Governance & Risk Management

Navigating Cyber Risk Management Options in the Modern Era


Every business inherently faces some degree of risk. It is, ironically, an essential component of success. Establishing a digital presence offers numerous opportunities but also introduces significant risks. While it would be ideal for best-of-breed cybersecurity tools to halt all cyberattacks, such an expectation is currently unrealistic. The objective then is to implement cyber (more…)

PCI SSC North America Community Meeting and Reducing PCI Scope

The PCI SSC North America Community Meetings bring together the brightest minds in payment security. This year’s event took place in Boston, MA on September 10-12. The theme is ‘Shaping the Future of Payment Security‘.

With the release of PCI DSS v4.0, and changing purchase environments, professionals are keen to understand best practices – especially in the area of reducing PCI scope. Toast, Target, and HALOCK (more…)

Cyber Forecasting Model Discovered in Verizon’s Incident Data

HALOCK Security Labs was recently recognized for their contribution to the 2024 Verizon Data Breach Investigations Report (DBIR) having found a way to practically apply Verizon’s raw data for risk assessments.

HALOCK’s HIT Index (HALOCK Industry Threat Index) uses Verizon’s crowd-sourced dataset known as the VERIS Community Database (VCDB). It contains over 10,000 breach records with more than 2,500 columns detailing the characteristics of each attack. (more…)

WEBINAR: 2024 DBIR Findings & How the CIS Critical Security Controls Can Help to Mitigate Risk to Your Organization

The Verizon 2024 Data Breach Investigations Report (DBIR) is widely recognized across the cybersecurity industry for its comprehensive analysis of the global threat landscape, based on real-world data from actual security incidents and breaches. It serves as an authoritative source of information for organizations seeking to enhance their cybersecurity defenses and make better informed-informed risk management decisions.

This year’s report takes a deeper look at (more…)

Assessing Cyber Risks Using Verizon’s VCDB

When Verizon Business decided to publish their DBIR they had been amassing cyber incident data for years through their incident response and forensics investigations team. They decided to publish the trends they were seeing in a format that was both informative and engaging so we could learn how to protect ourselves.

Then in 2010, the Verizon DBIR (more…)

RSA Conference: Techniques to Evolve Risk Governance and Comply with SEC Cybersecurity Rule

RSA Conference 2024

This year’s RSA theme was The Art of Possible. It emphasized what we can do together – “To succeed at cybersecurity, we must go beyond ones and zeroes. Staying ahead of today’s threats and foreseeing tomorrow’s challenges requires trusting our intuition and collaborative experiences. Our collective strength lies in the bonds we build and the wisdom we share shaping a resilient (more…)

Go to Top