Risk Management

Bolstering Cyber Resilience in the US Water Sector: A Call to Action

Feb 5, 2024 By SecurityScorecard In SecurityScorecard

Tomorrow, February 6, 2024, the House Homeland Security Committee will hold a hearing on securing US water systems from cyberattacks. Following last year’s widely publicized attack on the municipal water system in Aliquippa, Pennsylvania, Congress, the Cybersecurity and Infrastructure Security Agency (CISA), and industry leaders have rightly increased their focus on the unique risks facing water systems across the country.

Read Post

SecurityScorecard

Read more about Bolstering Cyber Resilience in the US Water Sector: A Call to Action

Protecting Student-Athlete Data: TPRM for Collegiate Athletics

Feb 1, 2024 By Leah Sadoian In UpGuard

American college athletics is a foundational pillar of higher education institutions and a profitable business model for universities. The National Collegiate Athletic Association (NCAA), which regulates college athletics, reported that in 2020, Division I schools earned $15.7 billion in athletics revenue. In 2023, NCAA Division I school Ohio State University reported a record-breaking revenue of over $275 million from its athletic department alone.

Read Post

UpGuard

Read more about Protecting Student-Athlete Data: TPRM for Collegiate Athletics

From Confusion to Clarity: Red Sift Breaks Down Google and Yahoo's Email Security Requirements

Feb 1, 2024 By SecurityScorecard In SecurityScorecard

Many people around the world right now are confused as to whether their organization is ready for Google and Yahoo’s new requirements for bulk senders. So don’t worry, you’re not alone. Back in October the announcement was made that there would be consequences for organizations sending more than 5,000 emails a day who didn’t have their email security in order. But what are the consequences? And who really needs to worry?

Read Post

SecurityScorecard

Read more about From Confusion to Clarity: Red Sift Breaks Down Google and Yahoo's Email Security Requirements

Decoding Cyber Security Innovations with SecurityScorecard CEO Alex Yampolskiy

Feb 1, 2024 By SecurityScorecard In SecurityScorecard

As part of a multi-part series with NightDragon, Nasdaq, and J.P. Morgan, SecurityScorecard founder and CEO Dr. Aleksandr Yampolskiy sat down with NightDragon CEO Dave DeWalt and unveiled his deep-rooted passion for cybersecurity. Tracing back to an early encounter with a computer virus as a child, Yampolskiy discusses how this pivotal moment sparked an enduring curiosity, driving him toward a distinguished academic path.

Read Post

SecurityScorecard

Read more about Decoding Cyber Security Innovations with SecurityScorecard CEO Alex Yampolskiy

Nucleus Product Update 4.1

Feb 1, 2024 By Sonia Blanks In Nucleus

Welcome to the Nucleus Product Update 4.1. It’s a new year with new things to get excited about together. Here’s to making 2024 a great one! 🥳 This update outlines lots of Nucleus happenings you don’t want to miss, including: We’re also including a link to our latest webinars, which are value-packed sessions you don’t want to miss. Get the details for all updates below.

Read Post

Nucleus

Read more about Nucleus Product Update 4.1

Practitioner's Corner: Turning Regulatory Compliance into Strategic Opportunity

Jan 31, 2024 By Tim Grieveson In BitSight

Cyber risk regulations like NIS2 and DORA in the EU, or PS21/3 in the UK, signal a seismic shift toward strengthening cyber resilience and enforcing accountability. Championing regulations is not just a matter of checking compliance boxes: it’s an opportunity to become a business leader. To enable growth and protect revenue.

Read Post

BitSight

Read more about Practitioner's Corner: Turning Regulatory Compliance into Strategic Opportunity

Office Hours with Jack Freund, PhD - Monthly Product Review

Jan 31, 2024 By Kovrr In Kovrr

Join us for a monthly insightful session where each month we will: Walkthrough our CRQ platform Unveil exciting new product features (when applicable) Conduct Interactive Q&A Session.

View Video

Kovrr

Read more about Office Hours with Jack Freund, PhD - Monthly Product Review

Why the future of AppSec is ASPM from Snyk AppRisk

Jan 31, 2024 By Snyk In Snyk

Applications are getting bigger and more complex. With sprawling software supply chains, distributed developers, AI-enhanced productivity, and more technology, deployment, and cloud options than ever securing applications is harder than ever. To enable fast and secure development in this new reality, AppSec needs a comprehensive, proactive approach — one that helps address what matters most to reduce risk. They need to implement ASPM to shift the AppSec paradigm.

View Video

Snyk

Read more about Why the future of AppSec is ASPM from Snyk AppRisk

How to Automate and Streamline Vulnerability Management Processes

Jan 31, 2024 By Nucleus In Nucleus

Scott Kuffer, COO and co-founder of Nucleus Security, and Sonia Blanks, Director of Product Marketing of Nucleus Security, discuss the role of automation in vulnerability management. They emphasize the importance of looking beyond individual parts of the process and instead focusing on automating the entire ecosystem. Scott shares insights on how to streamline the vulnerability management process, including the need for thorough preparation and defining desired outcomes.

View Video

Nucleus

Read more about How to Automate and Streamline Vulnerability Management Processes

What Are the Similarities and Differences Between FISMA vs. FedRAMP Certification?

Jan 30, 2024 By RiskOptics In RiskOptics

The U.S. federal government has many laws and regulations intended to assure strong cybersecurity for government agencies. Two of the most important are the Federal Information Security Management Act (FISMA) and the Federal Risk and Authorization Management Program (FedRAMP). Both FISMA and FedRAMP have the same fundamental goal: to assure that federal agencies and their vendors protect government data. That said, they also differ in many ways.

Read Post