|New Infosec Requirements Take Effect in NY State|
|Anne Bisagno—Monday, March 12, 2018
If you're a financial services company doing business in New York state, March 1 was your deadline to file for your first annual certification with 23 NYCRR 500.
This is the state's groundbreaking cybersecurity regulation that mandates risk assessments, vulnerability assessments, penetration testing, multifactor
authentication, and end-user awareness training.
|Does Your Cyber Insurance Policy Have You Covered? Maybe Not|
|Anne Bisagno—Monday, February 26, 2018
We've been urging our clients for some time to look into cyber insurance to
mitigate the risks of data breaches. However, the field is still new enough that there's no standard of coverage. It's critical to read the fine print,
because you might not be getting what you think you are. Here are some of the things most policies don't cover:
|Dive Into the Hot Cybersecurity Talent Pool|
|Anne Bisagno—Tuesday, February 20, 2018
The battle between hackers and IT security experts is never going to end — which is a warning to businesses of all sizes, but a great opportunity
for anyone thinking about a career move. Dark Reading, the website for cybersecurity pros, recently reported that 25% of CIOs are prioritizing security skills as they look to expand their IT teams.
|Data Security is a Team Effort|
|Anne Bisagno—Monday, February 12, 2018
Phishing is one of the most common causes of data breaches — and that means that teaching your employees to recognize a phishing email is one of
the most effective ways to protect your company from an expensive data breach.
|January 28 Was Data Privacy Day|
|Anne Bisagno—Monday, February 05, 2018
|Security Compliance is Always a Smart Investment|
|Anne Bisagno—Monday, January 29, 2018
Yes, it costs a lot to maintain compliance with security regulations.
|2017 in Cybersecurity: A Cautionary Tale|
|Anne Bisagno—Monday, January 22, 2018
From Anthem Blue Cross's historically high $115 million settlement for a breach that exposed patient information to the life-threatening WannaCry malware
attack that shut down IT systems at 16 UK hospitals, the repercussions of cybersecurity lapses became more painfully clear in 2017 than ever before.
|Get Strong Security AND a Good User Experience|
|Anne Bisagno—Monday, January 08, 2018
An easy-to-use system is pointless if it's also easy to breach. On the other hand, "perfect" security is no good if it makes the product or service unusable!
Unfortunately, conventional wisdom is that the more secure a system is, the more difficult it is to use — but advances in security technology
and techniques mean that's not true any more.
|Beware the Social Engineer|
|Anne Bisagno—Thursday, December 28, 2017
"I can tell a scam when I see one," your employees say.
|10 Social Engineering Tricks to Watch Out For|
|Anne Bisagno—Thursday, December 21, 2017
Social engineering attacks accounted for 43 percent of data breaches in the last year, according to Verizon's Data Breach Investigations Report. To boost
your firm's security, we're sharing this list of ten social engineering ploys your employees might not recognize: