RSA Conference 2019 kicked off with a visionary call to action by RSA leadership Rohit Ghai and Niloofar Razi Howe. Ghai and Howe described two alternative paths society could travel in terms of security; one is chaos and the other is trust.
Chicago Tribune – HALOCK Security Labs is conducting an informative webinar to help establish ‘reasonable‘ security in cybersecurity controls, based on the Duty of Care Risk Analysis (DoCRA) standard. This event is hosted by Compliance Week at 2:00 p.m. EDT on Thursday, March 21, 2019. Do you know “reasonable” for your organization?
Popular Cyber Attacks and Due Care for Reasonable Security. As children, we enjoyed reading the many fairytales that began with, “Once upon a time.” As adults in the workplace, we regrettably read the stories of so many recent cyber attacks that start with, “Someone opened a phishing email.”
Proud to have spoken at the Cyber Security Summit: Chicago – How to practice duty of care for reasonable security. CIS RAM: This Math will Save You by Chris Cronin at the Cyber Security Summit in Chicago. Based on balance – Duty of Care Risk Analysis (DoCRA).
Duty of Care Risk Analysis: Leveraging the New Risk Assessment Method to Reduce Liability Duty of Care Risk Analysis (DoCRA) is a new standard that describes processes for evaluating information security risks and their safeguards so that the resulting analysis
Who is Responsible for a Data Breach or a Reasonable Security Strategy? “While accountability starts with the CEO and corporate board, cybersecurity is a shared responsibility across every function and level of an organization.”
By Chris Cronin, ISO 27001 Auditor, Partner Would you be surprised to learn that there is no HIPAA requirement that tells organizations to use a firewall? How about an intrusion detection system (IDS)? Nope. And no requirements for a data loss prevention tool (DLP) either, or a proxy server, or even a security information and event […]