Web application developers often rely on open source JavaScript libraries and third-party scripts in order to innovate faster and keep pace with evolving business needs. However the lack of visibility and control of these third party scripts and libraries introduces vulnerabilities that can negatively impact the...
In the face of highly sophisticated adversaries with nearly limitless time and resources, individual organizations no longer can defend sufficiently, nor should they have to with the technology now available to make Collective Defense possible.
Yet while the idea of Collective Defense sounds practical, it is...
It's common for security researchers to be ignored when reporting a software vulnerability. The latest example - vulnerabilities found by Independent Security Evaluators in a router made by China-based Tenda.
In today's shifting security and regulatory environment, ongoing third-party monitoring is crucial to compliance success. But how do you keep up with a constantly changing and growing list of vendors?
This session will outline the keys to third-party risk management success through a modern approach to monitoring...
The realms of data privacy and information security have traditionally been separate in most organizations. However, these domains are increasingly fusing, and in today's digital world, you need them to work in unison.
Many companies leave the question of ownership to their legal department, but today's CIOs are...
For financial institutions, every new customer heralds an opportunity - but if the organization doesn't know enough about that customer there may be risks as well. Using know your client (KYC) and customer due diligence (CDD) checks as an initial first line of defense in reducing the risk of money laundering and...
The extra-territorial scope of GDPR, and many other regions introducing new data protection and privacy requirements such as The California Consumer Privacy Act (CCPA), means it is essential that privacy decision makers understand the need to have a common approach to dealing with regulations - instead of addressing...
Adoption of cloud services, SAAS Applications and mobile workforce are putting increasing strain on the corporate networks. This is exacerbated as organizations look to better connect their remote and branch office employees and offer them higher quality network services. Enterprises are turning to SD-WAN - a more...
The European Union's (EU's) General Protection Regulation (GDPR), which began enforcement on May 25, 2018, dramatically increases the penalties for failing to properly protect users' personal . The maximum fines that can be leveraged against an organization eclipse penalties that have been imposed in the past; they...
California's new AB 375 privacy legislation and the EU's General Data Protection Regulation have pushed privacy to the forefront for enterprises worldwide. But beyond compliance, what have we really learned about privacy's true impact on cybersecurity and the business? Well, start here: Even businesses with advanced...
What does a targeted attack really look like? How can you effectively defend your organization? What does it take to recover from a headline-grabbing breach and rebuild trust with your customers?
Join Matthew Maglieri, CISO of Ashley Madison's parent company Ruby Life Inc. and ex-Mandiant consultant, as he presents...
Banking and financial services customers today expect friction-free experiences no matter what device they're on, and regardless of whether they're at work, at home, or on the road. To succeed in the new digital era, it's critically important that you deliver seamless, personalized and omnichannel experiences for your...
The Open Banking mandate in the United Kingdom and the second Payment Services Directive (PSD2) regulation in the EU are meant to increase competition and innovation in the financial system. They come into force in early 2018 and will set new standards for banks in the areas of strong customer authentication, secure...
Eduard Goodman, global privacy officer of CyberScout, doesn't like the disorganized way most cyber incidents are handled now. Instead, he would like to see a more project management approach. Here are the benefits he foresees.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing securityintelligence.inforisktoday.com, you agree to our use of cookies.
