Risk Management

A RiskInsiders' Guide to PCI DSS v4.0 Compliance: Key Changes and Deadlines

Jan 16, 2024 By RiskOptics In RiskOptics

In the ever-evolving landscape of data security and compliance, businesses must always stay current with the latest industry standards. As 2024 arrives, one such standard that demands your attention is the Payment Card Industry Data Security Standard (PCI DSS) version 4.0. PCI DSS v4.0 is a significant shift in how organizations must approach credit card and payment processing security and compliance.

Read Post

RiskOptics

Read more about A RiskInsiders' Guide to PCI DSS v4.0 Compliance: Key Changes and Deadlines

7 Cybersecurity Frameworks That Help Reduce Cyber Risk (List & Resources)

Jan 15, 2024 By Eric Cisternelli In BitSight

While security ratings are a great way to demonstrate that you’re paying attention to the standard cyber health of the organization, you also need to show that you’re adhering to industry and regulatory best practices for IT security and making informed decisions for the long-term. A cybersecurity framework can help.

Read Post

BitSight

Read more about 7 Cybersecurity Frameworks That Help Reduce Cyber Risk (List & Resources)

Cyber Exposure Management Meets the New SEC Reporting Requirements

Jan 15, 2024 By George V. Hulme In BitSight

The recent SEC breach disclosure rules place enormous pressure on CISOs. The new SEC disclosure requirements for public companies require companies to report annually on their cybersecurity risk management and governance efforts and publicly announce cybersecurity incidents that prove "material." Determining materiality may be one of organizations' most prominent challenges with the new rules. What exactly is a material cybersecurity incident?

Read Post

BitSight

Read more about Cyber Exposure Management Meets the New SEC Reporting Requirements

How To Calculate Cybersecurity ROI and Communicate It to Executives

Jan 15, 2024 By Kovrr In Kovrr

Organizational leaders have generally viewed cybersecurity as a costly yet essential business function and recognize that Chief Information Security Officers (CISOs) and other cyber leaders make strategic decisions to safeguard the company's digital assets. Still, until recently, these higher-level executives have never sought to make sense of the technical cyber activities in a broader business context, believing their value to be too complex to discern. ‍

Read Post

Kovrr

Read more about How To Calculate Cybersecurity ROI and Communicate It to Executives

Introducing the Cyber Resilience Scorecard

Jan 15, 2024 By SecurityScorecard In SecurityScorecard

This week at the World Economic Forum Annual Meeting, SecurityScorecard published the first Cyber Resilience Scorecard, offering leaders and decision-makers a comprehensive and global view of global cyber risk. SecurityScorecard identified a strong correlation between a country’s cyber risk exposure and GDP, which underscores that a nation’s economic prosperity is deeply intertwined with its ability to navigate the complex landscape of cyber threats.

Read Post

SecurityScorecard

Read more about Introducing the Cyber Resilience Scorecard

Compliance Automation and Its Benefits for Reporting

Jan 14, 2024 By RiskOptics In RiskOptics

What are some of the worries that keep compliance professionals up at night? For one, stressful stakeholder meetings and keeping abreast of the latest regulatory requirements. So is reporting bad news to the board or senior management, certainly. Another nagging worry for many: Despite your best efforts, you may “misreport” an issue – not report it completely or accurately.

Read Post

RiskOptics

Read more about Compliance Automation and Its Benefits for Reporting

What Are the 12 Requirements of PCI DSS?

Jan 14, 2024 By RiskOptics In RiskOptics

The Payment Card Industry Data Security Standard (PCI DSS) sets standards to keep the global payment card ecosystem trustworthy. Developed and maintained by the PCI Security Standards Council (PCI SSC), PCI DSS is meant to secure debit and credit card transactions to prevent cybersecurity issues like data theft or fraud. Any merchant or business that accepts customer payment cards and processes this data must comply with PCI DSS requirements.

Read Post

RiskOptics

Read more about What Are the 12 Requirements of PCI DSS?

Unpacking New SEC Regulations with Industry Experts

Jan 12, 2024 By BitSight In BitSight

Learn how experts think about the recent SEC cyber regulations with this panel interview. Gain perspective on the impact for public company CISOs and their security programs, how leaders think about objective metrics as a part of disclosure, and the opportunity ahead.

View Video

BitSight

Read more about Unpacking New SEC Regulations with Industry Experts

TPRM Risk Analytics

Jan 12, 2024 By BitSight In BitSight

Bitsight Portfolio Risk Analytics provides governance, risk, and security teams actionable insights into material risk across the vendor ecosystem. It’s a simple-to-use view into hidden risk across the portfolio that could someday manifest into very visible business impact.

View Video

BitSight

Read more about TPRM Risk Analytics

Identifying Blind Spots Through External Attack Surface Management

Jan 12, 2024 By BitSight In BitSight

Did you know that 69% of organizations have experienced some type of cyber attack in which the attack itself started through the exploit of an unknown, unmanaged, or poorly managed internet-facing asset? Understanding the scope of your organization’s external attack surface is essential. You need to continuously manage your digital footprint to know where risks exist and how to prioritize vulnerable areas. Gain visibility into what an attacker sees and take informed action to reduce exposure and empower your organization’s growth and success.

View Video