In 2017, the Security Leadership Research Institute (the Security Executive Council’s research arm) asked security practitioners to choose from a list of which risk-related activities their security ...

Regardless of their political beliefs, Americans want to prevent another terrorist attack from occur­ring in the United States. In the face of increasingly diffuse threats and adversaries ...

The Department of Health and Human Services is seeking comments on how it can improve its security risk assessment tool, which is designed to help smaller organizations conduct assessments as required ...

In today’s world of interlocked companies and IT service providers, it’s standard practice for a company to ask its tech suppliers to fill out detailed questionnaires about their security practices.

[Excerpted from "How to Conduct an Effective IT Security Risk Assessment," a new report posted this week on Dark Reading's Risk Management Tech Center.] Many security and compliance projects begin ...

To reduce security threats within your organization, you must prioritize security risk management. Here are some best practices to follow, as well as some top resources from TechRepublic Premium. Data ...

There is no right and wrong way to perform a Cybersecurity Risk Assessment, however, we are going through a simple route and lay down a step-by-step guide on how to assess your environment. Follow the ...

In a move that underscores the growing urgency around health care cybersecurity, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has released version 3.6 of its ...

Why are you operating your physical security program? What threats are you trying to protect against? What specific risks to your organization and enterprise are you trying to mitigate? If you cannot ...

It’s easy to understand how an annual risk assessment can feel like a mundane administrative burden, especially in the fast-paced financial services sector. In an industry where the stakes are high, ...