Posts Tagged 'risk management'
Data breaches are commonplace. Every organization that handles sensitive or private data should have a proper capability to respond to an incident. Many companies have a basic set of procedures, while others maintain a mature set of people and processes. A small percentage of organizations over the years have refined their capabilities to a professional level. […]
Este blog fue publicado inicialmente en CSO Online La seguridad adecuada en cualquier empresa tiene que ver totalmente con la gestión de los riesgos de su negocio. La palabra operativa es “su”. No existen dos organizaciones iguales cuando se trata de su negocio, así que no hay dos perfiles de tolerancia a riesgos idénticos. Debido […]
Do you know that insiders, whether through accident or intent, account for more than 40% of data exfiltration? These incidents often happen when Office documents are copied to a removable drive, USB storage, or cloud file sharing application. One way to significantly reduce these incidents is through the use of a file protection and encryption […]
It doesn’t have to. We just need to apply the compensating safeguards and automated controls selectively so CISOs and their security teams can comfortably embrace it. Although many CISOs see automation as a necessity to deal with limited resources and increasing workloads, there is a lingering reticence to adopt it widely because their security staff […]
Insiders have always and will always be a problem. The first step is to better understand the challenges and be able to effectively communicate with others. Many cybersecurity professionals are hesitant at addressing internal risks and feel much more comfortable at tackling external threats. This creates an imbalance, potentially to the detriment of the organization. […]