Cyber risk is a complex topic and part of a larger picture in your organization. Cyber risk is a strategic necessity for any organization to increase cyber resilience. In this podcast, we will have an open conversation on governance, risk, and compliance to move your organization from as-is to the next level. Here we will have discussions on program assessments, control assessments, risk identification, risk register, mitigation plans, and much more.
Today I’ll discuss risk probability and impact and give you some examples to build your own impact and probability table.ProbabilityImpactThanks.Dr. B...
Today I’ll touch on the topic of Cyber Risk & Cyber Investment challenges.ImprovingExploitsAttack pathsAttacker behaviorInvestmentThanks.Dr. Bill Souz...
The show today is based on an article titled, “Global utilities lacking basic cybersecurity practices.” Although the article was focused on utilities,...
We are so focused on the threats and the vulnerabilities that allowed a hack to occur, that we forget the basics. The protection necessary to prevent ...
As I mentioned in my previous episode, there’s much more to discuss on cybersecurity exceptions, such as the risk they pose to the organization and th...
If your cybersecurity standards were written to protect the organization, why do you have security exceptions? Your standard development team writes a...
Asset classification is the foundation of everything else to come in cybersecurity; it will help your organization, for example, small or large, to be...
In this episode, I will discuss three challenging areas where cybersecurity education is falling short in preparing students and professionals to succ...
In this episode, I discuss how to leverage your risk framework to make sound cybersecurity investment decisions. I addressed two critical questions th...