Douglas Nagan
  • Male
  • Deep River, CT
  • United States
Share on Facebook
Share

Gifts Received

Gift

Douglas Nagan has not received any gifts yet

Give a Gift

 

Douglas Nagan's Page

Start Contributing Now!

Douglas Nagan posted a blog post

US Senate Cyber Security Bill

The United States Senate earlier this week introduced a bill with the short title ‘‘Internet of Things (IoT) Cybersecurity Improvement Act of 2017’’. Quite impressive sounding and would have been very useful if it did indeed provide a path to improved cybersecurity for the IoT. Having read the bill I can tell you that, in my opinion, you will gain little confidence that it will improve your own cyber security.Several things are clear from my reading:Some in the US Government appreciate the…See More
Aug 3
Douglas Nagan posted a blog post

What You Should Do to Detect & Respond to Ransomware

I created these steps, collected from various sources and personal experience, to provide you with guidance on what you should be doing to prevent, detect and respond to ransomware and other malicious software attacks. Hope you find it useful. If you would like more information I suggest you take our course on managing cyber exposures at the Global Risk Academy…See More
Jul 20
Douglas Nagan posted a blog post

Vacation time is not the time to relax cyber security

I realize that many of you are enjoying the summer (at least in the northern hemisphere) and relaxing as you contemplate a vacation, this invariably will include your cyber security watchfulness. Unfortunately the cyber predators realize this and have learned to ramp up their activity during your relaxation. The graph below demonstrates how the pattern shifted from 2015 to 2016. It is too early to tell if this will reoccur this year but initial data seems to suggest that the ramp up is…See More
Jul 10
Douglas Nagan posted a blog post

Petya’s Lessons so far

As the latest major hack, code named Petya, gets dissected the picture is getting clearer. Especially when combined with the information in the latest Verizon DBIR report. Link here.What this means is that if you updated your Microsoft operating system in a timely manner you are safe, as it appears that Petya is exploiting a vulnerability in Windows that was patched months ago and the virus was transmitted via a malicious email…See More
Jun 30
Douglas Nagan posted a blog post

The June 27th Cyber Hack - First Thoughts

Computer systems from Russia to the United States were struck on Tuesday in an international cyberattack that bore similarities to a recent assault that crippled tens of thousands of machines worldwide.Symantec has said the new attack was using the same hacking tool created by the National Security Agency that was used in the WannaCry attacks. The vulnerability was patched by Microsoft last April, but as the WannaCry attacks demonstrated, hundreds of thousands of organizations around the world…See More
Jun 27
Douglas Nagan posted a blog post

SANS 2017 Security Awareness Report - Some Thoughts

SANS has recently published its annual security awareness report (click on the link for a copy). Key is the concept of ‘security awareness’, which when combined with their Security Awareness Maturity Model provides a pathway to improved cyber security by managing the organizations cyber security culture.Sound familiar? It should as that has been my message for years and is integral to my approach and courses. All the cyber security…See More
Jun 5
Douglas Nagan posted a blog post

Symantec ISTR 2017

Symantec recently released its latest Internet Security Threat Report (ISTR). If you are not familiar with this report it provides a global snapshot of the state of internet threats. It examines Targeted Attacks; Email: Malware, spam & phishing; Web attacks, toolkits, & exploiting vulnerabilities online; Cyber Crime and the underground economy; Ransomware: extorting businesses & consumers; New frontiers: Internet of Things, mobile, & cloud threats.If you want to get an…See More
May 29
Douglas Nagan posted a blog post

Massive Global Cyber Attack

On Friday, as most of you know, there was a massive global cyber attack that took the form of ransomware. The cost of which is still be calculated.When you read the articles and analysis several things stand out, which I have been advising you about for some time. The attacks exploited non technical issues. Specifically the all too human behavior that clicks on emails or links that are not secure and not doing updates to key software in a timely manner. All the security technology is helpless…See More
May 13
Douglas Nagan posted a blog post

Cyber Security Culture Barometer

We have provided this simple self-assessment and score card free of charge in hopes that it will cause you to consider the impact that your organizations corporate cyber security culture has on your efforts to address your cyber threats and exposures.Today the pace of change in malicious cyber events is accelerating. In the past the risks were mainly in someone gaining access to valuable information such as proprietary company information, financial records, customer credit card data, and…See More
Feb 22
Douglas Nagan posted a status
"I have just updated my book 'effective Cyber Exposure Management' (ISBN 978-1478183785)."
Jan 2
Douglas Nagan posted a blog post

