The best way to take a holistic approach to the current threat landscape is to define security issues as business problems and then put the problem before the solution - not the other way around, contends RSA CTO Zulfikar Ramzan.
While IT and OT integration has brought about new levels of operational efficiency, it has also introduced serious cyber risks that conventional IT security approaches might fail to address, says IBM Security's Paul Garvey.
Although cybersecurity plans sometimes clash with business goals, the role of security should be to enable the business and not necessarily lock everything down, says Andrew Woodward of Australia's Edith Cowan University.
Artificial intelligence and machine learning will have a significant impact on lowering the cost of securing an organization because it will reduce the need for advanced skillsets, predicts Rapid7's Richard Moseley.
An analysis of the privacy issues Amazon will face as it dives deeper into the healthcare business leads the latest edition of the ISMG Security Report. Also featured: A preview of ISMG's Security Summit in New York Aug. 14-15.
Even though many organizations believe that supply chain cyber risk is a serious problem, very few organizations are vetting their suppliers, says CrowdStrike's Michael Sentonas.
Forty-eight percent of customers drop the products and services of organizations that have had a publicly-disclosed data breach. This is but one of the findings of the new 2018 Global State of Online Digital Trust study commissioned by CA Technologies. CA's David Duncan analyzes the results.
A WannaCry outbreak has hit unpatched Windows 7 systems at Taiwan Semiconductor Manufacturing Co., crippling its factories. The world's largest chipmaker, which traced the infection to a new software tool that it failed to scan for malware before installation, says the outbreak could cost it $170 million.
The chief security officer for the U.S. Democratic Party is recommending that all party officials avoid using mobile devices made by Chinese manufacturers ZTE and Huawei. Bob Lord says that even if devices from those manufacturers are free or low cost, no one wants to be the next "patient zero."
Weapons and attack capabilities that were previously only observed in large-scale nation-state operations are now falling into the hands of the masses. Today's attackers are more sophisticated, and capable of exploiting weaknesses at previously unseen speed and scale.
Download this white paper and learn:
The...
A financial services company with responsibility for protecting sensitive customer data lacked centralized visibility into alerts, had limited expertise to triage, prioritize, and escalate incidents, and spent significant time generating customized financial compliance reports.
After deciding not to build their own...
Even companies in full compliance of industry regulations get exploited. In truth, seeking to become impenetrable is admirable but entirely unrealistic. Now is the time to shift from "check box compliance" to risk-based security defenses that rely on incident response.
Download this brief and learn how to:
Combine...
PCI-DSS mandates all organizations that accept, transmit, process and store cardholder data must continuously monitor and safeguard all sensitive customer information.
Download this brief and learn how to:
Simplify compliance reporting;
Create custom reports to meet your business needs;
Find the right balance...
The FFIEC/NCUA guidance and supervision affects federally supervised financial institutions and their holding companies. However, complying with FFIEC/NCUA guidance can challenge financial institutions that have limited resources.
Download this brief and learn how to:
Simplify FFIEC/NCUA compliance with custom...
Nefarious hackers, cybercriminals and bad actors seek means, pathways and vulnerabilities to gain unauthorized access to a computer device or network for exploitation purposes.
Download this eBook and learn:
How to protect against the top 5 most common attack vectors;
Why you should focus on detection and...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.asia, you agree to our use of cookies.
