Data Breach Report: June 2018

Below is a compilation of news articles covering some of the notable data breaches that occurred in June 2018. Doesn't this really put things into perspective? SS7 routing-protocol breach of US cellular carrier exposed customer data - June 1 MyHeritage Genealogy Site Announces Mega Breach Affecting 92 Million Accounts - June 5 Security consultants mop up after PageUp [...]

Keep Reading

In times of crisis, are the CISO and Board ready to deal?

A recent survey of Directors by NACD revealed the second most significant issue that will undermine their companies’ strategic objectives is a cyber-attack.  As both a security executive, and active advisory board member, my only surprise is that it’s not number one. I’m encouraged by the increased focus CISOs and Boards have been putting toward viewing cyber risk as [...]

Keep Reading

Top 3 industries (that you may not have thought of) where cyber risk analytics is crucial

When you combine “Cyber” and “crucial,” automatically industries like Defense, Financial Services, and Airline Operations come to mind. However, when we shift our focus to Cyber Risk Analytics, things change a bit. Prepare to be surprised by these 3 industries where cyber risk analytics is top of mind for day-to-day operations. Retail Cyber is part of retail, no d [...]

Keep Reading

Guest Post: Solving the Security Risk Puzzle, Critical Capabilities

This blog is the last in a three part series discussing how to solve the security risk puzzle. In this final blog, we will outline the critical capabilities required to solve the security risk puzzle. Key Domains   Before we can define the critical capabilities required for solving the security risk puzzle, we first must define the key domains (or areas) that need to [...]

Keep Reading

The CISO Needs to be a business leader more than a technical leader

Nehemiah Security partnered with MightyGuides to interview seven industry experts with the mission of advancing the risk management conversation among cyber professionals. Each interviewee was posed the question, “If your friend was put in charge of measuring cyber risk at their company, what advice would you give them?” Suzie Smibert, CISO at Finning International, pr [...]

Keep Reading

3 Winners & 2 Losers: NIST Cybersecurity Framework 1.1

The introduction of the NIST cybersecurity framework 1.0 has been both expected and disruptive when it was first created in 2014. This framework has evolved the way many companies think about cybersecurity today. Many swear by it as well. This is why the release of NIST’s updated cybersecurity framework 1.1 is a pretty important event. However, there are some limitations w [...]

Keep Reading

Mastering M&A Cyber Risk

Don’t have time to read? Start listening to this blog post now: Every April, golf and business legends descend upon the tranquil 18-holes of Augusta National Golf Course to take in the splendor of the greens and the most unforgettable moments in golf. These are the best of the best from across the globe duking it out for the coveted green jacket. Competition is fierce. [...]

Keep Reading

Data Breach Report: March 2018

Below is a compilation of news articles covering some of the notable data breaches that occurred in March 2018. Doesn't this really put things into perspective? This month's highlight, of course, is the Facebook and Cambridge Analytica data scandal. UpGuard silent on why it pulled Capital One breach claims - March 2 The Breach from the East - March 5 Payment Card B [...]

Keep Reading

When Less is More in Cybersecurity

Don’t have time to read? Start listening to this blog post now: I am convinced any business leader who strives to optimize an operation has heard the cliché, “Less is more!” While cybersecurity professionals have certainly heard the expression, their reality is quite the opposite. Consider the fact that even successful security leaders are walking a thin line betw [...]

Keep Reading

SPICE it up and gain that funding for your security operations

Don’t have time to read? Start listening to this blog post now:  First, let’s have storytime. The following is a real story told by a former Town Councillor in Lunenburg County, Virginia: “In 1989 I became chair of the Solid waste committee as a councillor with the Municipality of the District of Lunenburg in Virginia. I kicked off a study on how to best reduc [...]

Keep Reading