Risk Assessment – Page 4 – WindowsTechs.com

New SEC Rules around Cybersecurity Incident Disclosures

Posted on August 2, 2023 by Bruce Schneier

The US Securities and Exchange Commission adopted final rules around the disclosure of cybersecurity incidents. There are two basic rules:

Public companies must “disclose any cybersecurity incident they determine to be material” within four days, with potential delays if there is a national security risk.
Public companies must “describe their processes, if any, for assessing, identifying, and managing material risks from cybersecurity threats” in their annual filings.

The rules go into effect this December.

In an email newsletter, Melissa Hathaway wrote:…

Continue reading New SEC Rules around Cybersecurity Incident Disclosures→

CISOs are making cybersecurity a business problem

Posted on July 21, 2023 by Help Net Security

U.S. enterprises are responding to growing cybersecurity threats by working to make the best use of tools and services to ensure business resilience, according to ISG. Enterprises face growing cybersecurity threats The report for the U.S. finds that th… Continue reading CISOs are making cybersecurity a business problem→

The significance of CIS Control mapping in the 2023 Verizon DBIR

Posted on June 20, 2023 by Help Net Security

Verizon’s recently released 2023 Data Breach Investigation Report (DBIR) provides organizations with a comprehensive analysis of the evolving threat landscape and valuable insights into incident types and vulnerabilities. This year, the report in… Continue reading The significance of CIS Control mapping in the 2023 Verizon DBIR→

On the Catastrophic Risk of AI

Posted on June 1, 2023 by Bruce Schneier

Earlier this week, I signed on to a short group statement, coordinated by the Center for AI Safety:

Mitigating the risk of extinction from AI should be a global priority alongside other societal-scale risks such as pandemics and nuclear war.

The press coverage has been extensive, and surprising to me. The New York Times headline is “A.I. Poses ‘Risk of Extinction,’ Industry Leaders Warn.” BBC: “Artificial intelligence could lead to extinction, experts warn.” Other headlines are similar.

I actually don’t think that AI poses a risk to human extinction. I think it poses a similar risk to pandemics and nuclear war—which is to say, a risk worth taking seriously, but not something to panic over. Which is what I thought the statement said…

Continue reading On the Catastrophic Risk of AI→

Google adds new risk assessment tool for Chrome extensions

Posted on April 25, 2023 by Helga Labus

Google has made available a new tool for Google Workspace admins and security teams to make an assessment of the risk different Chrome extensions may present to their users: Spin.AI App Risk Assessment. The tool is available through the Chrome Browser … Continue reading Google adds new risk assessment tool for Chrome extensions→

A third-party’s perspective on third-party InfoSec risk management

Posted on April 24, 2023 by Help Net Security

More than ever, organizations are relying on third parties to streamline operations, scale their business, expand and leverage expertise, and reduce costs. In the complex and fast-moving world of cybersecurity-meets-regulations, working with third part… Continue reading A third-party’s perspective on third-party InfoSec risk management→

Can we predict cyber attacks? Bfore.AI says they can

Posted on February 13, 2023 by Mirko Zorz

Recently, at Cybertech Tel Aviv 2023, I met with Luigi Lenguito, CEO at Bfore.AI, who introduced me to their technology. In this Help Net Security interview, Lenguito talks about threat prevention challenges and how his company can predict cyber attack… Continue reading Can we predict cyber attacks? Bfore.AI says they can→

How to tackle the cybersecurity skills shortage in the EU

Posted on January 25, 2023 by Mirko Zorz

The cybersecurity skills shortage is a global problem, but each region – including Europe or, more specifically, the EU – has distinct problems it has to tackle to solve it. In this Help Net Security Dritan Saliovski, Director – Nordi… Continue reading How to tackle the cybersecurity skills shortage in the EU→

Why Cybersecurity Risk Assessment Matters in the Banking Industry

Posted on December 9, 2022 by Jennifer Gregory

When customers put money in a bank, they need to trust it will stay there. Because of the high stakes involved for the customer, such as financial loss, and how long it takes to resolve fraud and potential identity theft, customers are sensitive to the security of the bank as well as fraud prevention measures. […]

The post Why Cybersecurity Risk Assessment Matters in the Banking Industry appeared first on Security Intelligence.

Continue reading Why Cybersecurity Risk Assessment Matters in the Banking Industry→

Moving at the Speed of Business — Challenging Our Assumptions About Cybersecurity

Posted on November 16, 2022 by Chris McCurdy

The traditional narrative for cybersecurity has been about limited visibility and operational constraints — not business opportunities. These conversations are grounded in various assumptions, such as limited budgets, scarce resources, skills being at a premium, the attack surface growing, and increased complexity. For years, conventional thinking has been that cybersecurity costs a lot, takes a […]

The post Moving at the Speed of Business — Challenging Our Assumptions About Cybersecurity appeared first on Security Intelligence.

Continue reading Moving at the Speed of Business — Challenging Our Assumptions About Cybersecurity→