Page 21 - White Papers in - information risk management

HIPAA Compliance: What The Healthcare Industry Needs To Know

At its core, compliance for HIPAA is simply about maintaining patient privacy by ensuring your users appropriately access and use patient data. Electronic Health Record (EHR) solutions provide detail around when patient data is accessed. The challenge, however, is the lack of visibility into what users do with...

The Do's and Don'ts of Reporting to the Board

CISOs increasingly are summoned to present to their Boards of Directors. But too often these presentations fail to frame the right topics with the right metrics. Download this eBook on addressing the Board and learn about: Common challenges security and risk teams face when reporting to the Board; Key areas of...

2018 Vulnerability Review: Key Facts From a Global Information Security Perspective

The annual Vulnerability Review analyzes the evolution of software security from a vulnerability perspective. Secunia Research at Flexera monitors more than 55,000 applications, appliances and operating systems, and test and verify the vulnerabilities to provide global data on the prevalence of vulnerabilities, while...

How to Build a Scalable & Sustainable Vendor Risk Management Program

Defending your organization from risk means confronting the potential security vulnerabilities that are present in your third party network. Deloitte reports that 83% of today's business leaders lack confidence in third party vendor risk management processes. Why? Because traditional VRM methods are no match for the...

Simplifying Advanced Attack Detection

Despite the millions of dollars companies invest in cybersecurity programs, advanced persistent attackers constantly devise new means of breaking into corporate environments. How can deception technology offer a new alternative? The key to deception technology is to deter lateral movement inside a network. On each...

The 2018 Threat Impact and Endpoint Protection Report

Ransomware is a multi-billion dollar business with the number of new ransomware variants continuing to grow quarter-over-quarter. Despite the many security offerings available, organizations continue to fall victim to ransomware attacks. Download this report, where we surveyed businesses across all industries to find...

Deception Technology: How Your Organization Can Outsmart Cybercriminals

Despite the millions of dollars companies invest in cybersecurity programs, advanced persistent attackers constantly devise new means of breaking into corporate environments. How can deception technology offer a new alternative? The key to deception technology is to deter lateral movement inside a network. On...

The Need for Real-Time Risk Analytics

Card issuers can view the merchants with whom a cardholder does business, the frequency of a cardholder's purchases, and the devices and IP addresses associated with that specific card. While this allows them to understand and assess certain patterns of behavior for individual cardholders, it restricts analysis to the...

The State of Organizations' Security Posture as of Q1 2018

As of Q1 2018, the global cybersecurity community finds themselves inundated with both internal and external advanced threat actors who are stealthier, more resilient and sadly, more effective than they have ever been before. Many organizations are coming to terms with deciding whether their security posture is...

Modernizing Malware Security with Cloud Sandboxing in the Public Sector

For public sector technology leaders evaluating technologies to combat malware attacks, this report offers important considerations for deploying cloud-based security. Ransomware and other data security threats are a serious concern for any organization, but the stakes are higher and the risks are greater for...

Ransomware Costing Organizations Billions as CIO's and CISO's Lose Their Jobs

There is no doubt that every organization now requires advanced malware protection. Even so, there are plenty of organizations that have either not yet implemented this protection, or have it only somewhat implemented. Do these organizations recklessly believe they won't be targeted? Do they think their investment in...

The Sound of Secure Transactions: Voice Biometrics and PSD2 Compliance

The digital shift is increasing the need for more sophisticated privacy and data protection measures. Several major institutions have seen their information security compromised in recent years as cyberattacks and fraudulent activity show no sign of slowing down. With PSD2 regulations now in effect, companies are in...

Are You Vulnerable to an SSH Compromise?

Is your organization exposed to an attack that misuses SSH keys? You know that your organization is using SSH to safeguard privileged access. But you may not realize that your SSH keys could be vulnerable to insider and cyber threats. The majority of those we surveyed didn't. Results from a 2017 study show that...

SSH Study: U.S., U.K. and Germany Executive Summary

A recently published 2017 survey of over 400 security professionals in the U.S., U.K. and Germany measured how well their organizations implemented security controls for SSH keys. The results show that most organizations are underprepared to protect against SSH-based attacks, with fewer than half following industry...

4 Steps to Protect SSH Keys: Stop Abuse of Privileged Access

SSH keys provide the highest level of access rights and privileges for servers, applications and virtual instances. Cyber criminals want this trusted status and invest considerable resources into acquiring and using SSH keys in their attacks. Even though SSH keys are the credentials that provide the most privileged...