Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Risk Management

Communicating Cyber Risk to Executives and Boards with Shamane Tan

Feb 29, 2024 By Rubrik In Rubrik
In this episode of Cyber Security Decoded from Rubrik Zero Labs, host Steve Stone is joined by Chief Growth Officer at Sekuro and Best-Selling Author Shamane Tan to discuss differences in the cybersecurity landscape between the US and APAC, communication strategies for CISOs, building trust for better cybersecurity outcomes, improving organizational resilience, and diversity in the cybersecurity field.
View Video
bitsight

Tackling Shadow IT Head-On: Strategies for Cybersecurity Leaders

Feb 29, 2024 By Tim Grieveson In BitSight
As cybersecurity leaders, we're all too familiar with the challenges posed by Shadow IT—a persistent thorn in the side of IT and security teams worldwide. And when high-profile supply chain attacks make headlines, the urgency to understand our reliance on third parties becomes all too real.
Read Post

Visualizing Vulnerability Management: What Does a Single Pane of Glass Really Look Like?

Feb 29, 2024 By Nucleus In Nucleus
Single Pane of Glass (SPOG) is a common buzzword that sends shivers down the spines of technical folks everywhere. Yet, executive teams ask for it, especially in vulnerability management. At the same time, the complex and fragmented nature of modern IT environments wreaks havoc on organizations aiming to understand their current location related to remediating and patching risks. So, what exactly is a single pane of glass, and what does it look like for enterprises today?
View Video
riscosity

Secure your code and protect your data flows with Riscosity and Semgrep

Feb 29, 2024 By Charrah Hardamon In Riscosity
Semgrep is a leading static application security testing (SAST) tool powered by an open-source community for surfacing bugs, discovering vulnerabilities, and enforcing code standards. Semgrep has scanned over 75 million packages, contributed to 2000 community rules, and supports over 30 coding languages. Riscosity is the leading data flow observability and security platform. This is why we’re excited to announce Ricosity’s new integration with Semgrep.
Read Post
veracode

Data-driven Strategies for Effective Application Risk Management in 2024

Feb 28, 2024 By Chris Wysopal In Veracode
Insecure software is significantly impacting our world. In a recent statement, CISA Director Jen Easterly declared: “Features and speed to market have been prioritized against security, leaving our nation vulnerable to cyber invasion. That has to stop... We are at a critical juncture for our national security.”
Read Post

Bitsight Vendor Risk Management Walkthrough

Feb 28, 2024 By BitSight In BitSight
Streamline Assessments, Monitor Vendors, and Validate Security Posture with Ease. No more manual workflows or toggling between tools—with Bitsight VRM, part of the industry’s first end-to-end third-party risk management solution, you can effortlessly navigate through risk assessments and continuous monitoring with just a flip of a switch. Discover a new level of clarity and efficiency with instant access to an ever-growing network of 40,000+ vendor profiles. Track onboarding and validate questionnaire responses with objective data to make informed decisions and expedite risk mitigation.
View Video
SecurityScorecard

SecurityScorecard 2024 Global Third-Party Cybersecurity Breach Report: Software supply chain is top target for ransomware groups

Feb 28, 2024 By SecurityScorecard In SecurityScorecard
The SecurityScorecard Global Third-Party Breach Report uses the world’s largest proprietary risk and threat dataset to provide unique insights into the intricate web of supply chain vulnerabilities exploited by ransomware groups. As the digital landscape continues to evolve, so too do the tactics of cyber adversaries. Ransomware groups, in particular, have honed in on a prime target: the software supply chain.
Read Post
memcyco

Top 10 Digital Risk Protection Software Solutions

Feb 28, 2024 By Eran Tsur In Memcyco
It’s no longer a question of ‘if’, but ‘when’ and ‘how’ cyber threats will target an organization. This reality demands a proactive approach to digital security. Recent data shows that over 85% of organizations have experienced a cyber attack supporting this need for vigilance. These incidents range from data breaches to brand impersonation, each carrying significant risks to business integrity and continuity.
Read Post
riskoptics

Steps to Creating a Statement of Applicability (SOA)

Feb 28, 2024 By RiskOptics In RiskOptics
A Statement of Applicability (SOA) is a document you draft as part of achieving compliance with ISO 27001 and other ISO standards. The SOA reviews the internal controls you have decided to include in your information security management system (ISMS) and why you selected those controls. Writing a thoughtful, comprehensive SOA is crucial to your ISO 27001 compliance journey.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.