As a cyber security vendor, we regularly advise our readers and clients to “patch early and patch often.” There are many reasons why organizations don’t patch systems and devices, though. First off, let’s just say that patching is a bit like working out. We all know we should exercise regularly. The reality though, is that… Read More
Author: Ryan Clancy
Are Your Third-Party Vendors Putting You at Risk?
The past few years have given us not only a staggering amount of Marvel movies, but eye-wateringly expensive data breaches. Some of the most costly and devastating breaches occurred as a result of cyber criminals taking advantage of security weaknesses in third-party vendors. So, are your third-party vendors putting you at risk? Even a single… Read More
Ensuring Online Safety at Work with Cyber Security Training
The third blog in our series as part of National Cybersecurity Awareness Month (NCSAM) focuses on the theme of workforce education and training, and awareness. Today we’re going to look at the people dimension of the people, process, and technology triad. Security professionals often complain that people are the weakest link of the three, but I prefer to characterize… Read More
7 Practical Online Safety Tips Anyone Can Follow at Home
The week one theme of National Cyber Security Awareness Month (NCSAM), “Make Your Home a Haven for Online Safety,” focuses on practical online safety tips anyone can follow to protect their homes and families against cyber security threats. Every day, parents and caregivers teach children basic safety practices like looking both ways before crossing the street and holding… Read More
Confessions of a Risk Assessor: 6 Things to Know Before a Cyber Security Assessment
If you asked me what the first item of business would be for me as a new CISO or CIO in an organization, my answer would be to perform a cyber security risk assessment to improve overall security management. Actually, I’d probably install an espresso maker, but risk assessments would be a close second. Having a risk assessment done involves identifying… Read More
Why GDPR is Every Security Professional’s Dream
It was the fall of 2016, and I winced at the title of the article: “Is YOUR Organization Ready for GDPR?” I thought to myself, what was GDPR again? It sounded like a device used on CSI to lift fingerprints from a moving ceiling fan. Turned out the General Data Protection Regulation (GDPR) was a new… Read More