Cybersecurity Framework – Page 2

WEBINAR: How to Get Enterprise Cyber Security for your Mid-Sized Organization

Posted on May 21, 2019 by Exclusive Deals

High-quality cybersecurity posture is typically regarded as the exclusive domain of the large and heavy resourced enterprises – those who can afford a multi-product security stack and a skilled security team to operate it.

This implies a grave risk to… Continue reading WEBINAR: How to Get Enterprise Cyber Security for your Mid-Sized Organization→

Cynet Offers Free Threat Assessment for Mid-Sized and Large Organizations

Posted on April 3, 2019 by Exclusive Deals

Visibility into an environment attack surface is the fundamental cornerstone to sound security decision making.

However, the standard process of 3rd party threat assessment as practiced today is both time consuming and expensive.

Cynet changes the ru… Continue reading Cynet Offers Free Threat Assessment for Mid-Sized and Large Organizations→

2019 Update on frameworks, standards, and regulations for infosec

Posted on February 20, 2019 by Michael R. Brown

At the 2019 BSides Tampa Security conference I did a talk on 2019 Updates on frameworks, standards, and regulations for infosec. Over the last year several new and updated frameworks and regulations have come out, as well as are being updated.
Mo… Continue reading 2019 Update on frameworks, standards, and regulations for infosec→

2018 NIST Cybersecurity Risk Management Conference

Posted on February 3, 2019 by Michael R. Brown

Back in October I was in Baltimore for NIST’s 2018 Cybersecurity Risk Management Conference. For those not aware, let me break this down. NIST is the National Institute of Standards and Technology, a non-regulatory research arm of the Depar… Continue reading 2018 NIST Cybersecurity Risk Management Conference→

Cynet Review: Simplify Security with a True Security Platform

Posted on November 13, 2018 by Mohit Kumar

In 1999, Bruce Schneier wrote, “Complexity is the worst enemy of security.” That was 19 years ago (!) and since then, cyber security has only become more complex.

Today, controls dramatically outnumber staff available to support them. The Bank of Am… Continue reading Cynet Review: Simplify Security with a True Security Platform→

Lessons From the ISO/IEC 27005:2018 Security Risk Management Guidelines

Posted on August 13, 2018 by Christophe Veltsos

The International Standards Organization (ISO) recently released an updated version of its security risk-management guidelines, ISO/IEC 27005:2018. Here are the key lessons.

The post Lessons From the ISO/IEC 27005:2018 Security Risk Management Guidelines appeared first on Security Intelligence.

Continue reading Lessons From the ISO/IEC 27005:2018 Security Risk Management Guidelines→

NIST Updates Cybersecurity Framework to Tackle Supply Chain Threats, Vulnerability Disclosure and More

Posted on April 30, 2018 by Tara Seals

Version 1.1 includes updates on authentication and identity, self-assessment, supply-chain security and vulnerability disclosure, among other changes. Continue reading NIST Updates Cybersecurity Framework to Tackle Supply Chain Threats, Vulnerability Disclosure and More→

NIST releases Cybersecurity Framework 1.1

Posted on April 19, 2018 by Zeljka Zorz

The US Commerce Department’s National Institute of Standards and Technology (NIST) has announced at RSA Conference 2018 the release of version 1.1 of its popular Framework for Improving Critical Infrastructure Cybersecurity, more widely known as the Cy… Continue reading NIST releases Cybersecurity Framework 1.1→

Lessons From the Marsh ‘Global Cyber Risk Perception Survey’: Disconnects Persist Despite Increased Executive Involvement

Posted on April 18, 2018 by Christophe Veltsos

Despite in increased involvement of various stakeholders in risk management, a recent risk perception survey revealed a persistent disconnect between executives and the security function.

The post Lessons From the Marsh ‘Global Cyber Risk Perception Survey’: Disconnects Persist Despite Increased Executive Involvement appeared first on Security Intelligence.

Continue reading Lessons From the Marsh ‘Global Cyber Risk Perception Survey’: Disconnects Persist Despite Increased Executive Involvement→

NIST releases updated cybersecurity framework

Posted on April 17, 2018 by Zaid Shoorbajee

The National Institute of Standards and Technology on Monday released a much-anticipated update to its Cybersecurity Framework, which provides organizations with guidelines for implementing cybersecurity practices. Updates in Version 1.1 include refreshed guidelines on authentication and identity; cyber risk self-assessments; managing supply chain cybersecurity; and vulnerability disclosure. “This update refines, clarifies and enhances Version 1.0,” said Matt Barrett, program manager for the framework, in the release. “It is still flexible to meet an individual organization’s business or mission needs, and applies to a wide range of technology environments such as information technology, industrial control systems and the Internet of Things.” President Donald Trump issued an executive order in May 2017 directing all federal agencies to use the Cybersecurity Framework, including future versions, to manage cybersecurity risk. Beyond that, the framework also serves as reference point for the private sector. “First, business leaders and policymakers view the Framework as a pillar for managing enterprise […]

The post NIST releases updated cybersecurity framework appeared first on Cyberscoop.

Continue reading NIST releases updated cybersecurity framework→