Risk-based cybersecurity

Risk-Based Cybersecurity In Finance: Step By Step Guide

A recent letter drafted by the Financial Services Roundtable (FSR) and sent to financial services companies promotes a risk-based cybersecurity approach. Noting the diversity of institutions, the FSR proposes moving away from imposing rigid requirements on all firms; and instead, holding individual firms accountable for customizing cybersecurity programs that align with their risk profile.

Cybersecurity in Post-WannaCry Era: Proceed with Caution

The back-to-back WannaCry and Adylkuzz outbreaks in mid-May mark a turning point on the cybersecurity landscape. Both attacks had far-reaching global ramifications—spreading chaos throughout all types of organizations—big and small.  But it looks like we got lucky.

For all of the disruption they caused, these attacks were surprisingly amateurish. Just think of the devastation a more developed attack could cause. But make no mistake—these attacks serve as a warning. Organizations need to heed the lessons learned and adjust their cybersecurity strategies accordingly.  

Defense-in-Depth

Rethinking Defense-in-Depth: Where’s its Place in IoT World?

The idea of defense-in-depth has been around for nearly two decades. While it provided effective protection in the past, the recent spate of high-profile breaches and nation-state attacks proves defense-in-depth alone is no match for today’s threat environment. Defense-in-depth, the layering on of security controls to ensure that attacks breaching one layer will be caught…