It’s often forgotten there are three types of security controls. Administrative controls in terms of policies are easy to remember, since this is usually first on an auditors list of requested ...

Humans are often regarded as the "weakest link" in information security. However, organizations have historically relied on the effectiveness of technical security controls, instead of trying to ...

Modern-day demands require organizations to be flexible and digitally savvy, getting work done remotely and in the public cloud as often as in a centralized physical location, if not more so. As ...

Network-as-a-service promises agility and efficiency, but its shared, dynamic nature demands a fundamentally new approach to cybersecurity. Learn how to secure your distributed NaaS environment.

We released our Q3 Global Ransomware Report in October 2023, which showed that 2023 has been a record-breaking year for ransomware events, with an 11.2% increase over Q2 and a 95.4% increase year-over ...

Nov. 15 looms large for corporate executives who will soon have to certify compliance with Section 404 of the Sarbanes-Oxley Act. Their assertions on the effectiveness of internal controls over ...

Editor’s note: The following is a guest post from Anton Chuvakin, security advisor at the Office of the CISO at Google Cloud. AI presents a fascinating paradox for security leaders — it's a powerful ...

As broadcast operations become more distributed, security controls must evolve without disrupting live production. In ... Read More ...

The bigger the cybersecurity technical debt the bigger the risk of being exposed to security flaws. Experts share how to reduce the debt therefore reducing risk. Most veteran CISOs implicitly ...

Victorian government agencies do not fully know what servers are on their networks, the state's official audit office has found, potentially jeopardising a critical foundation for cyber security. The ...