Proactive cybersecurity programs include comprehensive activities that involve not only the IT and security teams, but also the CEO and boards of directors. Examples of key proactive activities include identifying risk tolerance, defining governance structures, and developing comprehensive security strategies. Throughout this article, we will review key domains where organizations can proactively fortify their cybersecurity measures. COVID-19 has increased threat activity and created unique changes — and increased risk — in IT environments. Now is the time to review some “quick hit” areas where you can bolster your cybersecurity and execute your winning strategy.
In a new report of survey results, nearly a quarter of businesses felt natural disaster preparations helped them address COVID-19. They tended to find preparations of broad applicability during natural disasters, such as telework readiness, more useful than hazard-specific measures. The survey also identified areas of hardship for businesses, including uncertainty and a lack of guidance and resources.
Companies need to tangibly improve employee well-being, particularly when it comes to their security professionals. Here are three measures security leaders can incorporate into their organization now, before employees hit a breaking point.
Transportation Security Administration (TSA) Administrator David Pekoske was at the TSA Transportation Security Operations Center (TSOC) on Tuesday, Oct. 13, to meet with the local TSA workforce and conduct one of his regular virtual town hall meetings, which was broadcast to agency employees nationwide.
Cybersecurity is critically important in the healthcare industry. We’ve all seen the headlines about vulnerabilities disclosed, information leaked, and facilities disabled because of malware. Unfortunately, many organizations have unrealistic expectations of their security teams. These result in missed deadlines, friction with product teams, and an operational model that cannot scale and is ultimately doomed to failure. By understanding the correct functioning of a security group, organizations can reduce overall risk smoothly and effectively.
British Airways has been fined £20M by the Information Commissioner’s Office (ICO) in a 2018 data breach scam that compromised the information of more than 400,000 customers.
There’s a significant movement in cybersecurity right now that is seeing organizations approach the problem of cyber defense through the eyes of an attacker. T
Amidst this flurry of high-profile attacks comes National Cyber Security Awareness Month; a poignant reminder that, for hospitals and healthcare providers, cyberattack prevention and business continuity is truly a matter of life and death. Over the course of the pandemic, we have seen ransomware and phishing attacks against healthcare institutions — viewed by cybercriminals as vulnerable and profitable targets — dramatically skyrocket. But where, in an ever-evolving threat landscape, should healthcare organizations focus their attention?
To ensure the deployment of enterprise-class registrars and additional best practices, organizations need to establish what we can call a “Domain Security Council.” Through such a council, CISOs collaborate with corporate C-suite members to identify, implement and continuously monitor/improve upon domain security policies and procedures.
RSS
