DSPM and DFPM - Friends or Foes
In this article we’ll discuss DSPM and DFPM, their similarities and differences, and the value that each one brings.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Risk Management
MAX Prevents CRITICAL Zero-Day Vulnerability
Today we learn about SecurityScorecard's MAX and how it single-handedly prevented a MAJOR Zero-Day Vulnerability. With SecurityScorecard MAX, you no longer have to worry about your supply chain being at risk. SecurityScorecard is the global leader in cybersecurity ratings and the only service with over 12 million companies continuously rated. The company is headquartered in New York and operates in 64 countries around the globe.
The EU Cyber Resilience Act: Securing Digital Products
The EU Cyber Resilience Act (CRA) is a major piece of cyber legislation passed in 2024 in the European Union (EU) that regulates cybersecurity for digital products and services. The EU Cyber Resilience Act directly complements the NIS2 Directive, which regulates risk management and incident reporting across the European market.
Cyberattack at Sisense Puts Critical Infrastructure on Alert
The cybersecurity community woke up on Thursday to news of a cyberattack on Sisense, a major business analytics software company. It’s thought that the breach may have exposed hundreds of Sisense’s customers to a supply chain attack and provided the attacker with a door into the company’s customer networks.
Nucleus Security Adds Industry Veterans to Board and Executive Team as Company Scales to Meet Growing Demand
Company Appoints Jeremiah Grossman to Board of Directors and Adds Tamir Hardof as Chief Marketing Officer.
Evidence Collection for TPRM
Today almost every organization outsources at least some part (if not many parts) of its operations to third parties. That means those organizations must govern the risks of those third parties — but obtaining the assurance you want from your third parties is a daunting task.
Navigating Cybersecurity Risk Management: Aligning Stakeholder Expectations in Response to Regulations
In light of the SEC's cybersecurity disclosure regulations in the US and NIS2 in Europe, corporate executives and institutional investors are facing a pressing need to align their expectations and improve understanding around cybersecurity risk management. The evolving threat landscape and regulatory environment highlight the importance of cohesive strategies to measure, prioritize, mitigate, and communicate cyber risks effectively.
5 Key Steps on How to Perform a Cybersecurity Risk Assessment
Assessing cybersecurity risks is critical for identifying vulnerabilities in your systems that can potentially lead to data breaches, financial loss, reputation damage, legal liabilities, and other negative consequences. Knowing your weaknesses will help you take proactive measures to protect your sensitive information, comply with relevant regulations, and ensure business continuity.
What to Expect with Bitsight's 2024 Ratings Algorithm Update
As communicated in January, Bitsight will conduct a ratings algorithm update (RAU) on July 10, 2024, as part of our ongoing efforts to optimize our methodology to provide the best external indicator of the performance of cybersecurity controls. Today, we’re excited to announce that our 2024 RAU is available to preview in the Bitsight applications.
Why the CISO & Security Leader Has Become the Chief Storytelling Officer
The role of the Chief Information Security Officer (CISO) or Security Leader has undergone a transformation as profound as the threats we face. Between new regulations such as SEC, NIS2, and DORA, the explosion of generative AI, and the rapidly expanding attack surface, the burden is now on cybersecurity leaders to not only protect the organization but build confidence with customers, regulators, board members, and other stakeholders. The key to building trust? Storytelling.