Cybergovernance Journal Update – 4/7/17
You can give your IT department all the toys in the world, but that won’t solve your cybersecurity problems or comprehensively reduce your company’s cyber risk.
LinkedIn Pulse, Apr. 3
The traditional approach isn’t practical for a pending acquisition. It usually takes too long to fit within the due diligence period, plus the additional temporary staff introduced are disruptive and can raise suspicion among employees about the pending transaction…
SecureID News, Mar. 23
The Chamber urges the administration to support the NIST Framework for Improving Critical Infrastructure Cybersecurity. They suggest that the federal government support efforts to help private enterprises manage cyber supply chain risks and consider ways to help small businesses and state and local governments use the NIST framework…
Computerworld, Mar. 31
“There is no point having an IT or tech team that is sitting buried in a room with technology, with all of the equipment and all of the gadgets and all of the kit you could possibly imagine, if that [security] information does not get used to inform the organisation as to what the threats are, and potentially what you need to do to combat them…”
digitalhealth, Apr. 6
Despite the triggering of Article 50 and the Brexit process, GDPR remains a reality. Not only does it come into force before the UK will have left the European Union, but both the government and information commissioner have confirmed the regulation will still apply. That means much tougher penalties under the Data Protection Act remit, and it also means plenty of changes when it comes to how organisations handle, protect and move personal data.
CIO Insight, Apr. 3
An October 2016 Ponemon Institute study found that the average cost of cybercrime to a large organization in the United States rose to more than $17 million in 2016. Only 39% of companies deploy advanced backup and recovery operations, though it reduces the average cost of cyber-crime by nearly $2 million. Similarly, only 28% have a formal information governance program, though this typically reduces the cost of cyber-crime by nearly $1 million…
Security Intelligence, Apr. 3
It’s really refreshing to read books written by smart, technology-savvy people who can speak passionately about cybersecurity without dragging the rest of us into the mind-numbing quicksand of IT jargon. It’s important to be informed and understand the terminology, but it’s equally important to present that information in a way that people can actually comprehend…