Risk Management

Checklist for Third-Party Risk Assessments

Aug 18, 2023 By RiskOptics In RiskOptics

Amid escalating data breaches and supply chain attacks, businesses are placing an unprecedented emphasis on third-party risk management. That’s a logical and prudent idea, but achieving this level of security requires a comprehensive approach — which makes a checklist for third-party risk assessment indispensable. In this article, we’ll explore what that checklist for third-party risk assessments should contain.

Read Post

RiskOptics

Read more about Checklist for Third-Party Risk Assessments

What are the Principles of Information Security?

Aug 18, 2023 By RiskOptics In RiskOptics

Information security is the effort companies undertake to protect their enterprise data information from security breaches. Without information security, an organization is vulnerable to phishing, malware, viruses, ransomware, and other attacks that may result in the theft, tampering, or deletion of confidential information. The average cost of a single incident can run $4.45 million.

Read Post

RiskOptics

Read more about What are the Principles of Information Security?

Introducing Snyk's new Risk Score for risk-based prioritization

Aug 17, 2023 By Gur Shafriri In Snyk

We’re happy to announce the open beta availability of Snyk’s new Risk Score! Replacing the existing Priority Score, the new Risk Score was designed to help you prioritize more effectively by providing you with an accurate and holistic understanding of the risk posed by a given security issue.

Read Post

Snyk

Read more about Introducing Snyk's new Risk Score for risk-based prioritization

What Is Financial Crime Risk Management (FCRM)?

Aug 17, 2023 By Tyler York In Splunk

Financial crime risk management (FCRM) is the practice of proactively looking for financial crime, including investigating and analyzing suspicious activity, rooting out vulnerabilities and taking steps to lower an organization’s risk of becoming a victim. For organizations in every industry across the globe, an effective FCRM strategy has never been more important.

Read Post

Splunk

Read more about What Is Financial Crime Risk Management (FCRM)?

Play Your Cards Right: How to Adapt Your GRC Program to the Modern Tech Stack

Aug 17, 2023 By TrustCloud In TrustCloud

With the drastic evolution of the modern tech stack over the last few years, cloud-based services and tools now power everything from fundamental infrastructure to communication to cybersecurity. GRC programs have had to keep pace and many are still playing catch up—what a gamble. 🎲 What You'll Learn We're laying all our cards on the table, exposing the risks that come with leveraging the cloud services in a modern tech stack to power your operations and showing you how to stack the odds in your favor.

View Video

TrustCloud

Read more about Play Your Cards Right: How to Adapt Your GRC Program to the Modern Tech Stack

Want to Reduce Your Cyber Risk? Increase Diversity!

Aug 17, 2023 By RiskOptics In RiskOptics

A customer walks into a clothing store to purchase a pair of pants. The salesperson directs them toward ten racks, all filled with khaki pants. Some are slightly different colors. Others are hemmed differently. But overall, the pants are essentially identical: monotonous, repetitive and drab. The problem is, the customer wants jeans, yoga pants and navy slacks. They feel isolated, confused and like they don’t belong. They leave the store without buying anything.

Read Post

RiskOptics

Read more about Want to Reduce Your Cyber Risk? Increase Diversity!

What is Cybersecurity Risk and How Can You Manage It?

Aug 16, 2023 By Melissa Stevens In BitSight

In the world of risk management, risk is commonly defined as threat times vulnerability times consequence. The objective of risk management is to mitigate vulnerabilities to threats and the potential consequences, thereby reducing risk to an acceptable level. When applied to cybersecurity risk, this equation provides a great deal of insight on steps organizations can take to mitigate risk.

Read Post

BitSight

Read more about What is Cybersecurity Risk and How Can You Manage It?

Protecting the Empire State

Aug 16, 2023 By SecurityScorecard In SecurityScorecard

Governor Kathy Hochul recently unveiled New York’s first-ever state-wide cybersecurity strategy, intended to protect the state’s digital systems and infrastructure from the ever-growing presence of cyber threats.

Read Post

SecurityScorecard

Read more about Protecting the Empire State

6 Myths About Cybersecurity Ratings (and 1 Truth)

Aug 15, 2023 By SecurityScorecard In SecurityScorecard

Today, electricity is so ubiquitous that it’s difficult to perform even basic tasks without it. But when electricity was first introduced, it took decades for broad acceptance and adoption because it was misunderstood and misused. Slowly, the benefits began to outweigh the cons. As with any innovation, there are setbacks, but electricity has overwhelmingly been a force for good. The same can be said about cybersecurity risk ratings. Are they perfect? No.

Read Post

SecurityScorecard

Read more about 6 Myths About Cybersecurity Ratings (and 1 Truth)

New SEC cybersecurity rules: Five things every public company CISO should do now

Aug 15, 2023 By Jake Olcott & Noah Stone In BitSight

By now you’ve heard about the new cybersecurity rules from the U.S. Securities and Exchange Commission (SEC) requiring public companies to report material cybersecurity incidents and disclose critical information related to cybersecurity risk management, expertise, and governance. Companies will be required to disclose risks in their annual reports beginning on December 15, 2023.

Read Post