Seven Basic Cybersecurity Measures As Revealed By Wisdom Of The Crowd
Individual experts offer good advice, but when many people agree on practical steps necessary for better cybersecurity, their consensus carries more weight, at least so long as cybersecurity lacks outcome-based, objective metrics. Accordingly, here are the most important things small and medium-sized organizations should do, according to a survey the Internet Security Alliance did of […]
Five Principles for Stronger Board Oversight of Cybersecurity
One of the most important jobs of the board is to challenge management and test their assumptions about strategy, the competitive environment, and associated risks and opportunities. Many directors would say that they are most passionate about this part of their role, and in today’s business environment it has never been more critical. Cybersecurity is […]
Movement in the Right Direction on Cyber Security
While the bulk of mainstream news coverage on cyber issues has been focused on macro issues such as Russian involvement in our electoral process, there have been less noted initial signs of progress on the more traditional cyber concerns such as the protection of critical infrastructure, theft of intellectual property and securing of personal data. […]
IT Security Employment Soars to Record High
The number of people employed in the United States as information security analysts reached a record high in 2016, according to uncirculated employment data provided by the U.S. Labor Department’s Bureau of Labor Statistics. Based on the same household survey used to determine the monthly unemployment rate, BLS reports that 89,000 individuals last year were […]
Updated cyber ‘handbook’ for business leaders examines changing legal, threat landscape
The updated “Cyber-Risk Oversight” handbook for corporate directors released Thursday examines new legal and regulatory requirements and challenges faced by business, as well as the evolving and growing threat of cyber attacks. “The legal and regulatory landscape with respect to cybersecurity, including required disclosures, privacy and data protection, information-sharing, infrastructure protection, and more, is complex […]
Boards of directors, managers at center of cybersecurity handbook for industry
The server room might be an obvious choice for a starting point when it comes to protecting your company’s cyber networks, but the National Association of Corporate Directors says the best place to begin is in the board room. The newest edition of the NACD’s Cyber-Risk Oversight handbook, released Jan. 12, advises private sector managers […]
Why risk management is critical in cybersecurity
If you’re a federal cyber official, the advice in a newly revised handbook on corporate cybersecurity might sound familiar. The new National Association of Corporate Directors’ cybersecurity handbook says cybersecurity is a risk management issue, not an IT matter. The language echoes what top federal agency IT managers and cybersecurity officials have been saying about […]
Former DHS head urges Trump to see economic dangers from cyberattacks
Last week’s U.S. intelligence report tracing Russia’s cyber-meddling with the 2016 presidential election is a timely reminder of the cybersecurity risks that the government and private companies face, said Tom Ridge, the nation’s first secretary of Homeland Security. “President-elect Trump is entering into a world fraught with hazards as never before,” Ridge said in a […]
ISA PRAISES EFFORT TO REFORM CYBER SECURITY AUDITING PRACTICES
(WASHINGTON, D.C.) – “The reality is that in most companies they are more afraid of the cyber auditor than they are the cyber attacker,” said Internet Security Alliance (ISA) President, Larry Clinton. “That is why the efforts of the AICPA to make the cyber auditing system more effective and efficient are so important. ISA is […]
Internet Security Alliance (ISA) Comments to the American Institute of CPA’s (AICPA) on the Creation of a Risk Management Methodology
The Internet Security Alliance congratulates the American Institute of CPAs’ for their effort to create a consistent assessment methodology for a company’s cybersecurity risk management processes. ISA represents some of the largest companies in the world. These companies are the intended buyers and audience for the AICPA’s proposed cybersecurity attestation engagement. Our members are invested […]
