Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

bluevoyant

Remediation Over Ratings - Achieving Third-Party Cyber Risk Reduction

Jun 10, 2024 By George Aquila In BlueVoyant
The most effective Third-Party Cyber Risk Management programs prioritize risk remediation as highly as risk identification. While Security Ratings Service (SRS) have long focused on risk identification, the burden of curation and remediation has traditionally fallen on the customer. Let's look at how best-in-class security programs achieve measurable cyber risk reduction through effective guided remediation.
Read Post
nucleus

Vulnerability Management Trends & SLAs: Risky Biz Podcast Episode

Jun 7, 2024 By Kevin Swartz In Nucleus
Nucleus Security co-founder and COO, Scott Kuffer, joined the Risky Biz News Podcast with host Catalin Cimpanu, for a discussion around trends Nucleus is observing when it comes to vulnerability management and how service level agreements (SLAs) have become a sign of an organization’s security health. In the podcast, Scott and Catalin discuss major trends of high performing vulnerability management programs for organizations using Nucleus’ platform, including.
Read Post
bitsight

Navigating NIS2 Requirements: Transforming Supply Chain Security

Jun 6, 2024 By Tim Grieveson In BitSight
Talking to fellow CISO’s around the globe - and in particular Europe - the topic of cybersecurity regulations and compliance has taken on a new life. Most recently, the Network and Information Security (NIS 2) Directive is the latest regulation shaking up the region. NIS2 is much more than an update though—it's transforming the cybersecurity landscape of the EU.
Read Post
upguard

Securing Vendor Risk Management Onboarding in 2024

Jun 6, 2024 By Edward Kost In UpGuard
Onboarding is perhaps the most precarious phase of the Vendor Risk Management process. A single oversight could expose your organization to dangerous third-party security risks, increasing your chances of suffering a data breach. This post explains how to bolster the most vulnerable access points of the vendor onboarding process to help you securely scale your VRM program.
Read Post
upguard

A Guide to Vendor Risk Management Reporting in 2024

Jun 6, 2024 By Edward Kost In UpGuard
Vendor Risk Management encompasses a wide range of cybersecurity risk factors. As such, a VRM report design could range from highly detailed to concise, depending on the specific reporting requirements of stakeholders and the board. This list represents the most comprehensive scope of third-party risk management information to fit the broadest range of VRM reporting use cases.
Read Post
Featured Post
cultureai

Generative AI: Productivity Dream or Security Nightmare

Jun 5, 2024 By Frederick Coulton, Head of Product In CultureAI
The field of AI has been around for decades, but its current surge is rewriting the rules at an accelerated rate. Fuelled by increased computational power and data availability, this AI boom brings with it opportunities and challenges. AI tools fuel innovation and growth by enabling businesses to analyse data, improve customer experiences, automate processes, and innovate products - at speed. Yet, as AI becomes more commonplace, concerns about misinformation and misuse arise. With businesses relying more on AI, the risk of unintentional data leaks by employees also goes up.
Read Post
bitsight

7 Types of exposures to manage beyond CVEs

Jun 5, 2024 By Vanessa Jankowski In BitSight
As cybersecurity leaders try to get ahead of threats to their organization, they're increasingly seeking ways to get off the hamster wheel of chasing countless CVEs (common vulnerabilities and exposures). The brass ring that most CISOs reach for today is prioritization of exposures in their infrastructure (and beyond), so their teams can focus on tackling the ones that present the greatest risk. In some cases, the highest priority exposures will still be critical CVEs on mission critical assets.
Read Post
upguard

Ultimate Guide to Vendor Risk Scoring

Jun 5, 2024 By Kyle Chin In UpGuard
Vendor risk scoring is a critical component within vendor risk management (VRM) or third-party risk management (TPRM) programs and an organization’s overall risk management strategy. Risk scoring is an integral tool in the risk assessment process, helping organizations identify, evaluate, and mitigate potential risks associated with third-party vendors or service providers.
Read Post
nucleus

Vulnerability Management Modernization & FedRAMP: Resilient Cyber Podcast

Jun 5, 2024 By Kevin Swartz In Nucleus
Ever wonder how Nucleus got started? Curious to know what our CEO and co-founder Steve Carter is working on? You’re in luck. Steve joined host Chris Hughes on the Cyber Resilience podcast to talk about those topics and more. Additionally, Steve and Chris explored the process for earning FedRAMP authorization, some of the particular vulnerability management challenges government agencies are dealing with, and why risk-based vulnerability management resonates with the government community.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.