News May 31, 2023

HHS releases hospital cyber resiliency landscape analysis

4 min read - On April 17, 2023, The U.S. Department of Health and Human Services (HHS) 405(d) Program announced the release of its Hospital Cyber Resiliency Initiative Landscape Analysis. This landmark analysis reports on domestic hospitals’ current state of cybersecurity preparedness. The scope…

Identity & Access February 3, 2022

New Year, Same Risks? Six Cyber Resilience Resolutions for a Safer 2022

4 min read - 2021 was a banner year for cyber attacks. Compared to 2020, last year saw a 50% increase in attacks per week on corporate networks, even as the total cost of managing a cyber attack rose by 10%, according to IBM’s…

Incident Response December 20, 2021

A Journey in Organizational Resilience: Survive the Disruption and Become Stronger

6 min read - Our journey through the factors that make up organizational cyber resilience is almost complete. It’s time to put the puzzle pieces together.  First, a quick look at the issues we’ve covered so far.  The Human Factor Business Continuity Disaster Recovery…

Incident Response November 22, 2021

A Journey in Organizational Resilience: Insider Threats

4 min read - Very much like privacy concerns, insider threats may not be the first issue to come to mind when building an enterprise cyber resilience plan. However, they should be. Here is why: because as we noted in the first piece of…

Zero Trust October 28, 2021

2021 Cyber Resilient Organization Study: Rise of Ransomware Shows the Need for Zero Trust and XDR

2 min read - “How many millions did you pay threat actors in a ransomware attack?” “Which investments most significantly improved cyber resiliency for your organization?” “Do you have a cybersecurity incident response plan that’s applied consistently across your enterprise?” The answers to these…

Incident Response October 18, 2021

A Journey in Organizational Resilience: Training and Testing

4 min read - We are far from a breach-free world. After all, even cybercriminals have shown their own form of resilience. For example, after a short hiatus, the ransomware group REvil came back in September 2021. Until the day we can leave our…

Intelligence & Analytics September 24, 2021

How Privileged Access Management Fits Into a Layered Security Strategy

3 min read - In its early stages, privileged access management (PAM) involved protecting only the passwords used for privileged accounts. But it evolved beyond that single purpose in the years that followed. Nowadays, it includes other security functions like multifactor authentication (MFA), session…

Intelligence & Analytics September 20, 2021

A Journey in Organizational Cyber Resilience Part 2: Business Continuity

4 min read - Keeping a business up and running during a problem takes the right people for the job. When it comes to cyber resilience through tough times, many things come down to the human factor. We focused on that in the first…

Cloud Security August 6, 2021

Spend Wisely (Not Just More) to Become Cyber Resilient

2 min read - Spending on cybersecurity is hitting record highs. And that makes sense. Because of big changes in how work gets done (plus the rising cost of breaches and attacks, like ransomware), companies are spending more than ever. But simply throwing money…

Incident Response July 22, 2021

Thriving in Chaos: How Cyber Resilience Works

3 min read - In cybersecurity as in most jobs, problems don’t happen one at a time, you’re bound to have a few at once. Speakers at the RSA Conference 2021 talked about this in terms of maintaining cyber resilience in chaos. So, what…