Risk Management - MySecurity Marketplace

Key Practices in Cyber Supply Chain Risk Management (C-SCRM): Observations from Industry

Executive Summary The National Institute of Standards and Technology (NIST) cyber supply chain risk management (C-SCRM) program was initiated in 2008 to develop C-SCRM practices for non-national security systems in response to Comprehensive National Cybersecurity Initiative (CNCI) #11: Develop a multi-pronged approach for global supply chain risk management. Over the last decade, NIST has continued […]

Key Practices in Cyber Supply Chain Risk Management (C-SCRM): Observations from Industry Read More »

KCM GRC platform

By execassist

KnowBe4’s KCM GRC platform helps you get your audits done in half the time, is easy to use, and is surprisingly affordable. No more: “UGH, is it that time again!”

KCM GRC platform Read More »

CEO FRAUD Prevention Manual

By haridas_mondal

Introduction It has ruined the careers of many executives and loyal employees. Successful CEOs have been fired because of it. Stock prices have collapsed. IPOs and mergers have been taken off the table. Known as CEO fraud or Business Email Compromise (BEC), the FBI reports that this type of cyber crime generated more than 23,000

CEO FRAUD Prevention Manual Read More »

Risk Management Framework for Information Systems and Organizations

By Bianca B

Abstract This publication describes the Risk Management Framework (RMF) and provides guidelines for applying the RMF to information systems and organizations. The RMF provides a disciplined, structured, and flexible process for managing security and privacy risk that includes information security categorization; control selection, implementation, and assessment; system and common control authorizations; and continuous monitoring. The

Risk Management Framework for Information Systems and Organizations Read More »

Cybersecurity Framework Version 1.1 Manufacturing Profile

By Bianca B

This document provides the Cybersecurity Framework (CSF) Version 1.1 implementation details developed for the manufacturing environment. The “Manufacturing Profile” of the CSF can be used as a roadmap for reducing cybersecurity risk for manufacturers that is aligned with manufacturing sector goals and industry best practices. This Manufacturing Profile provides a voluntary, risk-based approach for managing

Cybersecurity Framework Version 1.1 Manufacturing Profile Read More »

The sphere of control: Accenture 2019 Global Risk Management Study

By Bianca B

Welcome to Accenture’s 2019 Global Risk Management Study report on insurance. This year we explore how insurance companies are responding to emerging risks, particularly those relating to evolving regulation, cyber threats, insurance technology (InsurTech), changing customer expectations and LIBOR retirement. This report presents the findings from our 2019 Global Risk Management Study, which uncovers how

The sphere of control: Accenture 2019 Global Risk Management Study Read More »

Approaches for Federal Agencies to Use the Cybersecurity Framework

By execassist

All federal agencies are entrusted with safeguarding the information contained in their systems and ensuring that those systems operate securely and reliably. It is vital that agency personnel at all levels manage their assets wisely and address cybersecurity risks effectively. To do that, agencies need a holistic approach to their enterprises’ risk management that includes

Approaches for Federal Agencies to Use the Cybersecurity Framework Read More »

Version 1.0 of the NIST Privacy Framework: A Tool for Improving Privacy through Enterprise Risk Management

By haridas_mondal

This publication is intended to be widely usable by organizations of all sizes and agnostic to any particular technology, sector, law, or jurisdiction. Using a common approach—adaptable to any organization’s role(s) in the data processing ecosystem—the Privacy Framework’s purpose is to help organizations manage privacy risks.

Version 1.0 of the NIST Privacy Framework: A Tool for Improving Privacy through Enterprise Risk Management Read More »

State of Enterprise Risk Management 2020

By haridas_mondal

The State of Enterprise Risk Management 2020 report reveals that only 29 per cent of respondents have a high degree of confidence that their enterprise can accurately predict the impact of threats and vulnerabilities associated with emerging technologies.

State of Enterprise Risk Management 2020 Read More »

RSA Quarterly Fraud Report, Q3 2019

By haridas_mondal

The report represents a snapshot of the cyber fraud environment across the globe, providing actionable intelligence to consumer-facing organisations of all sizes and types to enable more effective digital risk management.

RSA Quarterly Fraud Report, Q3 2019 Read More »