This paper is designed as a reference for corporate directors as they set their organization’s cybersecurity strategy and engage with stakeholders on the issue of cyber risk. Building on existing guidance and developed in cooperation with the … [Read more...] about Principles for Board Governance of Cyber Risk
Boards of Directors
Cybersecurity Canon
Award Winning Books in Cybersecurity curated by the Institute for Cybersecurity & Digital Trust at Ohio State University. … [Read more...] about Cybersecurity Canon
The Sedona Conference Commentary on a Reasonable Security Test
The Sedona Conference Working Group on Data Security and Privacy Liability (WG11) developed this Commentary to address what “legal test” a court or other adjudicative body should apply in a situation where a party has, or is alleged to have, a legal … [Read more...] about The Sedona Conference Commentary on a Reasonable Security Test
Beyond Information Security Awareness Training: It’s Time to Change the Culture
Introduction The effectiveness of an information security program ultimately depends upon the behavior of people. Behavior, in turn, depends upon what people know, how they feel, and what their instincts tell them to do. While an awareness … [Read more...] about Beyond Information Security Awareness Training: It’s Time to Change the Culture
FBI Releases the Internet Crime Complaint Center 2020 Internet Crime Report, Including COVID-19 Scam Statistics
The FBI’s Internet Crime Complaint Center released its annual report. The 2020 Internet Crime Report includes information from 791,790 complaints of suspected internet crime—an increase of more than 300,000 complaints from 2019—and reported … [Read more...] about FBI Releases the Internet Crime Complaint Center 2020 Internet Crime Report, Including COVID-19 Scam Statistics
Cybersecurity: Emerging challenges and solutions for the boards of financial-services companies
Cyberrisks are diverse, difficult to predict or quantify, and growing. Mature boards are taking a comprehensive approach to managing cyberrisks by developing strategies integrated with the rest of the business to increase their awareness, … [Read more...] about Cybersecurity: Emerging challenges and solutions for the boards of financial-services companies
CIS RAM (Risk Assessment Method)
CIS RAM (Center for Internet Security® Risk Assessment Method) is an information security risk assessment method that helps organizations implement and assess their security posture against the CIS Controls™ cybersecurity best practices. … [Read more...] about CIS RAM (Risk Assessment Method)
Mr. Brian Stone
How do you prove the security controls you've invested in are working properly? Cymulate continuously simulates cyber attacks on your controls For companies that want to test their security controls against the evolving threat landscape, Cymulate's … [Read more...] about Mr. Brian Stone
Digital Directors Network
Digital Directors Network is the only executive network focused on developing boardroom capabilities on systemic risk together with digital and cybersecurity governance. We're Directors, CIOs, CISOs, CROs, CDOs, CEOs and other technology executives … [Read more...] about Digital Directors Network
Careful Security
Cybersecurity is my area of expertise and I have built my career in the discipline, developing and delivering security solutions to organizations across sectors. Tapping into my background as an information security specialist as well as my … [Read more...] about Careful Security