Posted April 27, 2017 by Chelsea Brunson
RiskLens is great because it allows you to do cyber risk quantification in dollars-and-cents terms.To make things better, the work flow is easy:
Posted April 26, 2017 by Chad Weinman
The risk register: A manifesto for rallying your organization, pointing it in the right direction, and marching everybody toward effective risk management. Anyway, that’s the idea.
Posted April 25, 2017 by Bryan Smith
I'm pleased to announce that RiskLens, Inc., the leading provider of Cyber Risk Quantification (CRQ) solutions, is releasing an integration between our risk quantification platform and RSA Archer’s Risk Register. The integration enables risk information to be delivered in a language both technical and non-technical business executives can understand, the financial language of dollars and cents.
Posted April 18, 2017 by Jeff B. CopelandSome painful, but necessary, reading for CISOs: A new survey breaks down just how far off CISOs are in their efforts to communicate to boards of directors.
The Cyentia Institute, a cybersecurity research firm (sponsored by risk management consultants Focal Point) interviewed more than 100 CISOs, corporate directors and other experts. The bottom line:
Posted April 18, 2017 by Rebecca Merritt
I need to keep up with the latest in data breaches and other hacker attacks for my work advising corporate and government clients on how to understand their risk in financial terms. But it’s easy to get lost in all the blogs and feeds covering cybersecurity news. To filter the flow, I regularly check these six sites. I find that they’re always up to date and help me spot new and interesting trends in information security.
Posted April 13, 2017 by Jeff B. Copeland
Now working its way through the U.S. Senate, the Cybersecurity Disclosure Act of 2017 is a simple bill that would have a far-reaching effect: To “make sure companies disclose to the public the basic steps they are taking to protect their businesses from cyber attacks,” as co-sponsor Sen. Susan Collins (R-ME) framed it.
Posted April 11, 2017 by Tim Wynkoop
Here’s something I’ve learned using the FAIR model (and the RiskLens application) to help companies understand and measure their cyber risks: A successful risk analysis depends not just on software but the soft skills of clear thinking and clear communication.
Posted April 7, 2017 by Kristel Libres
Identifying your critical risk scenarios is one of the most important and difficult elements of assessing risk. Companies are often not properly prioritizing the risk they face and are unable to express a range of outcomes that could result.
Posted April 5, 2017 by Isaiah McGowan
With budget tight, an IT services firm faced some difficult choices: which of two competing cybersecurity solutions would deliver the maximum defense for the bucks and – bigger picture – which way to go on their security strategy. The company called in a RiskLens team led by Senior Risk Consultant Isaiah McGowan.