Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Risk Management

upguard

Compliance Guide: 23 NY CRR and Third-Party Risk Management

Jun 20, 2022 By Edward Kost In UpGuard

The NY CRR 500 legislation was instituted by the New York Department of Financial Services (NYDFS) in 2017 in response to the rising trend of cyberattacks in the finance industry. Sometimes regarded as the GDPR for financial services, the NY CRR 500 has a very high standard for sensitive data protection, requiring protection strategies for ensuring the confidentiality, integrity, and security of information systems and nonpublic information (including customer data).

Read Post

How We Help You Monitor Suppliers' Risk

Jun 20, 2022 By SecurityScorecard In SecurityScorecard
We did an ROI analysis of SecurityScorecard. Here's what we found out: Companies achieve a close to 200% ROI over 3 years. Here's how: Continuously monitoring cyber threats is difficult to handle for small cyber teams, forcing them to hire more people. In the current economic climate, those personnel costs make up the bulk of company expenses. SecurityScorecard allows you to streamline your third-party risk management program and run your TPM program with a smaller, more efficient team.
View Video
SecurityScorecard

The Value of Communicating Risk Meaningfully Across the Business

Jun 20, 2022 By SecurityScorecard In SecurityScorecard

While cybersecurity might be under the umbrella of IT, make no mistake: a breach will impact the entire business, making it the entire organization’s responsibility to be able to understand and take action on risk. This means that your organization needs to have a holistic view of risk that can enable the risk intelligence required to not only have technical discussions, but business conversations about cyber risk.

Read Post
Arctic Wolf

The Most Commonly Mixed-Up Security Terms: Learn the Differences Between Asset, Threat, Vulnerability, and Risk

Jun 17, 2022 By Sule Tatar In Arctic Wolf
The cybersecurity landscape is complex enough without the lack of a common vocabulary. But, often, organizations use common security terms incorrectly or interchangeably. This leads to confusion, which leads to frustration, which can lead to something much, much worse. Something like a breach. Let’s take a moment, then, to review the four most commonly mixed-up and misused security terms in the cybersecurity world.
Read Post
riskoptics

What is Operational Security & Why is it Important?

Jun 16, 2022 By RiskOptics In RiskOptics
Protecting your organization against security incidents is easy enough in theory, but many businesses struggle to find the right approach when it comes to their cybersecurity. As the digital transformation takes hold of the modern business environment, implementing safeguards to your organization’s critical information is only going to become more critical for survival-and if you aren’t doing so already, it’s time for your organization to take proactive protective measures.
Read Post
riskoptics

7 Best Practices for Data Loss Prevention

Jun 16, 2022 By RiskOptics In RiskOptics
Most organizations have at least one thing in common: every year, they’re generating and consuming more and more data. Dealing with all this data can be overwhelming, and especially so for those organizations that haven’t fully embraced the digital transformation and the cultural shifts that come along with it. As your data grows, so too does the risk that your data will be exposed to unauthorized parties in a security incident called a data breach or a data leak.
Read Post

MDR for Vessels

Jun 16, 2022 By Obrela In Obrela
Obrela Security Industries’ MDR for Vessels is a specialised cybersecurity tool for the maritime sector built specifically for seafaring information technology (IT) and operational technology (OT). With a centralised and self-contained passive network monitoring solution based on a virtual appliance, supporting log collection from vessel infrastructure, MDR for Vessels builds on Obrela’s tried and tested Enterprise-class MDR solution with dedicated processes for maritime and shipping environments systems both on land and sea.
View Video
kroll

Optimism, Underestimation and Invincibility: Bridging the Gap Between Reality and Perception in Cyber Security

Jun 15, 2022 By Kroll In Kroll

Earlier this month, the United Nations (U.N.) released its latest Global Assessment Report on Disaster Risk Reduction (GAR2022). For those of us who assess risk for a living, it is a sobering read.

Read Post
riskoptics

Top Risk Analysis Tools

Jun 15, 2022 By RiskOptics In RiskOptics
For many years and across industries, enterprise risk management (ERM) has always been an important part of any successful business operation. Organizations of all types and sizes face a number of external and internal factors that make it uncertain whether they will achieve their goals; ERM can bring that uncertainty to lower levels. Understanding the risks to your organization can help you make better decisions about how to reduce those risks; that’s where risk management comes in.
Read Post
SecurityScorecard

Penetration Tests of Newly Released Web Applications

Jun 15, 2022 By SecurityScorecard In SecurityScorecard

Running penetration tests of a mature web application is always a great challenge. Systems are usually well hardened, and scanners fall short of flagging anything interesting, requiring an experienced security engineer to identify vulnerabilities using advanced exploitation methods. On the other side, some applications are going for their first release ever or release after a major code change.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.