An essential function of a cybersecurity program is the management of cyber risk. You’ll manage it on a daily basis as part of the operational functions and projects your team…
Read More
Over the next several posts on this blog, I’ll describe how to measure, understand, and manage cyber risks at an executive level. We’ll build on everything that we’ve covered so…
In last week’s blog, we introduced the idea of designing and building your cybersecurity program for risk management and compliance. Let’s continue with some examples. A Data Security Example To…
My previous blog posts in the series have led us to this next step: Designing and building your cybersecurity program to achieve both your cyber risk management and compliance goals….
In today's environment it’s not if you will be breached, but when. This Thursday, join industry leaders at this free educational session to learn that cybersecurity is not something you buy, it's something...
Read More
Last week, I told you a little bit about Cyber Risk Opportunities: Who we are, why we exist, and who we help. Now, let me tell you how we fulfill…
Let’s take a look at some specific sources for cybersecurity controls. They will become the raw material for meeting your cybersecurity program goals and managing risk. There are Many Sources…
There’s no easy answer to the question “How much should we spend on cybersecurity?” But, because the Federal Trade Commission (FTC) defines “reasonable” cybersecurity in such a way that you…
It takes careful thought and disciplined execution to assemble the right people in the correct positions to support your cybersecurity program. Let’s go through the process of discovering who you…
The person in charge of your cybersecurity program is often called the Chief Information Security Officer, or CISO. About the CISO Title, and Why It Matters The CISO title is…