Duty of Care Risk Assessment (DoCRA) Archives

The Challenge of Information Technology (IT) and Operations Technology (OT) Convergence

Information Technology (IT) / Operations Technology (OT) Convergence

Security industry leaders from around the world regularly submit applications to speak at the annual RSA Security Conference which takes place this coming February. RSA reviews the more than 2,400 responses they receive to not only select speakers for the conference, but also identify key trends that are influencing organizations and security approaches worldwide. (more…)

What is the Meaning of This?

DoCRA

As the cybersecurity industry grows, so do the concepts and terms to help us manage security policies and business objectives. This edition of ‘What is the Meaning of This?’ focuses on duty of care, reasonableness, and CIS RAM.

(more…)

Cyber Security Summit Gallery

(more…)

CyberNext Summit KuppingerCole Gallery

Cybersecurity is shifting toward more distributed and dynamic models. (more…)

How to Secure the Budget You Truly Need by Translating Technology Costs to Business Value

(more…)

Defining Reasonable Security with DoCRA

(more…)

Infosecurity ISACA Conference 2019: Next Gen Risk Assessment

ISACA North America 2019 Next Gen Risk Assessment

A discussion of the new Duty of Care Risk Assessment methodology (DoCRA) also known as the Center for Internet Security Risk Assessment Method (CIS RAM). Discuss what sets this method apart and why it is an important business tool.

(more…)

Cyber Security Summit Chicago – Reasonable Security in The Age of Risk

Cyber Security Summit: Risk & Reasonable

Cyber Security Policies & Strategies Forum: SCPHCA

HALOCK Security Labs led the Cyber Security forum for the South Carolina Primary Health Care Association (SCPHCA). Managing consultants, Tod Ferran, CISSP, QSA, ISO 27001 Lead Auditor, and Glenn A. Stout, Ph.D., CISSP, CISM, GSEC, PMP presented on hot topics. (more…)

Recent Changes and Amendments to Cybersecurity Compliance Acts in California, Colorado, and New York

As we have outlined in prior articles, states such as California, Colorado, and New York are actively implementing regulations that will enforce compliance regulations concerning the management of personal information with reasonable security. Like cybersecurity itself, legislation is a dynamic process and states continue to tweak and add amendments to the existing laws. (more…)

Previous 789 Next