Risk Management

Risk Management | News, how-tos, features, reviews, and videos

CSO > cyber insurance / umbrella hub connected to connected devices and online activities
News Analysis

New York issues cyber insurance framework as ransomware, SolarWinds costs mount

sing yell announce microphone boy shout communicate perform by jason rosewell unsplash
Checks and BalancesBy

3 ways to speak the board's language around cyber risk

programmer certification skills code devops glasses student by kevin unsplash
Feature

Top 10 in-demand cybersecurity skills for 2021

The list of needed security skills is long and growing. Here's what experts say is driving the demand.

supply chain management logistics - ERP - Enterprise Resource Planning
Checks and BalancesBy

Protecting the supply chain in an era of disruptions

Supply chain problems encountered during the COVID-19 pandemic brought continuity planning out of the shadows and into the boardroom.

cso information security policy risk management writing policy by metamorworks getty 2400x1600
Feature

2020 security priorities: Pandemic changing short- and long-term approaches to risk

The way organizations assess and respond to security risks will likely never be the same due to COVID, say respondents of a new IDG survey.

supply chain management connections - ERP - Enterprise Resource Planning
News Analysis

China’s exclusion from US 5G market likely to continue with Biden administration

Telecom insiders discuss supply chain security and call for better communication, collaboration, and transparency from the federal government about threats within their industry.

risk assessment - safety analysis - security audit
Feature

EU's DORA regulation explained: New risk management requirements for financial firms

The proposed Digital Operational Resilience Act includes new incident response and third-party risk requirements for financial firms operating within the EU. Passage is expected, so plan now.

Insider threats > Employees suspiciously peering over cubicle walls
News Analysis

Preventing insider threats: What to watch (and watch out) for

Understanding human behaviors that precede malicious actions from an insider is the best way to avoid data loss or disruption, experts say.

business leadership / double-exposure of a woman with laptop and phone, city skyline + abstract data
Feature

10 value-adds that CISOs can deliver

Savvy security chiefs are generating returns for their organizations beyond enabling secure business operations. Here's how they do it.

hovering drone / camera / propellor blades
Feature

How drones affect your threat model

As use of unmanned aerial vehicles grows, organizations should have a plan for managing the risk associated with drones, whether or not they deploy them, experts say.

An empty office has been cleared out with only a moving box remaining.
Feature

7 steps to securely shutting down business units

Closing down parts or all of a business involves more than just decommissioning IT assets. CISOs must lead a holistic effort to ensure data and access aren’t left exposed.

Scissors cutting through a hundred-dollar United States banknote
Feature

5 tips for cutting budgets in a crisis without hurting security

Sudden budget cuts like those businesses are facing due to the COVID crisis can have long-term negative effects on security. Here's how to trim costs and keep a positive future.

cso information security policy risk management writing policy by metamorworks getty 2400x1600
News Analysis

Revised DOJ compliance guidance offers risk-management lessons for cybersecurity leaders

Prosecutors use this guidance to assess criminal liability in a compliance breach, so it behooves business and security leaders to understand the expectations.

Keep third-party risk on your radar: Piggybacked deer, giraffe and cat balance on a tightrope.
Feature

Managing vendor and supply chain risk in a recession

The COVID-19 crisis is putting security vendors, especially startups, under severe pressure. Here's how to vet their financial stability and prepare for the worst.

A hacker looks out over a city amid graphs of increasing trend lines and numerical rates.
Feature

Cybercrime in a recession: 10 things every CISO needs to know

Economic downturns force cybercriminals to change focus and creates conditions for new criminals to join their ranks. Here's how to prepare.

A man looks displeased/stressed/frustrated and pinches his brow while using a computer at work.
Feature

5 risk management mistakes CISOs still make

Cybersecurity is now a board-level issue, but many organizations still struggle to get security risk management right.

bank vault bank hacked breach security breach binary numbers by negative space and peshkov getty im
Feature

10 markers of a great cybersecurity program

How strong is your security program? These ten indicators will help you recognize greatness in your own organization and serve as a guide for what to look for in a partner.

successful team collaboration shows happy employees celebrating and giving each other high fives
Feature

How Prudential measures its security culture to identify risk

The financial services firm finds that employee confidence in how they would respond to a given security scenario is a better indicator of risk than their security knowledge.

Global geopolitical vectors
Feature

How CISOs can best assess geopolitical risk factors

A recent report on Russian-affiliated advanced persistent threats provides a template to help CISOs evaluate risk from nation-state actors.

network security concept
Feature

COVID-19 and tech: New collaboration tools mean new security risks

As the coronavirus forces companies to move their communication and file sharing onto collaboration platforms, be prepared for unintended consequences: New security threats will surface, requiring new methods of securing your...

Load More