Security posture, which is the aggregate security status of all assets in your organization, has an inverse relationship with cybersecurity risk. If you strengthen your security posture, you reduce overall risk. Sounds great in theory, but aren’t … Continue reading Improving Security Posture the Easy Way→

The Evolution of Threat Hunting

Posted on December 10, 2019 by Rich Campagna

Wikipedia defines cyber threat hunting as “the process of proactively and iteratively searching through networks to detect and isolate advanced threats that evade existing security solutions.” In practice, this is a very manual process… Continue reading The Evolution of Threat Hunting→

An open conversation about cyber-risk reporting to the BOD

Posted on November 19, 2019 by Gaurav Banga

A few days ago, I had the privilege of moderating a boardroom discussion of CISOs at the Evanta Dallas CISO Summit on the topic of Cyber-Risk Reporting for the Board. Evanta’s boardroom discussions are great since they serve as fantastic opp… Continue reading An open conversation about cyber-risk reporting to the BOD→

50 Shades of Gray in Cybersecurity

Posted on November 5, 2019 by Nate Bradford

Nearly 90% of data breaches happen because of poor cybersecurity posture. Unfortunately, a strong cybersecurity posture is not necessarily a function of dollars invested or the number of tools deployed. Organizations struggle to understand and imp… Continue reading 50 Shades of Gray in Cybersecurity→

Quantifying cyber-risk for your BoD and c-suite colleagues

Posted on April 17, 2019 by Gaurav Banga

How should you report on your organization’s cybersecurity posture to your board of directors and C-suite colleagues?

As you know very well, your board members’ and senior executives view of cybersecurity is quite different from how… Continue reading Quantifying cyber-risk for your BoD and c-suite colleagues→