Tag: security governance
-
NCSC Feed: A decade of Cyber Essentials: the journey towards a safer digital future
Source URL: https://www.ncsc.gov.uk/blog-post/cyber-essentials-decade Source: NCSC Feed Title: A decade of Cyber Essentials: the journey towards a safer digital future Feedly Summary: The 10-year anniversary of Cyber Essentials is not just a celebration of past achievements but a call to action for the future. AI Summary and Description: Yes Summary: The text highlights the 10th anniversary…
-
Schneier on Security: Roger Grimes on Prioritizing Cybersecurity Advice
Source URL: https://www.schneier.com/blog/archives/2024/10/roger-grimes-on-prioritizing-cybersecurity-advice.html Source: Schneier on Security Title: Roger Grimes on Prioritizing Cybersecurity Advice Feedly Summary: This is a good point: Part of the problem is that we are constantly handed lists…list of required controls…list of things we are being asked to fix or improve…lists of new projects…lists of threats, and so on, that are…
-
CSA: Integrating CSA CCM Controls into ISO/IEC 27001
Source URL: https://cloudsecurityalliance.org/blog/2024/10/29/streamlining-cloud-security-integrating-csa-ccm-controls-into-your-iso-iec-27001-framework Source: CSA Title: Integrating CSA CCM Controls into ISO/IEC 27001 Feedly Summary: AI Summary and Description: Yes Summary: The text provides valuable insights on how organizations can integrate the Cloud Security Alliance’s Cloud Controls Matrix (CCM) with their existing ISO/IEC 27001 Information Security Management System (ISMS). It emphasizes that compliance does not…
-
The Register: Penn State pays DoJ $1.25M to settle cybersecurity compliance case
Source URL: https://www.theregister.com/2024/10/23/penn_state_university_doj_settlement/ Source: The Register Title: Penn State pays DoJ $1.25M to settle cybersecurity compliance case Feedly Summary: Fight On, State? Not this time Pennsylvania State University has agreed to pay the Justice Department $1.25 million to settle claims of misrepresenting its cybersecurity compliance to the federal government and leaving sensitive data improperly secured. ……
-
The Register: Tech firms to pay millions in SEC penalties for misleading SolarWinds disclosures
Source URL: https://www.theregister.com/2024/10/22/sec_fines_four_tech_firms/ Source: The Register Title: Tech firms to pay millions in SEC penalties for misleading SolarWinds disclosures Feedly Summary: Unisys, Avaya, Check Point, and Mimecast settled with the agency without admitting or denying wrongdoing Four high-profile tech companies reached an agreement with the Securities and Exchange Commission to pay millions of dollars in…
-
The Register: Transport for London confirms cyberattack, assures us all is well
Source URL: https://www.theregister.com/2024/09/03/tfl_cyberattack/ Source: The Register Title: Transport for London confirms cyberattack, assures us all is well Feedly Summary: Government body claims there is no evidence of customer data being compromised Transport for London (TfL) – responsible for much of the public network carrying people around England’s capital – is battling to stay on top…