Ed Perkins is an electrical engineer and cyber security guru who is a candidate for 2017 President-elect of IEEE USA, the U.S. group of the biggest technical society in the world. Ed talks with us about what makes engineering cool, the importance of STEM, and the future of technology.
Ed Perkins CIA CERM is also the developer of the Certified Enterprise Risk Manager® – Cyber Security™ certificate and is an expert on the NIST Risk Management Framework. Continue reading
In an earlier post [1] we looked whether ‘plausible deniability’ was now a dead strategy in the face of enterprise risk management (ERM) and the likely impact of the US SEC (Securities and Exchange Commission) guidance [2] regarding disclosure obligations relating to operational and cybersecurity risks and cyber incidents. The SEC noted that “a number of disclosure requirements may impose an obligation on registrants to disclose such risks and incidents. Continue reading
A recent report from the cybersecurity firm Barkly, on results from a survey they conducted of IT professionals and IT executives, found that while the IT professionals who have direct responsible for cybersecurity feel their organizations are vulnerable, the executives from those organizations are significantly more confident that things in general are fine. For their Cybersecurity Confidence Report[1], Barkly surveyed of 350 IT professionals and found that 50 percent are not confident in their current security products or solutions. Continue reading
Unsuspecting consumers, thinking they have found a bargain, or that they have joined the latest gadget trend, or both, can be unpleasantly surprised, according to recent revelations on how mobile and IoT (Internet of Things) devices can have built-in security issues.
Here is a recap of some if the issues found in consumer gadgets:
Smart TVs: A recent news report that Samsung “smart” TVs can listen to conversations in the room[1]. This became hot news during that week. Samsung published a “clarification” on its website[2]. Continue reading
Risk based decision making is employed to implement risk management. But how is this implemented? In this article we will look at the process of making “risk based” decisions.
Risk management is a process that involves several activities.