New & Notable
Risk assessments, metrics and frameworks News
April 08, 2021
Cyberattacks are a significant threat to unpatched, unprotected SAP applications, according to a new threat intelligence report from SAP and Onapsis.
March 02, 2021
Google has joined forces with two cyber insurance companies to craft specialized cyber insurance policies for Google Cloud customers called Cloud Protection+.
October 27, 2020
Adoption of the Mitre ATT&CK framework, which saw version 8.0 released Tuesday, has grown rapidly over the last years, though challenges still remain for enterprise users.
August 11, 2020
Indiana University Health CISO Mitchell Parker discussed internal risk assessments, security snake oil salesmen and more at his Black Hat USA 2020 talk.
Risk assessments, metrics and frameworks Get Started
Bring yourself up to speed with our introductory content
Cybersecurity is the protection of internet-connected systems such as hardware, software and data from cyberthreats. Continue Reading
Cloud penetration testing presents new challenges for information security teams. Here's how a playbook from the Cloud Security Alliance can help inform cloud pen test strategies. Continue Reading
Post-quantum cryptography, also called quantum encryption, is the development of cryptographic systems for classical computers that are able to prevent attacks launched by quantum computers. Continue Reading
Evaluate Risk assessments, metrics and frameworks Vendors & Products
Weigh the pros and cons of technologies, products and projects you are considering.
Risk assessments help identify and, more importantly, prioritize activities an organization needs to address its most serious threats and vulnerabilities. However, costs may vary. Continue Reading
Safeguarding public cloud environments is a shared responsibility. Cloud customers should use CIS benchmarks to ensure cloud security at the account level. Continue Reading
Organizations have many threat intelligence frameworks to work with, each with its own advantages. From for-profit to nonprofit, here's help to figure out which ones you need. Continue Reading
Manage Risk assessments, metrics and frameworks
Learn to apply best practices and optimize your operations.
In the wake of several supply chain attacks, Pam Nigro discusses how companies can work to reduce risk by broadening how to manage third-party vendors' access to company data. Continue Reading
Following the devastating SolarWinds breach, IT leaders should renew their focus on third-party risk management. Start by implementing supply chain security best practices. Continue Reading
From third-party risk assessments to multifactor authentication, follow these steps to ensure suppliers don't end up being your enterprise cybersecurity strategy's weakest link. Continue Reading
Problem Solve Risk assessments, metrics and frameworks Issues
We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.
Too often, organizations focus exclusively on external risks to security. Infosec expert Nabil Hannan explains what CISOs can do to effectively assess and prevent insider threats. Continue Reading
Being a paramedic and working in cybersecurity taught CISO Rich Mogull how to avoid stress and burnout. Check out his advice to maintain mental health in high-stress roles. Continue Reading
This template from IANS Research can help IT and security professionals document and prioritize essential processes, staffing and systems when faced with a pandemic event. Continue Reading