If your management team and board of directors are not talking often about cyber liability and risk management, they will be soon. As a matter of both corporate and individual liability, recent ...

NATIONAL HARBOR, Md., June 4 /PRNewswire/ -- Verizon Business customers now can get an even better handle on the effectiveness of their security programs. At the Gartner IT Security Summit here ...

The management of information risk has become a significant topic for all organizations, small and large alike. But for the large, multi-divisional organization, it poses the additional challenge of ...

The Department of Homeland Security maintains an effective, enterprise-wide information security management program for its intelligence systems, according to an unclassified summary of a DHS ...

The Department of Homeland Security's inspector general says DHS continues to maintain an effective, enterprise-wide information security management program for its intelligence unit. In a truncated, ...

The only way to deal effectively with the evolving risks of digitalization and increasing cyber threats is to institute a continuous, sustainable security program. Unfortunately, many security teams ...

With what seems like a never-ending stream of cybersecurity attacks, corporate boards and executives are searching for that “silver bullet” to protect them from the universe of threats. Unfortunately, ...

Forbes contributors publish independent expert analyses and insights. I offer insight on cyber security issues for businesses and consumers. Following Black Hat and revelations about the lack of ...

Security experts share their best advice for the essential ingredients of a solid vulnerability management program, including foundational elements to put in place, workflows to establish, who to ...

A lot of the work I do, especially for clients regulated by the Department of Labor (DOL), involves third-party risk reviews. In 2021, the DOL released a list of cybersecurity best practices. Now, in ...

The purpose of this policy is to define required access control measures to all University systems and applications to protect the privacy, security, and confidentiality of University information ...