The 2017 National Insider Threat Symposium and Expo, hosted by the National Insider Threat Special Interest Group (NITSIG), put the spotlight on insider threat detection, behavior patterns, program development, law enforcement, legal ramifications, and future challenges. The one-day event consisted of speakers from a mix of backgrounds, including insider threat risk mitigation experts, private sector business professionals, and… Read More
Today’s blog is written by our guest author, Bob Carver. He is a CISM, CISSP, and M.S. who specializes in topics about information security, privacy, and cloud security. If you look at a range of recent security industry reports, you’ll see varying times quoted for how long it takes criminals and bad actors to exploit your… Read More
Delta Risk has partnered with the Information Security Community on LinkedIn to examine the latest management trends, investment priorities, key challenges, and solutions preferences for incident response, threat hunting, threat detection, threat monitoring, insider threats, incident recovery, and more. Everyone who completes this comprehensive survey will receive a copy of the complete 2017 Threat Monitoring, Detection, and Response Report as… Read More
The power grid continues to be a target for sophisticated cyber attacks. In the past day, the latest attack – the biggest to ever hit Ukraine, according to its government – disrupted the Ukrainian state power distributor. Fortunately, this disruption didn’t impact power supplies or Ukraine’s broader operations. But this is yet another in a series of attacks that… Read More
There’s no doubt that bank data breaches cost businesses money, but there are costs associated with breaches that add up beyond a round dollar figure. Most studies that calculate the costs from breaches focus on short-term quantifiable costs such as discovering and mitigating the breach and recovering assets. But the long-term, indirect breach costs — costs such as hits to… Read More
Identifying and matching organizational roles with the correct cyber security training content is critical, but it is also important to manage programs at every step to get maximum value from them. Program management means ensuring your training objectives match organizational roles, and following up training with practice runs and refreshers to keep specific skill sets… Read More