Cybersecurity Insider Threats From Contingent Workers

Dateline: May 4, 2018 Welcome to our Friday WRAP – one thought-provoking idea to think about over the weekend. By now, if you have been following this blog, you are well aware that one of the biggest cybersecurity threats is the people inside your organization.  Experts predict that as our businesses grow, so does our contingent workforce; by 2020, the contingent workforce is expected to be … [Read more...]

CyberSecurity Tech Accord: New Thinking About Increasing Resiliance

Dateline: April 27, 2018 Welcome to our Friday WRAP – one thought-provoking idea to think about over the weekend. It's clear we need some new thinking to increase cyber resiliency in our society.  Recently tech execs from more than 30 leading companies made a public commitment, called the Cybersecurity Tech Accord, to improve cybersecurity.  The Accord website, cybertechaccord.org, stated … [Read more...]

Individuals Need to by Cyber Secure Too

Dateline: April 20, 2018 Welcome to our Friday WRAP – one thought-provoking idea to think about over the weekend. Cybersecurity is all the talk at many levels of the organization.  But recent research suggests that this is a problem for you and me, as individuals, too.  An article in the MIT Technology Review, titled Hackers Stole $172 billion from People in 2017, shared findings from the … [Read more...]

Increasing Cybersecurity Requires Organizations to Collaborate

Dateline: April 13, 2018 Welcome to our Friday WRAP – one thought-provoking idea to think about over the weekend. It's becoming increasingly clear that one 'feature' of our business environment is making it possible for the cyber-criminals to be successful:  Our public and private organizations are hesitant to collaborate and work together.  Our competitive business ecosystem, regulations, … [Read more...]

No Silver Bullet to Cyber Security: It’s a Shared Responsibility

Dateline: March 30, 2018 Welcome to our Friday WRAP – one thought-provoking idea to think about over the weekend. Recently we have focused on cybersecurity governance in this blog and this week, we share a thought about the broader executive responsibility for keeping our companies cybersafe.  Cybersecurity doesn't have a 'silver bullet' answer: keeping our organization secure requires a … [Read more...]

Cryptojacking Public Cloud Environments Becoming More Popular

Dateline: March 23, 2018 Welcome to our Friday WRAP – one thought-provoking idea to think about over the weekend. Cybersecurity seems to be taking a new turn with the bad guys using our systems to mine their own cryptocurrencies, not just to hold us ransom or steal our data.  They are now stealing our cloud-based processing power and this is being called "cryptojacking".  Recently TechTarget … [Read more...]

People are the Hardest Part of Cybersecurity

Dateline: March 2, 2018 Welcome to our Friday WRAP – one thought-provoking idea to think about over the weekend. Making a company cyber resilient is both a people and a technology problem.  Recently, TechTarget interviewed Alissa Johnson, the CISO of Xerox Corp.  In that interview, she was asked about the difficulty of managing these two critical components of cybersecurity. What is more … [Read more...]

Cyber Security vs Resilience: The Board’s Role

Dateline: February 23, 2018 Welcome to our Friday WRAP – one thought-provoking idea to think about over the weekend. Cybersecurity is a business concern that must be addressed at every level of the organization.  To keep an organization secure requires awareness, understanding and actions by employees, managers and executives.   Increasingly Board of Directors are addressing cybersecurity … [Read more...]

Should You or Your Software Vendor Own The System’s Cybersecurity?

Dateline: February 9, 2018 Welcome to our Friday WRAP – one thought-provoking idea to think about over the weekend. Many managers assume that the software they purchase from reputable vendors is cybersecure.  After all, our vendors know their software and their vulnerabilities, issue patches all the time, and stand to lose business and their reputation if it gets out that their software is … [Read more...]

The Count and Cybersecurity

Dateline: January 26, 2018 Welcome to our Friday WRAP – one thought-provoking idea to think about over the weekend. This week I'm teaching a short course at MIT on the managing and leading cybersecurity.  One key theme of this program is the importance of managing the people in the ecosystem since it's been observed over and over that the human risk is significant (and possibly much larger … [Read more...]