The refusal of top leadership to fund security initiatives often translates to explicit, willful risk acceptance.
Asking the Right Questions: Key Takeaways From the CAQ’s ‘Cybersecurity Risk Management Oversight’ Guidance
The Center for Audit Quality (CAQ)'s "Cybersecurity Risk Management Oversight" guidance outlines key questions that board directors should ask about how the organization addresses risk.
As long as C-suite executives believe that cybersecurity is an IT issue, they will remain disengaged from the solutions and their role in supporting a robust cyber risk management strategy.
Lessons From the Marsh ‘Global Cyber Risk Perception Survey’: Disconnects Persist Despite Increased Executive Involvement
Despite in increased involvement of various stakeholders in risk management, a recent risk perception survey revealed a persistent disconnect between executives and the security function.
The International Standards Organization (ISO) released an updated version of its risk management guidelines to help security leaders engage top leadership in cyber risk decision-making.
A recent survey of local government leaders revealed that cybersecurity threats represent the top trend affecting government communications, followed by citizen engagement and social media.
To avoid the disastrous consequences of a breach, security professionals must be able to effectively communicate critical data risk in a language business leaders can understand.
Security teams had best bring their A-game to compete against ever-more sophisticated threat actors as new cyber risks emerge and evolve in 2018.
[Free E-Guide] Mitigate Your Business Risk Strategically With Cognitive Application Security Testing
Instead of waiting around for an incident to occur, organizations of all sizes need an application security testing program based on a fundamental understanding of risk management.
The SEC released updated guidance regarding cybersecurity disclosure for public companies, emphasizing the responsibility of executives to report material risks and incidents.