Banking & Finance December 9, 2022

Why Cybersecurity Risk Assessment Matters in the Banking Industry

4 min read - When customers put money in a bank, they need to trust it will stay there. Because of the high stakes involved for the customer, such as financial loss, and how long it takes to resolve fraud and potential identity theft,…

Intelligence & Analytics November 16, 2022

Moving at the Speed of Business — Challenging Our Assumptions About Cybersecurity

3 min read - The traditional narrative for cybersecurity has been about limited visibility and operational constraints — not business opportunities. These conversations are grounded in various assumptions, such as limited budgets, scarce resources, skills being at a premium, the attack surface growing, and…

Risk Management October 6, 2022

Digital Transformation and Risk Management Must Go Together

4 min read - The recent PwC 2022 Global Risk Survey gives a glimpse into what senior leaders think about their business efforts. The report opens with some expected highlights worth repeating:  Change is increasingly fast and disruptive The COVID-19 pandemic caused disturbances in…

Data Protection January 10, 2022

Small Business Cybersecurity: What to Fix, What to Manage and What to Outsource

4 min read - The risk posture of small and medium-sized businesses has changed a lot over the last few years. Bluntly: small businesses inherited a series of digital risks. Many of these risks, such as supply chain and cloud-related risks, can wound and…

CISO December 28, 2021

Changing the Conversation with Risk Quantification

4 min read - “Quantitative risk analysis is the single most effective way to align security with business priorities and establish credibility with teams.” — U.S.-based CISO As organizations continue to leverage the latest technologies and move toward even greater interconnectivity in the pursuit…

Data Protection October 7, 2021

What You Need to Know About Data Security Heading into 2022

5 min read - Every business needs an effective data security strategy. Over the past year alone, 64% of companies worldwide faced some form of cyber attack, with an average cost of $4.24 million per breach — the highest ever recorded. Modern enterprises must…

CISO August 25, 2021

How to Quantify the Actual Cost of a Data Breach for Your Own Organization

4 min read - As business leaders, we need to know what the biggest risks to our organizations are. All organizations face numerous disruptive challenges in today’s business environment that can create significant new business opportunities, but also can increase potential cybersecurity risks to…

Software Vulnerabilities June 22, 2021

How One Application Test Uncovered an Unexpected Opening in an Enterprise Call Tool

4 min read - Working as security consultants is highly rewarding. Companies depend on us to view their environment from the perspective of an attacker and find vulnerabilities that could enable threats to succeed. One of the most impactful parts of our role is…

Risk Management June 8, 2021

Critical Business Operations Are At Risk, and Companies Are Not Making This a Priority

3 min read - Many companies around the world with industrial operations environments, commonly referred to as operational technology (OT) environments, do not invest the same resources to protect OT systems as they do to secure their corporate enterprise environments. Yet, these same companies…

Intelligence & Analytics June 7, 2021

Driving the Desire for FAIR: What Is Your ‘Why’ for Security Risk Quantification?

2 min read - One of the first questions I ask when working with an organization is “Why are you interested in making FAIR (Factor Analysis of Information Risk) a part of your standard risk management practice?” The answer is different for every client,…