More and more companies face unique challenges when it comes to detecting insider threats. Here are some basic steps that all organizations should take to monitor insider fraud.
Of the many policy issues concerning the tech sector, few are as intensely debated...
This week, Claudia Girrbach from SearchSecurity.com shares five best practices culled from real business-life experiences that can be applied at nearly any organization to improve user acceptance of new information security processes and strengthen the organization’s...
Today’s organizations use of IT is continuously expanding. When information technology is an integral part of the company’s activities and services, the board expressly needs to consider getting involved in IT oversight.
Here are 5 questions board members...
We are nearing the end of 2012 and the IT industry has started thinking about 2013 and its challenges.
This week Forbes put together a list of what they believe will be the top 10 Strategic CIO Issues in the coming year. As you’ll see, each of these issues is...
This week brought us some great resources for IT security governance.
First, Bortnick, cyber liability lawyer and Pennsylvania chair for the Council on Litigation Management, shares some useful tips for those organizations mulling the purchase of cyber insurance...
In a recent research conducted by Ernst & Young, the top finding was that organizations with greater risk management maturity outperform their peers financially. They clearly generate higher growth in revenue, EBITDA, and EBITDA/EV.
Here are some key finds...
Here are this week’s best resources:
7 Ways To Make Your Staff More Security Aware – Dominic Saunders writes a great guest post for Forbes on how to make sure your workforce is security aware. Plus, he is providing an action plan to start implementing...
Carnegie Mellon CyLab recently conducted a survey on how boards of directors and senior management are governing the security of their organizations’ information, applications and digital assets. The survey was based upon the results received from 108 board members...
I’m delighted to announce that I will be presenting a class at the EGRC 2012. The Excellence in Governance, Risk Management, and Compliance (EGRC) Conference is a three-day event in Portland, Maine from June 12-14.
I will be presenting at 8:30 AM &...
