Is Your Next Security Failure One Fat Finger Away?
The first week of March in 2017 will be remembered as the time that AWS (Amazon Web Services) failed. The actual failure was in the Amazon Simple Storage Service (S3), but…
Details
Privacy By Design Is Still Imperative
Each year brings more large-scale security and privacy breaches, leaving the general public questioning to what extent companies could be trusted with their sensitive information. Retail, health care, banking, entertainment, governments…
DetailsNIST Cybersecurity Framework, Beyond Version 1.0 – Part 3
In this series I take a close look at the Framework for Improving Critical Infrastructure Cybersecurity which NIST first published in February of 2014. Read Part One ‘All Infrastructure and the…
DetailsThe Human Element of Incident Response – Part Four
There is an extraordinary amount of money and time spent on detection and response relative to cybersecurity, and much of this conversation is technology focused. In this series of articles,…
Details
How to Unlock Cybersecurity Talent
Today the cybersecurity sector is fraught with the challenge of a diminished talent pool. Cisco’s report, “Mitigating the Cybersecurity Skills Shortage,” highlights the worldwide shortage of one million information security…
DetailsRansomware in Healthcare – Strategies for Protecting the Enterprise – Part Three
In this three-part series, Academic Health Care CISO Mitch Parker shares his insights on ransomware, incident response and best practices for building a world class prevention program. Read parts one and two.…
DetailsThe Human Element of Incident Response – Part Three
There is an extraordinary amount of money and time spent on detection and response relative to cybersecurity, and much of this conversation is technology focused. In this series of articles,…
DetailsHacking the Election – The Emperor’s New Clothes
Normally, I would never talk about politics, and this story will not be an exception. However, the analogy here is too good for me to pass up. Let’s say that…
DetailsData Breach Information You Can Chew On
We live in a time when data breaches are the norm. As information security and risk professionals we are tasked with trying to mitigate the risks posed by these impending…
DetailsThe Human Element of Incident Response – Part Two
There is an extraordinary amount of money and time spent on detection and response relative to cybersecurity, and much of this conversation is technology focused. In this series of articles,…
DetailsThe Army of Things
By now, you’re probably well aware of the fate recently befallen on the Brian Krebs site KrebsOnSecurity.com. A Distributed Denial of Service (DDoS) attack in excess of 620/Gbps caused such…
DetailsRansomware in Healthcare – Strategies for Protecting the Enterprise – Part Two
In this three-part series, Academic Healthcare CISO Mitch Parker shares his insights on ransomware, incident response and best practices for building a world-class prevention program. Read part one. As a…
Details