Banking & Finance December 9, 2022

Why cybersecurity risk assessment matters in the banking industry

4 min read - When customers put money in a bank, they need to trust it will stay there. Because of the high stakes involved for the customer, such as financial loss, and how long it takes to resolve fraud and potential identity theft,…

Risk Management October 6, 2022

Digital transformation and risk management must go together

4 min read - The recent PwC 2022 Global Risk Survey gives a glimpse into what senior leaders think about their business efforts. The report opens with some expected highlights worth repeating: Change is increasingly fast and disruptive The COVID-19 pandemic caused disturbances in…

Data Protection January 10, 2022

Small Business Cybersecurity: What to Fix, What to Manage and What to Outsource

4 min read - The risk posture of small and medium-sized businesses has changed a lot over the last few years. Bluntly: small businesses inherited a series of digital risks. Many of these risks, such as supply chain and cloud-related risks, can wound and…

CISO December 28, 2021

Changing the Conversation with Risk Quantification

4 min read - “Quantitative risk analysis is the single most effective way to align security with business priorities and establish credibility with teams.” — U.S.-based CISO As organizations continue to leverage the latest technologies and move toward even greater interconnectivity in the pursuit…

Data Protection October 7, 2021

What You Need to Know About Data Security Heading into 2022

5 min read - Every business needs an effective data security strategy. Over the past year alone, 64% of companies worldwide faced some form of cyber attack, with an average cost of $4.24 million per breach — the highest ever recorded. Modern enterprises must…

CISO August 25, 2021

How to Quantify the Actual Cost of a Data Breach for Your Own Organization

4 min read - As business leaders, we need to know what the biggest risks to our organizations are. All organizations face numerous disruptive challenges in today’s business environment that can create significant new business opportunities, but also can increase potential cybersecurity risks to…

Risk Management June 8, 2021

Critical Business Operations Are At Risk, and Companies Are Not Making This a Priority

3 min read - Many companies around the world with industrial operations environments, commonly referred to as operational technology (OT) environments, do not invest the same resources to protect OT systems as they do to secure their corporate enterprise environments. Yet, these same companies…

Intelligence & Analytics June 7, 2021

Driving the Desire for FAIR: What Is Your ‘Why’ for Security Risk Quantification?

2 min read - One of the first questions I ask when working with an organization is “Why are you interested in making FAIR (Factor Analysis of Information Risk) a part of your standard risk management practice?” The answer is different for every client,…

CISO May 18, 2021

Using FAIR and NIST CSF for Security Risk Management

4 min read - Risk management and risk assessments go hand in hand, and most organizations have completed a security assessment based on maturity models at some point in their existence. However, more companies are realizing the need to complement maturity models with a…

Zero Trust May 14, 2021

How to Reduce Zero Trust Frustration By Capturing Context

4 min read - Zero trust remains one of the best ways for companies to reduce total risk. By knowing the potential risk of any request — both inside and outside the enterprise network — rather than assuming good intentions, companies can limit potential…