Tag Archives: CIS RAM

COMPLIANCE WEEK Webinar: The Questions a Judge Will Ask You After a Data Breach – What is Reasonable Security?

What is Reasonable Security? If you are breached and your case goes to litigation, you will likely be asked to demonstrate “due care” and that your controls were “reasonable.” Many are surprised to learn that a breach by itself does not constitute negligence in most cases. But judges will ask a set of questions that […]

RSA 2019: BETTER Connecting. Collaborating. Confiding.

Cybersecurity in this day and age is a collective effort.  Its also a moving target as attack strategies, exploits and malware strains are constantly changing.  To effectively protect users, data and capital investments from the bad guys, we  continually enhance security strategies and tools with developing industry trends.  For just as attack vectors evolve, so […]

CIS RAM Workshop: Making CIS RAM Work for You

This two-hour workshop will demonstrate how to conduct a risk assessment – from beginning to end – using CIS’ new risk assessment method. A brief introduction to CIS RAM’s foundations will be followed by example walk-throughs of developing criteria for assessing and accepting risk, for evaluating current controls for risk acceptability, and for modeling safeguards […]

Cyber Security Summit Chicago for Reasonable Security – CIS RAM

Proud to have spoken at the Cyber Security Summit: Chicago –  How to practice duty of care for reasonable security. CIS RAM: This Math will Save You by Chris Cronin at the Cyber Security Summit in Chicago. Based on balance – Duty of Care Risk Analysis (DoCRA).