Risk management - Articles - Page 160

Cloud Security Alliance releases new telehealth risk management guidance

June 15, 2021

The Cloud Security Alliance (CSA) announced the release of Telehealth Risk Management, focusing on the importance of healthcare delivery organizations (HDO) having processes and controls in place to ensure the privacy and security of telehealth patient information in the cloud in accordance with HIPAA privacy rules and the GDPR.

80% of organizations increased focus on identity security following pandemic shift to remote work

June 15, 2021

Over the last year, the shift to remote work has led to an increase in the number of identities and an increased focus on identity security, but a decrease in confidence in the ability to secure employee identities, according to a new Identity Defined Security Alliance (IDSA) study.

McDonald's Corp suffers data breach

June 14, 2021

McDonald's Corp. said hackers exposed U.S. business information and some customer data in South Korea and Taiwan.

Fancy Lazarus DDoS extortion group is back with new campaign focused on unprotected assets

June 14, 2021

Fancy Lazarus, a well-known distributed denial of service (DDoS) extortionist, has resurfaced with a new campaign focused on organizations with unprotected assets across all sizes of companies in all industries, according to Radware.

450% surge in security breaches containing usernames and passwords

June 14, 2021

ForgeRock announced findings from its 2021 Identity Breach Report, revealing an unprecedented 450% surge in breaches containing usernames and passwords globally.

Enterprise security: Positioning your team as a value add, not a cost center

Learn some simple strategies to transition the image of your security team from a cost center, to a value add.

Burke Brownfeld

June 14, 2021

Now is the time to take a step back and consider approaches that can help to re-brand the image of your corporate security and resilience departments. This article will share four direct strategies that can help you and your security team transition from being seen as a “cost center” to becoming a value-add to your business’s bottom line.

Education & Training

A loaded word: The challenge of defining active assailant protocols in PreK-12 schools

Cheryl Lero Jonson Brooke Miller Gialopsos Melissa M. Moon Matthew W. Logan

June 14, 2021

“Today, your child’s school will have an active shooter drill.” This seemingly simple sentence has become a source of contentious debate across the United States in recent years. Despite the rarity of mass shootings occurring at school, approximately two-thirds of parents of teenagers express worry about a school shooting, according to Pew Research.

Enterprise Services

Centralized supply chain security programs yield efficiency

Finding efficiencies in supply chain security is as simple as enveloping more of your supply chain. Kirsten Provence has led Boeing’s supply chain security program for nearly a decade; here she explains what has propelled efficiency gains by scaling the program using subsidiaries.

Kirsten Provence

June 11, 2021

Finding efficiencies in supply chain security is as simple as enveloping more of your supply chain. Kirsten Provence has led Boeing’s supply chain security program for nearly a decade; here she explains what has propelled efficiency gains by scaling the program using subsidiaries.

How to navigate the new Colorado Privacy Act (CPA)

June 11, 2021

The Colorado Privacy Act (CPA) passed yesterday in the state's senate and will go into effect in July 2023 – creating an additional regulation that organizations must comply with or face hefty fines and eroding consumer trust.

Increased cybersecurity mandates coming for state and local governments

Matthew Hodson

June 11, 2021

The past year’s COVID-19 pandemic marked an unparalleled turning point that has completely changed the world as we know it. When businesses and organizations from many industries rushed to establish business continuity from home, hackers took full advantage of the remote work conditions that provided easy targets in unsecure environments. Although people are returning to the office and getting “back to normal,” the idea of evaluating the organization’s cybersecurity posture is becoming more prevalent.