Walking the Tightrope Between Innovation & Risk

October 10, 2024 at 12:02PM The July CrowdStrike incident highlights the risks associated with deploying security technologies. CISOs should focus on “secure innovation,” fostering a culture of security throughout the organization. Engaging employees and ensuring vendor security are crucial for maintaining operational stability while promoting innovation. Collaboration is key to balancing risk and progress. ### … Read more

Risk Strategies Drawn From the EU AI Act

October 10, 2024 at 08:52AM As AI integration in business increases, organizations must adapt their governance, risk, and compliance strategies to address associated privacy and security risks. The EU AI Act provides a framework categorizing AI systems by risk levels, outlining requirements for High and Limited Risk systems to ensure safety, transparency, and compliance. ### … Read more

CYRISMA Secures $7M Growth Equity Financing led by Blueprint Equity

October 9, 2024 at 05:36PM CYRISMA, a risk management platform, announced Series A funding led by Blueprint Equity, with participation from SaaS Venture and Golden Ventures. The investment will enhance platform development, expand sales, and support Managed Service Providers (MSPs) in managing cybersecurity risks effectively. Blueprint Equity’s Sheldon Lewis will join CYRISMA’s Board. **Meeting Takeaways: … Read more

Social Media Accounts: The Weak Link in Organizational SaaS Security

October 9, 2024 at 07:39AM Organizations often neglect social media account security, risking reputational damage and financial losses. With multiple access layers and stakeholders, proper governance is critical. Utilizing SaaS Security Posture Management (SSPM) tools can enhance oversight, mitigate risks, and ensure only authorized users engage on behalf of the brand. ### Meeting Takeaways – … Read more

Insider Threat Damage Balloons Amid Evolving Cyber Environments

October 4, 2024 at 03:49PM Organizations are experiencing a surge in insider cyberattacks, with remediation costs reaching as high as $2 million per incident. The rise in attacks is attributed to complex IT environments, evolving technology, and inadequate staff training. Remediation efforts are slow, costly, and often prolong recovery time, emphasizing the need for preventive … Read more

Navigating the Complexities & Security Risks of Multicloud Management

October 3, 2024 at 10:02AM Improper cloud security has resulted in costly breaches for organizations such as Toyota and Accenture, highlighting the significant impact of cloud security failures. As multicloud strategies become more prevalent, the complexities of managing multiple cloud environments pose challenges in governance, security, and compatibility, necessitating robust cloud security practices and strategic … Read more

Overtaxed State CISOs Struggle With Budgeting, Staffing

September 30, 2024 at 05:11PM State CISOs in the US are facing numerous challenges, including inadequate resources and expanding responsibilities related to cybersecurity. They are responsible for managing IT security programs, addressing data privacy, and handling incident response efforts. Despite increased workloads, CISOs are encountering budget constraints and staffing shortages, hindering their ability to effectively … Read more

How to Plan and Prepare for Penetration Testing

September 27, 2024 at 07:30AM The advancing security technology is matched by adversaries implementing new techniques to enhance speed and impact while evading detection. Ransomware and malware remain prominent tools for cyber criminals, with hands-on intrusion techniques posing a threat. To manage risks, security practitioners seek penetration testing services, which involve detailed planning and preparation. … Read more

Mastercard’s Recorded Future Deal Furthers its AI Security Goals

September 20, 2024 at 08:17AM Mastercard recently announced its acquisition of cybersecurity firm Recorded Future for $2.65 billion, marking its second-largest acquisition. Recorded Future’s threat intelligence capabilities are expected to enhance Mastercard’s security services, offering real-time analytics and AI to detect and prevent cyber threats. The move aligns with Mastercard’s focus on bolstering its AI-enabled … Read more

CISA Releases Cyber Defense Alignment Plan for Federal Agencies

September 19, 2024 at 11:06AM CISA released the FOCAL plan to align federal agencies against cyberthreats. It aims to standardize operational cybersecurity practices across agencies and identify collective cybersecurity goals. The plan outlines five priority areas and presents alignment goals to improve operational cybersecurity and resilience for the Federal Civilian Executive Branch (FCEB). Based on … Read more