Everything Is Best When It Comes to Cybersecurity Best Practices
How can security professionals keep up with cybersecurity best practices without taking too much time away from other responsibilities?
When It Comes to Incident Response, Failing to Plan Means Planning to Fail
In today's treacherous threat landscape, it seems the odds are overwhelmingly stacked against cyberdefenders. But there is one advantage attackers can't take away: thorough incident response planning.
Adopting the NIST 800-53 Control Framework? Learn More About the Anticipated Changes in 2019
Organizations adopting NIST 800-53 should understand how upcoming changes will affect senior leadership accountability, data privacy and third-party assessments.
3 Urgent Areas of Action to Address National Cybersecurity Risks
The U.S. is not where it needs to be in terms of managing cybersecurity risks as a national effort, according to the Aspen Cybersecurity Group.
Is Your SOC Overwhelmed? Artificial Intelligence and MITRE ATT&CK Can Help Lighten the Load
By adopting artificial intelligence solutions to help execute the MITRE ATT&CK framework, security teams can reduce dwell times, guide threat hunting endeavors and lighten the load of SOC analysts.
What Can We All Learn From the U.S. Department of Energy’s Cybersecurity Strategy?
The U.S. Department of Energy's "Cybersecurity Strategy" document contains key principles and processes that can help organizations in all sectors improve their security posture.
The Vinyasa of Security: Why Continuous Improvement Is Essential for Any Cybersecurity Strategy
Like the concept of vinyasa in yoga, continuous improvement is the key to establishing and maintaining an effective cybersecurity strategy.
Lessons From the ISO/IEC 27005:2018 Security Risk Management Guidelines
The International Standards Organization (ISO) recently released an updated version of its security risk-management guidelines, ISO/IEC 27005:2018. Here are the key lessons.
Three-Quarters of US Federal Agencies Face Cybersecurity Risk Challenges
A cybersecurity risk assessment outlined in a recent government report revealed that the majority of federal agencies struggle to address cyberthreats.
Lessons From the Marsh ‘Global Cyber Risk Perception Survey’: Disconnects Persist Despite Increased Executive Involvement
Despite in increased involvement of various stakeholders in risk management, a recent risk perception survey revealed a persistent disconnect between executives and the security function.