Kim Larsen New Chief Information Security Officer at SaaS Data Protection Vendor Keepit

April 16, 2024 at 04:29PM Kim Larsen, a seasoned cybersecurity leader with 20+ years of Govt and private sector experience, has joined Keepit as the new CISO. Larsen’s expertise spans business-driven security, risk management, and aligning digital strategies. His strategic insights and unique perspective position him to elevate Keepit’s security advisory capabilities and future services. … Read more

Hands-on Review: Cynomi AI-powered vCISO Platform

April 10, 2024 at 07:33AM The demand for vCISO services is growing due to increased third-party risks, regulatory demands, and cyber insurance requirements. Cynomi, an AI-driven vCISO platform, addresses this need by providing automated security assessments, compliance readiness, and actionable tasks. It enables MSPs and MSSPs to efficiently deliver vCISO services while supporting scalability and … Read more

Sprinto Raises $20 Million for Automated Risk and Compliance Platform

April 10, 2024 at 07:24AM San Francisco-based risk and compliance platform provider Sprinto secures $20 million in Series B funding led by Accel, backed by Blume Ventures and Elevation Capital. Sprinto uses AI and automation to ensure organizations comply with regulations and privacy demands. The funding will drive research, development, and expansion into new markets, … Read more

Implementing container security best practices using Wazuh

April 9, 2024 at 11:37AM Containerization has revolutionized application deployment and management, emphasizing security compliance in containerized environments. Wazuh, a free open-source security platform, addresses this need by providing visibility, granular access controls, vulnerability scanning, and monitoring for Docker and Kubernetes containers. It aids in maintaining regulatory compliance and strengthening container security, making it an … Read more

US critical infrastructure cyberattack reporting rules inch closer to reality

March 28, 2024 at 09:38AM New cyber incident reporting rules for critical infrastructure closer to implementation after President Biden signed CIRCIA into law in March 2022. Organizations must report substantial cyber incidents within 72 hours, including ransom payments within 24 hours. The rule faces pushback from industry due to added compliance strain on resources, according … Read more

Abstract Security Brings AI to Next-Gen SIEM

March 26, 2024 at 11:22AM The startup’s AI-powered data streaming platform efficiently separates security analytics from compliance data, resulting in faster detection and reduced computing and storage costs. From the meeting notes, it is clear that the startup’s AI-powered data streaming platform has the capability to separate security analytics from compliance data. This separation leads … Read more

Risk and Regulation: Preparing for the Era of Cybersecurity Compliance

March 21, 2024 at 09:45AM The text emphasizes the growing significance of cybersecurity risk management and the implementation of regulations to improve cybersecurity standards. It highlights the accountability of senior leaders, the challenges in achieving compliance, and the role of threat intelligence in managing cyber risk. Ultimately, it encourages a positive mindset towards cybersecurity compliance … Read more

NIST Launches Cybersecurity Framework (CSF) 2.0

March 20, 2024 at 01:47AM NIST released Cybersecurity Framework (CSF) 2.0 on Feb 26, 2024. It provides guidelines to reduce cyber risk and enhance security posture, consisting of functions and categories. The update introduces Governance as a separate pillar, emphasizing its importance in cybersecurity risk management strategy. The impact will lead to changes in tracking … Read more

BigID Raises $60 Million at $1 Billion Valuation

March 19, 2024 at 09:57AM BigID, a data security provider, raised $60 million in a growth funding round, totaling $320 million and surpassing a $1 billion valuation. The funding, led by Riverwood Capital, aims to enhance organic and inorganic growth. BigID offers various solutions such as data discovery, security management, and privacy for enterprises. Additionally, … Read more

4 Security Tips From PCI DSS 4.0 Anyone Can Use

March 11, 2024 at 04:36PM Compliance is crucial for security professionals, with many standards evolving to resemble security best practices. PCI DSS 4.0, applicable to all businesses accepting credit card payments, introduces new requirements such as preventing malicious scripts, enhancing network security controls, securing systems and software, and ensuring robust logging and monitoring. These updates … Read more