HALOCK News

The Federal Trade Commission (FTC) released the final agenda for a July 13, 2020 virtual workshop that will seek input on proposed changes to the Gramm-Leach-Bliley Act’s Safeguards Rule, which requires financial institutions to develop, implement, and maintain a comprehensive information security program.

HALOCK partner will serve as a panelist during the 9:30am session: The Costs and Benefits of Information Security Programs.

“… tying in other risk measurements with cyber-risk makes good sense, if only to have everyone using similar models, methods, and/or lexicon for risk management… Perhaps best known among these are the NIST risk management resources, cited by many as a basic compliance checklist. There’s also the Center for Internet Security’s Risk Assessment Methodology (RAM), created by Halock Security Labs.”  via DARK READING

Penetration testers are the frontline witnesses on cyber threats and vulnerabilities. They continue to see the same weaknesses and vulnerabilities within the enterprises they examine. Below, is a list of recommendations for you to be aware of in the year ahead.

Chicago Tribune – HALOCK Security Labs is conducting an informative webinar to help establish ‘reasonable’ risk cybersecurity controls, based on the Duty of Care Risk Analysis (DoCRA) standard.

Do you know reasonable?

Enhance your security strategy to address your changing working environment and risk profile due to COVID-19. HALOCK is a trusted cyber security consulting firm and penetration testing company headquartered in Schaumburg, IL in the Chicago area servicing clients throughout the United States.
 

Insightful discussion with Chicagoland information security experts in Crain’s Roundtable.

A key method that was showcased at the event was the practice of ‘duty of care‘. That is, businesses should assess their security controls to ensure that all parties are protected from potential harm.

HALOCK Security Labs today announced that it has become a Champion of National Cybersecurity Awareness Month (NCSAM) 2018. It will be joining a growing global effort among businesses, government agencies, colleges and universities, associations, nonprofit organizations and individuals to promote the awareness of online safety and privacy. (more…)

“While accountability starts with the CEO and corporate board, cyber security is a shared responsibility across every function and level of an organization.” – article in Security Magazine. Read more on how information security professionals must be aligned when it comes to security safeguards.

HALOCK supporting the compassionate work of Lurie Children’s Hospital.

Schaumburg firm HALOCK celebrates over 20 years as an information security firm at the annual outing at Arlington Park. This year is quite special, as HALOCK co-developed with CIS® (Center for Internet Security), CIS RAM, an information security risk assessment method that helps organizations implement and assess their security posture against the CIS Controls cyber security best practices.

The NetDiligence® CyberRisk Summit features leading experts in cyber security and cyber risk management participating in comprehensive panel discussions on hot topics, current issues and evolving trends in the cyber risk management industry. HALOCK partner Chris Cronin moderates an expert panel discussion on reasonable risk.

Do you know reasonable?

It was the right thing to do

My employer, HALOCK Security Labs, just gave away our highly valuable intellectual property. For years, we have been developing and improving a method for assessing cyber risk that acts as a universal translator for executives, regulators, judges, attorneys, and subject matter experts. The method, “Duty of Care Risk Analysis” has been very advantageous to us as we described our services to our clients.

CIS® recently released CIS RAM (Center for Internet Security Risk Assessment Method); CIS RAM is an information security risk assessment method that helps organizations implement and assess their security posture against the CIS Controls cybersecurity best practices.  Developed by HALOCK Security Labs in partnership with CIS, CIS RAM provides three separate security approaches to support different levels of organizational capability.

A panel including Greg Johnson, Vice President and Assistant General Auditor of the Federal Reserve Bank and Chris Cronin, a partner in HALOCK Security Labs discussed the CIS Controls V7. Learn more about the CIS Controls and risk assessment method, CIS RAM.

by Glenn A. Stout Ph.D., CISM, GSEC, PMP

As families prepare to take to the beaches, resorts and other vacation spots all over the world, bad actors area also preparing their various attacks on the unsuspecting. Use this vacation checklist to keep you cyber safe.

The Women in Cybersecurity Conference (WiCyS) will be held in Chicago on March 23-24 and HALOCK is a proud sponsor of this important event. WiCyS is a community in which women in the cyber security field can engage, encourage and support one another in order to empower not only themselves, but also the cyber security industry at large.

Digital mortgages are improving the borrowing experience for consumers, but they may also complicate fraud risks stemming from the Equifax data breach.

New cost reductions make cloud options more compelling than ever but, in a twist, experts say cloud platforms can be more secure than managed data centers.

Ransomware is one of the most insidious and diabolical weapons in a hacker’s arsenal because it effectively locks you out of your entire network — until you pay the ransom, that is.

The following guide points out 10 of the most common myths organizations have when it comes to cyber security risk management and compliance, as well as the facts. Knowing the difference between the two may be critical for your company as you navigate the often difficult-to-understand nature of today’s cyber security, risk management and compliance landscape.