Most of the discussions about the EU’s General Data Protection Regulation (GDPR) have naturally focused on best practices for achieving compliance and avoiding penalties. As GDPR compliance becomes a reality this month for all companies that do business with EU residents, an often overlooked aspect has been the overall business advantage of GDPR preparedness. Because […]
Guest Posts
Ransomware: An Enterprise Perspective
In 2016, I provided predictions in an article entitled The (Immediate) Future of Ransomware. I indicated ransomware was going to grow and find other vectors for infection outside of simply malware links. Those predictions come true on a massive scale in particular with the WannaCry and Petya outbreaks, driven by system vulnerability vectors just as […]
Security or Innovation?
I recently bought a house, and as many homeowners know, you should never buy a house without inspecting its foundation. A bad foundation can lead to cracks, instability, and an unsafe living environment. No matter how good the rest of the house looks, without a good foundation it’s unlivable. In order to foster innovation at […]
Vulnerability, Breach, and Patch: Break the Vicious Cycle
Once again, we’ve seen more large data breaches in recent days – Under Armour’s MyFitnessPal app and website lost data of its 150 million account holders, and Hudson’s Bay Company lost five million credit and debit card numbers from customers of Saks Fifth Avenue and Lord & Taylor. These hacks highlight continued focus of cybercriminals […]
The true value and ROI of continuity planning
One of the biggest challenges that someone charged with overseeing a Continuity Program has is to prove that the program is worth its cost: “What is your program’s ROI?” I call that the “dreaded question.” I would like to propose another way to frame this question. What if continuity planners talked about value on investment […]
Preparing for the impact of a cyber breach
This is a guest post written by Secure360 Twin Cities 2017 spotlight speaker Regina Phelps. It seems there isn’t day that goes by without another story of a cyber attack or breach. It has almost become a “breach a day”! Companies are spending millions of dollars to prevent these attacks from occurring, which is a […]
The blame game between IT and C-level leaders
In a survey of a group of 221 C-level executives and another group of 984 IT decision makers, it was found that each group largely believes the other group is responsible in the event of a breach. The analyst firm Opinium conducted the survey last October and November on behalf of BAE Systems Applied Intelligence, a cybersecurity […]
Addressing security and compliance in a multi-Cloud world
The following is a guest post by a 2017 Secure360 Twin Cities Platinum Sponsor BMC Software. Let’s face it—the world of information technology has changed dramatically in the last several years. A de-centralized era of IT has emerged and opened up a myriad of business opportunities while organizations find new ways to evolve their transformations to […]
The need for an open security fabric
The following is a guest post by a 2017 Secure360 Twin Cities Diamond Sponsor Fortinet. Fortinet is proud to be a Diamond Sponsor at this year’s Secure360 Twin Cities event being held May 15-17 at the Minneapolis Convention Center. We will be showcasing our family of security technologies designed to support the new Fortinet Security Fabric. […]
Why you must prioritize vulnerabilities
The following is a guest post by a 2016 Secure360 Wisconsin Gold Sponsor Qualys. If you are an information security professional, you’ve probably experienced vulnerability disclosure overload. This ailment strikes when infosec pros grapple with the constant release of vulnerability announcements, amounting to thousands per year. The truth is that no IT department has enough staff and resources […]
