Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Risk Management

HTTP Proxy Service Detected

Apr 5, 2024 By SecurityScorecard In SecurityScorecard
Is the "HTTP Proxy Service Detected" issue type bringing your rating down and you don't know what to do about it? Watch this short video which explains what these are and what you can do to improve them. SecurityScorecard is the global leader in cybersecurity ratings and the only service with over 12 million companies continuously rated. The company is headquartered in New York and operates in 64 countries around the globe.
View Video
bitsight

Why the CISO Has Become the Chief Storytelling Officer

Apr 4, 2024 By Tim Grieveson In BitSight
The role of the Chief Information Security Officer (CISO) has undergone a transformation as profound as the threats we face. Between new regulations such as SEC, NIS2, and DORA, the explosion of generative AI, and the rapidly expanding attack surface, the burden is now on cybersecurity leaders to not only protect the organization but build confidence with customers, regulators, board members, and other stakeholders. The key to building trust? Storytelling.
Read Post

Elevating a UK Bank's Cyber Risk Mitigation Capabilities

Apr 4, 2024 By Kroll In Kroll
Seeking to bolster its operational resilience, a UK bank was on the hunt for a partner to enhance their threat visibility throughout its environment, assuming the responsibility of monitoring key infrastructure and assets around the clock. In fast-moving threat landscape where security alerts can quickly multiply, Kroll's Managed Detection and Response (MDR) service, Kroll Responder, cuts through the noise. Learn how we helped our client improve cyber resilience by significantly reducing false positives, thus improving operational efficiency and security effectiveness.
View Video
SecurityScorecard

Examining NIST CSF 2.0: Everything you need to know

Apr 4, 2024 By SecurityScorecard In SecurityScorecard
In 2014, the National Institute of Standards and Technology (NIST) released its Cybersecurity Framework (CSF) following a presidential executive order to help organizations better understand, reduce, and communicate cybersecurity risk. In the decade since its introduction, NIST CSF has become one of the most widely recognized and utilized frameworks globally, built upon five key functions: Identify, Protect, Detect, Respond, and Recover.
Read Post
bitsight

How Cyber Exposure Management Strengthens Overall Enterprise Risk Management

Apr 3, 2024 By George V. Hulme In BitSight
In recent years, there's only been a handful of data breaches within public companies that could be considered financially "material." These breaches include those often pointed to as examples in cybersecurity presentations: the 2013 Target breach, the 2017 Equifax breach, the 2019 Capital One breach, and most recently, the Colonial Pipeline incident.
Read Post

The Impact of FAIR on Risk Management with Jack Jones | Razorthorn Security

Apr 3, 2024 By Razorthorn In Razorthorn
Welcome to Razorwire, the podcast that cuts through cybersecurity and risk management complexities. Host Jim welcomes Jack Jones, creator of the FAIR risk methodology, for an in-depth discussion on how his approach has transformed information security risk perception and management. Jack shares his journey from facing scepticism to global recognition, detailing the development of FAIR and its impact on the industry. He also previews his upcoming book on the controls analytics model, exploring the future of risk management and FAIR's role in advancing cybersecurity practices.
View Video
kovrr

What Cybersecurity Metrics Should I Report to My Board?

Apr 2, 2024 By Kovrr In Kovrr
‍ ‍ Chief information security officers (CISO) or respective organizational cybersecurity leaders are most likely well aware of the cybersecurity risks their organizations face. However, being aware of and communicating important cyber risk management data to the board of directors are two entirely different matters.
Read Post

Telephony Or VoIP Device Accessible Issue And How To Fix It On Your Scorecard

Apr 2, 2024 By SecurityScorecard In SecurityScorecard
Is the "Telephony/VoIP Device Accessible" issue type bringing your rating down and you don't know what to do about it? Watch this short video which explains what these are and what you can do to improve them. SecurityScorecard is the global leader in cybersecurity ratings and the only service with over 12 million companies continuously rated. The company is headquartered in New York and operates in 64 countries around the globe.
View Video
SecurityScorecard

National Vulnerability Database Updates: How SecurityScorecard's CVEDetails can help

Apr 2, 2024 By SecurityScorecard In SecurityScorecard
The National Vulnerability Database (NVD), the world’s most widely used vulnerability data source, has been having some problems recently, causing uncertainty and anxiety for everyone dealing with security vulnerabilities. Many organizations, including cybersecurity vendors, rely on CVE data provided by NVD. As a government organization operated by the U.S.
Read Post
Subscribe to Risk Management

Copyright © 2024 OpsMatters™. All rights reserved.