The dynamic, automated, continuous risk management framework addresses the shortcomings of its predecessor, the Risk ...

The Cybersecurity and Infrastructure Security Agency (CISA) has released version 2.0 of its Cross-Sector Cybersecurity ...

Businesses often rely on a network of vendors to support their operations, yet many don’t realize this reliance comes with significant cybersecurity risks. Because of this, strengthening vendor risk ...

The U.S. National Institute of Standards and Technology has released a preliminary draft of its Cybersecurity Framework ...

The National Institute of Standards and Technology's preliminary draft helps banks integrate artificial intelligence into ...

Based on my two decades of experience in cyber risk management, here are five of the most common, persistent and costly myths I've encountered—and the truth.

Boards of directors play an important role in managing the strategic risks faced by their organizations, particularly in sectors with high-risk operational technology (OT) environments such as energy, ...

The National Cyber Security Centre (NCSC) has launched refreshed guidance on cyber risk management designed to make its advice more accessible and customizable, even for those new to the discipline.

Leaders are the chief risk managers of any organization. Decisions about new products, markets, suppliers, etc., come down to leadership’s priorities regarding risk. Leadership holds topmost ...

Cyber security risk assessment and management is a multidisciplinary field that combines elements of computer science, operational research and strategic decision-making to evaluate, mitigate and ...

On a March 2024 National Association of State Chief Information Officers call with both government and corporate IT leaders, an old security problem was highlighted that has evolved into a current top ...