I really appreciate the #DtSR Gang [Rafal Los (@Wh1t3Rabbit), James Jardine (@JardineSoftware), and Michael Santarcangelo (@Catalyst)] inviting me to tag along for another episode of the Down the Security Rabbit Hole podcast. In this episode we discuss the following: Traveler’s Insurance files suit against a web development company for failing to provide adequate security, resulting…
Tag: Business Cyber Risk
Executives & Board: The conversation security leaders need to have about Amy Pascal’s departure
This is an excellent article that covers a very important topic you need to consider. You — as in Executives and Board Members of Companies all around the world. Stop, close your eyes, and ask yourself these three questions that are in this article: “What did you think of the announcement?” (i.e., put yourself in…
Will Changes to the CFAA Deter Hackers? | Norse DarkMatters
Read my latest post on Norse’s DarkMatters: Will Changes to the CFAA Deter Hackers?
7 Ideas for Security Leaders – What Do You Think About My Suggestion?
Many thanks to CSO Online and Michael Santarcangelo (@catalyst) for including my suggestion as one of 7 inspiring ideas for small changes that lead to big improvements in both security posture and leadership within organizations. The article is 7 Ideas for security leaders. Here is a teaser from my suggestion on slide 5 but please go check out…
Happy Data Privacy Day!
What are you doing to observe it? Today is Data Privacy Day! If you have been wondering “what is Data Privacy Day?” then this is your lucky day because not only is today Data Privacy Day, but here is the answer and an explanation for why it really matters to you and your company’s future…
Update/Clarification: Washington AG Seeks Data Breach Law That Ends Blanket Exemption for Encrypted Data
This update/clarification post explains how the proposed Washington state data breach notification law is really treating encrypted data and how it may actually be expanding the data breach safe harbor exceptions under that law.
#SonyHack: Will Executives’ Embarrassing Emails Better Motivate Cybersecurity Change?
Sitting in the Miami airport at 5:00 am I am reading news updates on the #SonyHack and a thought just occurred to me: Previously, many of us preaching the “you better take your company’s security seriously” message to the C-Suites have been wondering if it would take a court decision finding C-Levels or Board members…
The Best Evidence Why Your Company Needs a CISO Before a Data Breach
“The proof is in the pudding,” goes the old saying. When it comes to organizational changes companies make following a data breach, If the proof is in the pudding, then the verdict is clear: companies should hire a Chief Information Security Officer (CISO) before they have a data breach. Why? According to this article in…
Stop lying to yourself — your business is not prepared for data breach risk
Ponemon studies from September 2014 tell us that 43% of US companies had a data breach last year, even if they are not aware of it, and 78% either do not have a data breach response plan in place or have not updated it in a timely manner. This means that your business must be ready…
This Is Why Your Business Needs Cyber Insurance Coverage
Unless your business is selling home-grown vegetables out of a truck on the side of the road, you need to seriously consider getting insurance that covers cyber risks. Why? Because most insurance companies will not willingly cover cyber-related losses under their conventional insurance policies. Trust me, I have fought this battle before! A recent case…
You must be logged in to post a comment.