Military strategy and training changes with every conflict and governmental paradigm shift. The only publication that has maintained relevance in the last 2500 years, is Sun Tzu’s The Art of War. I read this book only after I finished my military career, while I was studying for my degree in Counter-Terrorism, and only then could I relate back to my military service and understand why I was trained that way. Sun Tzu only talks about training once in the thirteen chapters but it is a chapter worth reading, “Victory goes to the army who has better trained officers and men [and women]”.
Topics: cyber range
Much has been written about the benefits of an MSSP, especially if you are a big organization. It allows for a consistent, centralized, and transparent view into your organization’s security platform. But, how do you decide if an “in-house” security management program is effective enough? What is the cost-benefit analysis when deciding to budget expenses for in-house versus out-sourcing?
The nuclear industry is struggling to meet compliance deadlines and find dedicated, knowledgeable resources who can be embedded into the existing workforce and function as a cohesive team. A typical nuclear plant contains thousands of Critical Digital Assets (CDAs) that need identified attributes collected and assessments conducted. With many plants identifying over 80 required attributes for each of thousands of devices, these projects can quickly become overwhelming.
One-Fifth Of Enterprise Respondents Reported A Third-Party Breach according to Forrester's Top Cybersecurity Threats of 2018.
Cyber security is a skill based occupation. The only way to improve a cybersecurity expert skill set, is by accumulating hands-on experience. Similar to fighter pilots, who don’t often face the challenges and threats of the real world , training cybersecurity experts can be effective only by simulating hyper-realistic scenarios which allows cybersecurity individuals and teams to face a real threat, and improve their skills based on the experiences.
What are the most important principles in information security?
Data Minimization and Frictionless Security. Data minimization is a real key. You can’t lose, nor hurt clients’ privacy if you are not maintaining things someone wants to steal. This also makes it easier to protect what data you do have. If you have fewer categories of data, it is easier to sort out what you need to protect to the highest level versus elements that are not quite as sensitive, or about clients. In thinking about data minimization, you must always be asking: Why was this sent to us? Why should we be storing it? Are there govt regulations that force me to store it for a minimum timeframe?
Every year, far too many businesses are compromised by cybercriminals, and each time, important data and sensitive information are accessed and exploited. In all situations, cybercriminals will use their best technology to steal data and even the finances of big businesses.
Just what are the new GDPR Regulations?
The General Data Protection Regulation (GDPR) imposes new rules on organizations in the European Union (EU) and those that offer goods and services to people in the EU, or that collect and analyze data tied to EU residents, no matter where they are located.
Get your copy of the Top Cybersecurity Threats In 2018!
By Josh Zelonis with Stephanie Balaouras , Bill Barringham , Peggy Dostie
Don’t let it be a challenging task to protect your business from every possible attack type.
Companies are under attack: 58% of global enterprise respondents say their firms have experienced at least one breach during the past 12 months. Of these, 50% say their firm suffered at least one internal incident, and 36% suffered at least one attack or incident involving a business partner or third-party supplier.