On Sunday April 1, Retail group Hudson’s Bay disclosed that it was the victim of a security breach that compromised data on payment cards used at Saks Fifth Avenue and Lord & Taylor stores in North America.

As many as 5 million cards may have been compromised, which would make the breach one of the largest involving payment cards over the past year.

Customers, investors, and regulators learned of this breach not through any press release issued by the company itself, but through news of the data a

I have created my first cyber security video tip. The tip involves identifying IoT devices and determining if they are a potential cyber exposure for your organization. If you are interested there is a video page here:
https://mediaexplorers.lpages.co/cyber-security-tip-1-iot/

Hope you find it useful. 

Here is the text version:

Our first tip addresses the Internet of Things, or IoT. Iot cyber security is a complex topic because of its nature. IoT implementations are generally done without the overs

If you are working for an IT security company, I have a message for you: the term “identity theft protection” is way overused and even abused as a marketing term. We know that this term is used to sell services and products, but does it really protect a user from being the victim of identity theft? No.

This is no different than labeling a food as “natural,” even though it is not actually “organic.” At best, this is incorrect information. At worst, it’s a total lie.

Every company with security solu

Banks are on a quest to improve the customer experience. A new study of 80 North American bank operations leaders by Accenture found that 74 percent believe the customer experience is one of their banks’ greatest strategic priorities.

Number two on the list: Fraud and risk management (70 percent of respondents).

Why not do both at the same time? About half of survey participants predict bank operations’ “primary role in three years as achieving straight-through processing through digital technolog

Orbitz said hackers may have accessed 880,000 credit card numbers and possibly the names, dates of birth, phone numbers, and addresses of consumers who booked through the site in 2016 and 2017.

The Orbitz data breach pales in comparison to the Equifax hack of 2017 and has been buried among headlines concerning Facebook. For many, this story barely counts as “news” because it’s just honestly not that “new.”

For me, the humdrum attitude of complacency is what makes the Orbitz data breach blogworthy.

You will be disrupted

Your only choice is to disrupt yourself in a measurable, controllable and predictable way or to let others to disrupt yourself in a painful and non-controllable way.

Partnering with SIMMETHOD's Digital Transformation Index And C-suite Risk Alerts will enable you to disrupt yourself in a measurable, controllable and predictable way because in Digital Transformation, "The Way You Measure Determines Your Results" SIMMETHOD.

__________

If you want to know more about the SIMMETHOD,

Many Internet users are wondering why so many applications and websites need to know our geolocation without special need. And, more importantly, what is being done with this information?

The question is: how to access popular websites, but at the same time block geo-tracking of your laptop or smartphone?

10 useful tips to protect your geolocation data

The below information gives you an idea of ​​what you can be done to make sure that your geolocation is not being tracked. Some methods in this list

marcus evans will host the 12^th Edition Model Risk Conference on June 25-27, 2018 in New York. This conference will provide firms with practical tools to enhance infrastructure capabilities and improve model lifecycle management, in order to foster faster responses to changing regulatory demands. Attendees will explore best practices for employing advanced analytics and improving quantitative capabilities to help further optimize model validation techniques. Finally attendees will evaluate the C

On March 29, 2018, Under Armour announced that the data of over 150 million users of the MyFitnessPal diet and fitness app was exposed in February of this year.

User data included usernames, emails, and passwords. The company put a PR spin on the breach by disclosing that government-issued identifiers like Social Security and driver’s license numbers, as well as credit-card information, weren’t compromised. In an email to MyFitnessPal users, Under Armour emphasized the affected passwords were “ha

The Never-Ending Journey: In Search of Product-Market-Fit

You know that reporting is essential to a successful Vendor Risk program... it helps you highlight problem areas and prioritize your time spend. It can also help you to assess more vendors, score questionnaires faster and better demonstrate to management and regulators the breadth and performance of your program. To learn which reports are essential for a successful program, download The 8 Reports You Need for Effective and Efficient Vendor Risk Management, 

A few years ago, insurers were busy trying to figure out what IoT was and what it could do. But spotlighting the technology, all too often led to products and services with little customer appeal.

The lesson was clear – put customers front and center and develop services that build an exceptional experience around a device. To put it simply, the value is not in the technology itself, but in the service proposition that the technology enables.

Making the most of today’s technology, today

There are

My last few blogs have been about the boardroom. The need to tap into the board’s experience, by asking them the right questions and the approach management should be taking in their relationship with the board. This blog is about ensuring the board’s oversight is first class, triple A if you like.

Management and the board are making decisions under uncertainty. Therefore, the board needs two things to help ensure appropriate oversight. One is a sound decision-making process to manage blind spots

Facebook’s market capitalization dropped as much as $60 billion after reports emerged that Cambridge Analytica, the data consulting firm used by the Trump Campaign, was given the data of around 50 million Facebook users without their consent.

The Cambridge Analytica scandal is the latest in a series of risk management failures that have plagued the social networking company, which has been grappling with its role in the dissemination of fake news propaganda during the 2016 U.S. presidential elect

Forget the Federal Reserve and its prohibition against Wells Fargo’s further growth until its governance and risk management improve. Wells Fargo is now answering to Sister Nora Nash of the Sisters of St. Francis of Philadelphia.

The much-maligned bank has agreed to publish a business standards review to “investigate the root causes of systemic lapses in governance and risk management that have led to ongoing controversies, litigation and fines” in response to resolution filed for the 2018 proxy

Designing for Digital—Lessons from Spotify

Source: MIT CISR

Abstract: To remain competitive, established companies are increasingly recognizing the need to develop digital offerings. Digital offerings, however, are dependent on software. Unlike traditional products and services, software-based offerings constantly evolve in response to both customer demands and new opportunities to address customer needs. To support digital offerings, companies must adopt new organizing principles—specifically, em

There is temptation in the world of management. With regulatory scrutiny increasing and cost a concern, free vendor management checklists seem like an easy solution. But is that free checklist going to cost you down the road?

My experience says yes.

Free vendor management checklists are a disaster waiting to happen. From misclassifying vendor risk and misallocating resources to failing to provide an actual process for execution, vendor management checklists lack the nuance needed to help an instit

The Forrester Wave™: Governance, Risk, and Compliance Platforms, Q1 2018 evaluates and ranks the 14 most significant GRC platforms available, and LogicManager has been named a Leader! But beyond measuring the current offering, strategy, and market presence of GRC providers, the report also dives into the current risk climate.

As the report states, “Managing risk is more important than it’s ever been.” In support of this statement, the report points to three growing trends in the corporate world:

Do you think of your board as your customer? You probably do. If you don’t this might give you some food for thought:

In his book EMERGENT, Stephen Scott Johnson talks about the old ways of building a relationship with your customer and the new, EMERGENT ways. His focus is heavily on co-creation. It’s more partnering than servicing.

A board and executive are operating in partnership. That means there should be a lot more co-creation than reporting. In EMERGENT, Johnson provides a long list of the