Security teams had best bring their A-game to compete against ever-more sophisticated threat actors as new cyber risks emerge and evolve in 2018.
The EU General Data Protection Regulation (GDPR) has called for enterprises to assess existing data security policies and procedures. What does this mean for your organization's efforts?
Federal contractors are falling behind agency counterparts when it comes to supply chain management and cybersecurity risk assessment.
To protect their crown jewels from data thieves, organizations must determine the difference in risk levels between structured and unstructured data and prioritize accordingly.
Understanding the COSO 2017 Enterprise Risk Management Framework, Part 2: Combining Apples With Oranges
Organizations that follow both the COSO enterprise risk management framework and the NIST CSF can vastly improve their cyber risk oversight and management.
The return on security investment is a crucial calculation to help CISOs demonstrate risks in business terms and gain executive buy-in for security tools.
Operational risk management can help organizations measure the cost of network security solutions versus the cost of a potential data breach.
The new COSO enterprise risk management framework offers business leaders a road map to more effectively assess, manage, review and report on cyber risks.
The Three Lines of Defense model enables board directors to be involved in the cyber risk management process without micromanaging the security team.
Some are wary of the Ugly Duckling due to his advanced hacking abilities, but when it comes to security testing, he's really one of the good guys.