BLOG

Your trusted source for cybersecurity news, insights, and advice.

Moody’s: The Cybersecurity Trifecta for Boards of Directors

Moody’s: The Cybersecurity Trifecta for Boards of Directors

Intent To Rate Cybersecurity Risk Is The Third Major Board Of Directors Wake-Up Call The past 36 months has seen two significant developments that should have woken up Boards of Directors to their cybersecurity obligations. First, a spate of high-profile cyber events,...

Outrunning the Bear

Outrunning the Bear

A Cybersecurity Assessment Boards Actually Care About Boards and executives are becoming increasingly involved in cybersecurity planning and strategy discussions. This is a marked improvement over the last decade, much of which is due to media-catching headlines and...

Agenda Item #1 for the Next Board of Directors Meeting

Agenda Item #1 for the Next Board of Directors Meeting

A Duty of Care for Cybersecurity This past summer we witnessed various blue-chip firms like Maersk, Merck, FedEx and Mondelez, none of whom likely anticipated the reality of a major cyber event, all declare major impacts on operations and in some cases a resulting...

UPDATE – SEC’s New Cybersecurity Risk Guidelines

UPDATE – SEC’s New Cybersecurity Risk Guidelines

SEC’s New Cybersecurity Risk Guidelines As we noted in our recent piece “What do the SEC’s New Cybersecurity Risk Guidelines Mean for You as a Board Member?”, the Commission is increasingly focused on cyber risk as it pertains to disclosure requirements. The 2018...

Tips for Developing or Improving Metrics

Tips for Developing or Improving Metrics

Reposted Content from ISACA Newsletter @ISACA Volume 1 Everywhere we turn, vast amounts of facts, figures, numbers, records and files are being processed, interpreted, organized, structured and presented in a way that turns those data bits and bytes into meaningful...

The One Thing your Utility Security Program is Missing

The One Thing your Utility Security Program is Missing

Ever since the Federal Energy Regulatory Commission approved mandatory cybersecurity standards for the nation’s grid, self-proclaimed gurus and experts have been making a headache of things. The Critical Infrastructure Protection (CIP) standards are one of the few...