Audit, Benchmark, Management and Vulnerability - Continuity Professionals Pulse

How CISOs Can Reduce Third-party Attack Vectors

Pure Storage

MAY 13, 2024

Engage with the reality of the new threat landscape CISOs and their teams clearly have plenty to do, but there’s an essential task to add to the list: instituting new policies and procedures around procurement, auditing, and monitoring of third-party providers. Shift left encourages teams to find vulnerabilities earlier and fix defects.

Audit

Audit Banking Benchmark Application

Adversarial Risk Management

FS-ISAC

NOVEMBER 8, 2021

You can hire a professional audit firm to benchmark the bucket against peer buckets. We chase concepts that seem simple, such as "basic" network hygiene, asset management, and patching. But these approaches rely on tenets based on traditional operational and financial risk management. Or you could fill it with water.

Risk Management

Risk Management Management Audit Asset Management

How to Implement Threat Modeling in Your DevSecOps Process

Pure Storage

AUGUST 3, 2023

Threat modeling is the process of identifying potential threats and vulnerabilities in a system and determining the likelihood and impact of each threat. Assets that are vulnerable to spoofing include usernames, passwords, and digital certificates. This can be a serious threat to audit trails and other compliance controls.

Authentication

Authentication Vulnerability Authorization Audit

Data Storage and Backup Security: How to Defend Against Ransomware

Solutions Review

NOVEMBER 1, 2022

They assume it complicates storage management (somewhat true) and that security and performance are contradictory (valid years ago, much less so today). A good first step could be to perform a one-time audit for storage security. Start by creating secure storage designs, implementations, and management procedures.

Backup

Backup Security Audit Publishing

What Is Risk Management?

LogisManager

OCTOBER 12, 2021

What Is Risk Management? Risk management, in its simplest form, is assessing the possibility of something bad happening; i.e. “If I take this action, will it result negatively?”. Risk Management allows you to imagine tomorrow’s surprises today. However, implicit risk management is not enough to successfully operate a business.

Risk Management

Risk Management Management Insurance Insurance

3 Steps to Prepare for 2024 and Beyond with the Risk Maturity Model

LogisManager

MAY 22, 2023

In this blog, we will explore three ways to prepare for the future: engaging your Risk Committee and Board of Directors with the Risk Maturity Model, using risk management to anticipate and mitigate potential risks, and optimizing vendor spending while enhancing your security. You can take the free Risk Maturity Model assessment here.

Risk Management

Risk Management Evaluation Banking Benchmark

3 Steps to Prepare for 2024 and Beyond with the Risk Maturity Model

LogisManager

MAY 22, 2023

In this blog, we will explore three ways to prepare for the future: engaging your Risk Committee and Board of Directors with the Risk Maturity Model, using risk management to anticipate and mitigate potential risks, and optimizing vendor spending while enhancing your security. You can take the free Risk Maturity Model assessment here.

Risk Management

Risk Management Evaluation Banking Benchmark

If Cyber is Material, Then Boards are Accountable

FS-ISAC

NOVEMBER 8, 2021

Second, regulators are increasingly indicating that ultimate accountability for cyber risk management rests with the board. Cybersecurity, digital disruption, and data privacy are sustainability issues that need to be managed and disclosed. Differentiate between board discussions and management discussions.

Cybersecurity

Cybersecurity Financial Services Risk Management Benchmark

School Security & Active Shooter Interdiction: A Q&A With Vince Riden

Security Industry Association

AUGUST 4, 2022

I taught the teachers how to use these systems, taught the principals how to manage these systems and instructed county employees on how to maintain these systems. Multiple shooter events around the country made me start thinking what can I do myself, and I decided to leverage all my experiences into a single personal effort.

Activation

Activation Security Architecture Mitigation

SIA New Member Profile: IXP Corporation

Security Industry Association

NOVEMBER 16, 2023

New Security Industry Association (SIA) member IXP Corporation provides emergency communications consulting, technology and managed services for public safety, governments, campuses and private industry. IXP is the market leader for privatized 911 managed services and the “go-to” company for tackling public safety’s toughest challenges.

All-Hazards

All-Hazards Education Technology Government

Continuity Professionals Pulse

How CISOs Can Reduce Third-party Attack Vectors

Adversarial Risk Management

Trending Sources

How to Implement Threat Modeling in Your DevSecOps Process

Data Storage and Backup Security: How to Defend Against Ransomware

What Is Risk Management?

3 Steps to Prepare for 2024 and Beyond with the Risk Maturity Model

3 Steps to Prepare for 2024 and Beyond with the Risk Maturity Model

If Cyber is Material, Then Boards are Accountable

School Security & Active Shooter Interdiction: A Q&A With Vince Riden

SIA New Member Profile: IXP Corporation

Stay Connected