Blog

Hi Global Risk Community member,

This is an invitation for our CPE webinar How to Utilize Security Ratings in Third-Party Risk Management on Thursday December 14th at 1pm Eastern.

Security ratings can help you grade your security performance, as well as that of your third party vendors, by analyzing how well information is protected from external threats and breaches. Attend this webinar to learn how to use security ratings in TPRM, including how to:

• Grade your security performance and under

This is the season when experts gaze into their crystal balls, looking to predict the new trends for the year ahead. When it comes to cyber risk, we’re likely to see existing threats – in particular ransomware and phishing – continue to disrupt businesses on a daily basis. In a recent Apricorn survey, 40% of IT decision makers ranked phishing emails as the top cause of data breaches within their organisation; an increase from 35% in 2021.

While cyber-criminals will pursue the same ‘tried and test

Infoblox recently partnered with  CyberX Saudi Summit on Monday, 4 October 2021 from 13:35 -14:00, Arabian Standard Time (GMT +3) on ‘Infoblox Vison with Cloud and Edge Centric Network Architecture”.

1. The past 20 months have accelerated the hybrid work culture, which means data increasingly being stored on cloud servers and accessed through home network. Could you tell us a little about how Infoblox has supported clients in navigating these challenges?  

Answer:  

DNS & DHCP are fundamental

About the interviewee: Abdulatif Alrushaid is leading Cyber Security in Engie Saudi Arabia, overseeing IT/OT operations, and ensuring facilities compliance to national and international regulations. Abdulatif holds a master’s degree in Information Security from Georgia Tech University. 

1.Could you share with the Cyber Security community, your top three lessons in securing businesses in the past one year, especially when it to protecting critical infrastructure. 

Answer: 

 > Humans are the w

This is a transcription of our interview with Mike Gillespie. You can watch the original video interview here or listen to the podcast episode here.

Boris: Welcome to our Interview with Mike Gillespie. Mike is a global Influencer in the area of Internet Security, he is a Director at Advent IM and VP at The Centre for Strategic Cyberspace and Internet Studies.

Advent IM is the UK’s leading Holistic Protective Security consultancy and the Centre for Strategic Cyberspace Security and Internet st

As the grid modernises, the design of utility cybersecurity solutions need to be rethought to defend against the evolving capabilities of potential attackers. A huge difficulty lies in the selection process of available technologies. This comes with the bigger challenges of implementing and operating these new technologies to harmonise with existing internal utility services. As a result, Smart Grid Forum’s Smart Grid Cybersecurity 2020 conference has been created to solve the strategic, applica

In today’s hyper-connected digital age, it’s not unusual for medium to large-sized companies to have hundreds, or even thousands, of third-party suppliers.

This can range from product suppliers, to billing processors, to cloud providers, and a variety of different services.

This large volume of suppliers can pose a challenge for Chief Security Information Officers (CISO) to properly manage risk, especially when personal or confidential data is shared.

A Risky Misconception – Understanding Supplier

Quest Diagnostics is a US-based company that provides medical testing services, and announced that it used third-party billing collection companies that were hit by a severe data breach. In fact, about 11.9 million Quest customers were affected.

The compromised information could include personal data of the patients, including Social Security numbers, as well as medical and financial information. However, laboratory test results aren’t included in the breach.

What Happened?

The AMCA (American Medic