Risk Management

A RiskInsiders' Guide to PCI DSS v4.0 Compliance: Key Changes and Deadlines

Jan 16, 2024 By RiskOptics In RiskOptics

In the ever-evolving landscape of data security and compliance, businesses must always stay current with the latest industry standards. As 2024 arrives, one such standard that demands your attention is the Payment Card Industry Data Security Standard (PCI DSS) version 4.0. PCI DSS v4.0 is a significant shift in how organizations must approach credit card and payment processing security and compliance.

Read Post

RiskOptics

Read more about A RiskInsiders' Guide to PCI DSS v4.0 Compliance: Key Changes and Deadlines

7 Cybersecurity Frameworks That Help Reduce Cyber Risk (List & Resources)

Jan 15, 2024 By Eric Cisternelli In BitSight

While security ratings are a great way to demonstrate that you’re paying attention to the standard cyber health of the organization, you also need to show that you’re adhering to industry and regulatory best practices for IT security and making informed decisions for the long-term. A cybersecurity framework can help.

Read Post

BitSight

Read more about 7 Cybersecurity Frameworks That Help Reduce Cyber Risk (List & Resources)

Cyber Exposure Management Meets the New SEC Reporting Requirements

Jan 15, 2024 By George V. Hulme In BitSight

The recent SEC breach disclosure rules place enormous pressure on CISOs. The new SEC disclosure requirements for public companies require companies to report annually on their cybersecurity risk management and governance efforts and publicly announce cybersecurity incidents that prove "material." Determining materiality may be one of organizations' most prominent challenges with the new rules. What exactly is a material cybersecurity incident?

Read Post

BitSight

Read more about Cyber Exposure Management Meets the New SEC Reporting Requirements

How To Calculate Cybersecurity ROI and Communicate It to Executives

Jan 15, 2024 By Kovrr In Kovrr

Organizational leaders have generally viewed cybersecurity as a costly yet essential business function and recognize that Chief Information Security Officers (CISOs) and other cyber leaders make strategic decisions to safeguard the company's digital assets. Still, until recently, these higher-level executives have never sought to make sense of the technical cyber activities in a broader business context, believing their value to be too complex to discern. ‍

Read Post

Kovrr

Read more about How To Calculate Cybersecurity ROI and Communicate It to Executives

Introducing the Cyber Resilience Scorecard

Jan 15, 2024 By SecurityScorecard In SecurityScorecard

This week at the World Economic Forum Annual Meeting, SecurityScorecard published the first Cyber Resilience Scorecard, offering leaders and decision-makers a comprehensive and global view of global cyber risk. SecurityScorecard identified a strong correlation between a country’s cyber risk exposure and GDP, which underscores that a nation’s economic prosperity is deeply intertwined with its ability to navigate the complex landscape of cyber threats.

Read Post

SecurityScorecard

Read more about Introducing the Cyber Resilience Scorecard

Compliance Automation and Its Benefits for Reporting

Jan 14, 2024 By RiskOptics In RiskOptics

What are some of the worries that keep compliance professionals up at night? For one, stressful stakeholder meetings and keeping abreast of the latest regulatory requirements. So is reporting bad news to the board or senior management, certainly. Another nagging worry for many: Despite your best efforts, you may “misreport” an issue – not report it completely or accurately.

Read Post

RiskOptics

Read more about Compliance Automation and Its Benefits for Reporting

What Are the 12 Requirements of PCI DSS?

Jan 14, 2024 By RiskOptics In RiskOptics

The Payment Card Industry Data Security Standard (PCI DSS) sets standards to keep the global payment card ecosystem trustworthy. Developed and maintained by the PCI Security Standards Council (PCI SSC), PCI DSS is meant to secure debit and credit card transactions to prevent cybersecurity issues like data theft or fraud. Any merchant or business that accepts customer payment cards and processes this data must comply with PCI DSS requirements.

Read Post

RiskOptics

Read more about What Are the 12 Requirements of PCI DSS?

Unlock the Power of Attack Surface Management with Insights from a KuppingerCole Analyst

Jan 12, 2024 By BitSight In BitSight

Join Vanessa Jankowski, SVP of Third Party Risk Management, and Greg Keshian, SVP of Security Performance Management, as they explore key findings from the 2023 KuppingerCole Leadership Compass Report for Attack Surface Management with John Tolbert, Director of Cybersecurity at KuppingerCole Analysts. In today's interconnected digital landscape, managing your exposure strategy for your infrastructure and your supply chain is paramount. They discuss strategies to fortify cybersecurity defenses and minimize risks.

View Video

BitSight

Read more about Unlock the Power of Attack Surface Management with Insights from a KuppingerCole Analyst

The Security Performance Management Evolution: Interview with Bitsight's Greg Kesen & Dark Reading

Jan 12, 2024 By BitSight In BitSight

In this Dark Reading News Desk segment, Bitsight's Gregory Keshian discusses external attack surface management and security performance management. Greg reviews how the emerging discipline of security performance management (SPM) can better secure a company's attack surface. He offers guidance for how to mitigate problems and enumerates the major catalysts affecting attack surfaces, and how governance frameworks can be incorporated to ensure organizational compliance with state and federal laws.

View Video

BitSight

Read more about The Security Performance Management Evolution: Interview with Bitsight's Greg Kesen & Dark Reading

Unpacking New SEC Regulations with Industry Experts

Jan 12, 2024 By BitSight In BitSight

Learn how experts think about the recent SEC cyber regulations with this panel interview. Gain perspective on the impact for public company CISOs and their security programs, how leaders think about objective metrics as a part of disclosure, and the opportunity ahead.

View Video