Collaborate Disseminate
Well, it’s early 2018 and there are several information security framework/standards being updated:
NIST CSF v1.1. The second draft was released at the end of 2017, and we just wrapped up the comment period on this. I believe the plans ar… Continue reading Framework/standard updates coming
Recently a report came out from the “Health Care Industry Cybersecurity Task Force”. This group was formed by Congress as part of the Cybersecurity Act of 2015. The task force is made up of a diverse group from the healthcare industry, taki… Continue reading Healthcare Industry Cybersecurity Task Force report- June 2017
The WEF’s “Cyber Resilience: Playbook for Public-Private Collaboration” aims to help governments align security policies with key values and promote collaboration both within and across borders.
The post What Can We Learn From the World Economic Forum’s Cyber Resilience Playbook appeared first on Security Intelligence.
Continue reading What Can We Learn From the World Economic Forum’s Cyber Resilience Playbook
By adopting a hybrid security framework, organizations can cherry-pick the guidelines and compliance requirements that meet their unique business objectives.
The post Choosing the Right Security Framework to Fit Your Business appeared first on Security Intelligence.
Continue reading Choosing the Right Security Framework to Fit Your Business
Organizations that follow both the COSO enterprise risk management framework and the NIST CSF can vastly improve their cyber risk oversight and management.
The post Understanding the COSO 2017 Enterprise Risk Management Framework, Part 2: Combining Apples With Oranges appeared first on Security Intelligence.
The Three Lines of Defense model enables board directors to be involved in the cyber risk management process without micromanaging the security team.
The post Take a Load Off: Delegate Cyber Risk Management Using the Three Lines of Defense Model appeared first on Security Intelligence.
A framework such as the NIST CSF can help security professionals determine where to start when developing a cybersecurity strategy.
The post Cybersecurity Strategy, Risk Management and List Making appeared first on Security Intelligence.
Continue reading Cybersecurity Strategy, Risk Management and List Making
October is National Cyber Security Awareness Month, a combined effort of private industries and public agencies to promote security best practices.
The post National Cyber Security Awareness Month: The 2017 Outlook appeared first on Security Intelligence.
Continue reading National Cyber Security Awareness Month: The 2017 Outlook
Board directors must become more engaged in cyber risk governance or risk incurring regulatory fines and being sued by shareholders.
The post Board Directors Need to Get Involved With Cyber Risk Governance appeared first on Security Intelligence.
Continue reading Board Directors Need to Get Involved With Cyber Risk Governance
To improve infrastructure security per the president’s executive order, government agencies must build trust with the private security industry.
The post Government Agencies Must Work With the Private Sector to Bolster Infrastructure Security appeared first on Security Intelligence.