Page 2 - White Papers in Governance & Risk Management

Federal Agencies Tech Brief: Security Investigation, Detection and Rapid Response

The fact that Federal agencies are prime targets for the most sophisticated cyber threats is undeniable. If cyberattacks are inevitable, then robust capabilities for security investigation, threat hunting, and rapid response are essential. Government cybersecurity professionals require visibility across their silos of...

Sponsored by Venafi

SSH Study: U.S., U.K. and Germany Executive Summary

A recently published 2017 survey of over 400 security professionals in the U.S., U.K. and Germany measured how well their organizations implemented security controls for SSH keys. The results show that most organizations are underprepared to protect against SSH-based attacks, with fewer than half following industry...

Making Risk Management More Effective with Security Ratings

Although cyber security risk is now top of mind among executives and regulators, measuring and managing security risk levels has been a difficult task. Current risk management tools offer limited visibility and leave organizations vulnerable to emerging threats internally and within the networks of business partners...

Cybersecurity Benchmarking: A CIO's guide for Reducing Security Anxiety

Do your competitors and peers have a better cybersecurity game plan than you? If simply answering that question seems exhausting, this eBook is here to help. Today's chief information officer knows they can't outsource risk. Yet every year, cyber risk demands more and more time from the already-busy CIO. This...

How Employee Actions Lead to Cybersecurity Incidents

A recent global survey found that 52% of businesses admit that employees are their biggest weakness in IT security, with their careless actions putting business IT security strategy at risk. Download this whitepaper and learn: Common security mistakes employees make; How BYOD is making security more...

Sponsored by Venafi

Buyer's Guide for Certificate Management

As certificate counts within the average organization rise to tens of thousands, it has become exponentially harder to manage them effectively. Many organizations turn to their certificate authorities (CAs) to protect the keys and certificates that each CA issues. The basic tools CAs provide are certainly a step up...

Sponsored by Venafi

Digital Certificates: Next Generation Identity Access Management

Identity and Access Management (IAM) programs are becoming increasingly essential to securing critical systems and data; last year, companies spent $7 billion on IAM, most on protecting user credentials, but almost nothing protecting keys and certificates, the credentials that identify and authorize machine-to-machine...

Sponsored by Venafi

2017 SSH Study - Executive Brief

A recently published 2017 survey of over 400 security professionals in the U.S., U.K. and Germany measured how well their organizations implemented security controls for SSH keys. The results show that most organizations are underprepared to protect against SSH-based attacks, with fewer than half following industry...

Cybercrime Hacking in Healthcare: Avoid Breaches and Simplify Compliance

Key gaps in how healthcare entities defend against cybercrime hacking have emerged. Even organizations strictly adherent to HIPAA, NIST or other regulators are still unaware of how their practices compare to their industry peers and whether or not they are lagging behind. Has your organization assessed and mitigated...

Separating Fact from Fiction: Hacking and Exploits on the Dark Web

Dark web vendors offer a wide range of technological crime. From distributed denial of service (DDoS) attacks to pre-recorded phone calls, there is a myriad of knowledge and listings for hacking & exploits. In addition to materials for sale, the dark web is also home to a variety of forums designed to build...

The Need to Expand Beyond Windows OS; Maximizing Malware Analysis

Yes, malware commonly targets the Windows operating system. But if you limit malware analysis to Windows OS, you're leaving gaping vulnerabilities, says Christopher Kruegel of Lastline Inc. Here's how to maximize your analysis. Kruegel, CEO of Lastline, says that one common limitation of malware analysis is that...

What Keeps CISOs Up at Night: The Biggest Security Challenges in 2017

CISOs have plenty to keep them up at night. With data breaches, ransomware incidents and system compromises, security leaders are forced to find ways to beat threats without slowing their pace of business. If they fail to effectively manage those risks, their organizations can face huge consequences. While process...

Which GRC Platform is the Best Fit for Your Use Case?

Most organizations have embraced more than one software platform to automate their critical business processes. Platforms are becoming more flexible, allowing users to customize or configure their own applications. As your use cases grow, you may question whether you should leverage an existing platform for your next...

4 Critical Elements of a Successful GRC Implementation

Today's business climate is one of unprecedented regulatory growth, data complexity and cybersecurity concerns. There is a corresponding increase in media attention, customer awareness and Board-level scrutiny. Organizations must demonstrate that they have a viable process for managing risk and compliance (broadly...

7 Ways to Improve Your Security Incident Response

Organizations share common concerns and frustrations about security incident response. The scope of what you need to protect has expanded significantly - more users, more endpoints, more everything. At the same time, internal and external scrutiny has skyrocketed due to the increasing coverage of large scale security...