Managing Cyber Exposure vs Cyber Risk

Much effort is being expended, rightly so, in addressing cyber risks. However, it is a frustrating exercise since new risks and threat vectors are arising daily, even hourly. If you would like to stop playing cyber wack-a-mole and get on the offensive watch this video. It only takes 5 minutes and will explain why understanding and managing your cyber exposures provides a way to take the offensive.Hope you enjoy and gain something from it.…See More
Oct 13, 2016
Boris Agranovich liked Douglas Nagan's blog post 'Understanding Cyber Exposure'
Jun 13, 2015
Douglas Nagan posted a blog post

Understanding Cyber Exposure

There is a weakness in cyber risk to focus on the technical issues. They are necessary but not sufficient if you want to understand and manage all your cyber exposures, which I define as the vulnerabilities that arise as a result of activity using computers and the Internet. There is a great range of these vulnerabilities that are not being addressed.An example would be the exposures that arise through the use of…See More
Jun 11, 2015
Douglas Nagan replied to Ricky Meechan's discussion 'BYOD security question'
"A complex situation. My observation is that the individuals bringing their own devices will do their darndest to bypass the security. So the security has to expect hacking. Companies can find it hard to believe their own staff would do such a thing…"
Apr 8, 2015
Douglas Nagan replied to Lisanne Vos's discussion 'What are your top issues and challenges in risk?'
":Lisanne, Here are my responses to your 7 points. 1 - I would offer only one key topic - the need to have a broad overview of all an organizations risks. I say this because most organizations focus on risks they know and have little idea of fll the…"
Apr 16, 2012
Douglas Nagan liked Lisanne Vos's discussion 'What are your top issues and challenges in risk?'
Apr 16, 2012

Profile Information

Tell us more about who you are, what you do and where you want to be. What are your main business challenges? (Tip: provide your current Job Title, Industry, company or/and paste your Linkedin profile here). Use as many relevant keywords as possible. Tell us what you can offer the community. What sorts of discussions, events, and activities you can participate in.
President Nagan Research Group, Enterprise Risk Management, Published Author 'effective Enterprise Risk Management', Culture Management, Risk Assessment, Survey Creation, www.naganresearchgroup.com
I am interested in
Speaking engagements, Consulting offers

Douglas Nagan's Blog

US Senate Cyber Security Bill

Posted on August 3, 2017 at 1:58pm 0 Comments

The United States Senate earlier this week introduced a bill with the short title ‘‘Internet of Things (IoT) Cybersecurity Improvement Act of 2017’’. Quite impressive sounding and would have been very useful if it did indeed provide a path to improved cybersecurity for the IoT. Having read the bill I can tell you that, in my opinion, you will gain little confidence that it will improve your own cyber security.

Several things are clear from my reading:

  • Some in the US…
Continue

What You Should Do to Detect & Respond to Ransomware

Posted on July 20, 2017 at 9:00pm 0 Comments

I created these steps, collected from various sources and personal experience, to provide you with guidance on what you should be doing to prevent, detect and respond to ransomware and other malicious software attacks. Hope you find it useful. If you would like more information I suggest you take our course on managing cyber exposures at the Global Risk Academy…

Continue

Vacation time is not the time to relax cyber security

Posted on July 10, 2017 at 2:25pm 0 Comments

I realize that many of you are enjoying the summer (at least in the northern hemisphere) and relaxing as you contemplate a vacation, this invariably will include your cyber security watchfulness. Unfortunately the cyber predators realize this and have learned to ramp up their activity during your relaxation. The graph below demonstrates how the pattern shifted from 2015 to 2016. It is too early to tell if this will reoccur this year but initial data seems to suggest that the ramp up is…

Continue

Petya’s Lessons so far

Posted on June 30, 2017 at 7:30pm 0 Comments

As the latest major hack, code named Petya, gets dissected the picture is getting clearer. Especially when combined with the information in the latest Verizon DBIR report. Link here.

What this means is that if you updated your Microsoft operating system in a timely manner you are safe, as it appears that Petya is exploiting a vulnerability in Windows that was patched months ago and the virus was transmitted via a malicious…

Continue

Comment Wall

You need to be a member of GlobalRisk community to add comments!

Join GlobalRisk community

  • No comments yet!
 
 
 

Our Sponsors

Would you like to reach over 22,000 + Risk Professionals? 

REQUEST OUR MEDIA KIT

 

Advance Your Career - Take the Global Risk Academy Courses Below

Business Exchange

If your organization delivers products and services that bring value to our members, you are welcome to join our partnership program.

Companies are welcome to setup a business profile page in our Multimedia Business Directory. You will get full control of the page and can include cutting edge possibilities – videos, adverts, presentations, white papers, job offers, Press Releases, product information, company blog, news feeds and more.

CLICK HERE TO APPLY

Our Knowledge Partners

Request our MEDIA KIT

Badge

Loading…

Our Twitter feed

© 2017   Created by Boris Agranovich.   Powered by

Badges  |  Report an Issue  |  Terms of Service