ISA, NACD, and DHS Will Discuss Cybersecurity “From the Top Down”

Posted on September 19, 2019 at 7:10 am

FOR IMMEDIATE RELEASE Contact: Larry Clinton President and CEO, Internet Security Alliance (202) 236-0001 lclinton@isalliance.org The President of the National Association of Corporate Directors (NACD), Peter Gleason, the President of the Internet Security Alliance (ISA), Larry Clinton, and the Assistant Director of the Department of Homeland Security’s Cybersecurity Infrastructure Security Agency (CISA), Daniel Kroese, will […]

NACD AND ISA TO EXPAND COLLABORATION INTERNATIONALLY ON CYBERSECURITY FOR BOARDS OF DIRECTORS

Posted on September 17, 2019 at 8:39 am

FOR IMMEDIATE RELEASE Contact: Susan Oliver NACD susanboliver@gmail.com 703-216-4078 Josh Higgins Internet Security Alliance 703-778-0083 jhiggins@isalliance.org WASHINGTON, D.C. (September 17, 2019) – The National Association of Corporate Directors (NACD), the authority on boardroom practices representing more than 20,000 directors, and the Internet Security Alliance (ISA) today announced they will develop an updated version of the Director’s Handbook […]

DHS Taking Steps in the Right Direction on Cyber Risk Management

Posted on August 12, 2019 at 11:03 am

by Larry Clinton Perhaps the one thing virtually everyone in the cybersecurity field agrees on is that, notwithstanding many laudable efforts, we are losing the fight to secure cyberspace. Illustrative of this reality, the Director of the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency, Chris Krebs, has wisely commented we need a new […]

Mandatory Cybersecurity Training for Congress: What Kind of Training?

Posted on July 31, 2019 at 9:52 am

by Larry Clinton Last week, the bipartisan Select Committee on the Modernization of Congress issued a list of two dozen recommendations designed to “make Congress more reflective and responsive to the American people.” One recommendation stands out as particularly timely, visionary and practical: “Making cybersecurity training mandatory for Members.” Finally, a cybersecurity mandate that makes […]

Capital One Breach Highlights the Danger of Insider Threats

Posted on July 30, 2019 at 1:27 pm

by Josh Higgins When companies think about cybersecurity threats, they often think of a hacker in some far-off place using sneaky tactics to gain access to their systems. However, Capital One’s announcement Monday of a major data breach highlights another major, yet often overlooked, cyber threat: The insider. Similar to other cyber incidents, the newly […]

Accountability in Cybersecurity is a Two-Way Street

Posted on July 29, 2019 at 11:48 am

The biggest story in cybersecurity this past week was the eye-popping $5 billion dollar (that’s billion with a B) fine the FTC placed on Facebook for not adequately fulfilling its responsibilities to protect its consumer’s data. Probably just as painful to Facebook, and its CEO, as the fine itself is having to publicly acknowledge their […]

PODCAST – Larry Clinton – How to enhance cybersecurity risk oversight

Posted on July 26, 2019 at 10:56 am

EY Webinar – June 24, 2019 Larry Clinton

Regulators: Don’t Make the Same Cyber Mistakes Over Again

Posted on July 19, 2019 at 2:27 pm

It’s not news that cyber-attacks are increasing both in number and sophistication and that the increasing criticality of the attack methods demands increased attention especially with respect to critical infrastructures. Also, due to the uniqueness of information systems, the speed with which attack methods and technologies change the traditional regulatory model has been deemed to […]

MAN BITES DOG: State Regulators Want Cyber Reg Reform

Posted on June 26, 2019 at 1:31 pm

Yesterday Congressman Cedric Richmond, Chair of the House Homeland Subcommittee on Cybersecurity, Infrastructure Protection and Innovation announced in the wake of the recent ransomware attacks on local jurisdictions like Atlanta and Baltimore that he is going to propose a series of legislative efforts to assist the municipalities because “we can’t expect under-resourced, understaffed, state and […]

Brush with Greatness: A Chat with a Man Who May Be the Tipping Point Toward Effective Cybersecurity

Posted on June 21, 2019 at 10:47 am

by Larry Clinton The greatest cyber risk an organization can have is doing a faulty cyber-risk assessment. This is one of the key insights from Doug Hubbard’s paradigm-shifting book “How to Measure Anything in Cybersecurity Risk”. While in Chicago this week to do a series of Master Classes on the Economics of Cyber Risk for […]