Articles Tagged with ''risk management''

What’s the failsafe alternative to FireEye and SolarWinds?

April 6, 2021

Those on the cyber threat frontlines may view the entire FireEye-SolarWinds catastrophe through a very different lens. It’s a mile-high view that proves a thesis: why data must be smart and able to protect itself from cybercriminals – no matter where it goes, where it’s stored or who has it.

Sophos identifies connection between Mount Locker and Astro Locker team ransomware

April 5, 2021

Sophos published a new report on a recently uncovered connection between the Mount Locker ransomware group and a new group, called “Astro Locker Team.”

Profiles in Excellence

Long-term commitment to security

Maggie Shein

April 5, 2021

Take a look at CISO of DoorDash Justin Grudzien’s career in data privacy and security from building security teams from the ground up at Orbitz to solidifying best practices at DoorDash. Security talks to Grudzien about how he views security roles within the enterprise, how to avoid burnout, and how other security leaders can earn a seat at the C-Suite table.

Kroll—including Duff & Phelps business—announces managing director promotions

April 5, 2021

Kroll has announced that the firm has promoted 18 colleagues to the managing director level in the United States, with a total of 31 practitioners promoted globally.

Security implications of a hybrid workplace

Jim Bowers

April 5, 2021

There’s a consensus building that for many of us, our post-pandemic reality will be a hybrid workplace—one in which a mix of in-person, WFH and offsite employees is a daily occurrence. This means it will be up to IT security pros to fill the gaps and stop intruders.

What you need to know about the deep and dark web

Alberto Casares

April 5, 2021

Billions of searches take place on the surface web every day. Synonymous with Google, this part of the web is indexed by search engines. Try searching your name and you’ll likely be met with thousands if not millions of results, a few of which are familiar to you – your social media profiles, bio on your employer’s website, mentions in the news. The surface, or “clear” web, is only the tip of the iceberg, as vast as it may seem. In fact, it makes up only 4% of the entire World Wide Web. A much larger chunk of the web, the deep web, lies beneath the surface and is not indexed by search engines – but it is still just as important for security professionals to monitor.

Averting Targeted School Violence: A U.S. Secret Service Analysis of Plots Against Schools focuses on prevented violence

April 2, 2021

The U.S. Secret Service National Threat Assessment Center (NTAC) released Averting Targeted School Violence: A U.S. Secret Service Analysis of Plots Against Schools, the newest report out of the center. For the first time in agency history, NTAC specifically examines attacks that were successfully prevented.

CSA survey finds cloud security is improving

Survey finds that 58% of respondents are concerned about security in the cloud, while misconfigurations are one of the leading causes of breaches and outages, as public cloud adoption doubles over past two years

April 2, 2021

The Cloud Security Alliance (CSA) new survey, “State of Cloud Security Concerns, Challenges, and Incidents, finds that 58% of respondents are concerned about security in the cloud, while misconfigurations are one of the leading causes of breaches and outages, as public cloud adoption doubles over past two years.

CISA releases supplemental direction on emergency directive for Microsoft Exchange Server

April 2, 2021

CISA has issued supplemental direction to Emergency Directive (ED) 21-02: Mitigate Microsoft Exchange On-Premises Product Vulnerabilities providing additional forensic triage and server hardening, requirements for federal agencies. Specifically, this update directs federal departments and agencies to run newly developed tools —Microsoft’s Test-ProxyLogon.ps1 script and Safety Scanner MSER—to investigate whether their Microsoft Exchange Servers have been compromised.

David Guthrie joins Sharecare as CIO and CISO

April 1, 2021

Sharecare announced the expansion of its executive team with David Guthrie joining as chief information officer (CIO) and chief information security officer (CISO).

Workplace violence remains one of the most complex challenges facing healthcare organizations today. For executive security professionals, the stakes have never been higher: protecting staff, patients, and visitors while preserving a culture of compassion, dignity, and service.

Articles Tagged with ''risk management''

What’s the failsafe alternative to FireEye and SolarWinds?

Sophos identifies connection between Mount Locker and Astro Locker team ransomware

Long-term commitment to security

Kroll—including Duff & Phelps business—announces managing director promotions

Security implications of a hybrid workplace

What you need to know about the deep and dark web

Averting Targeted School Violence: A U.S. Secret Service Analysis of Plots Against Schools focuses on prevented violence

CSA survey finds cloud security is improving

CISA releases supplemental direction on emergency directive for Microsoft Exchange Server

David Guthrie joins Sharecare as CIO and CISO

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.