OMB has issued a memo directing agencies to adopt a risk-based approach to software and hardware security and rescinding ...

Collects and uses customer or employee personal information. Participates in an industry sector that is considered high risk or critical infrastructure. Offers securities as a publicly traded company.

The signs of an effective security culture are shifting as companies call on CISOs and security teams to raise their hands ...

Corporations today face increased levels of risk from software vulnerabilities hidden in their business-technology systems and from hackers and cyber crooks who try to steal proprietary corporate ...

[Excerpted from "How to Conduct an Effective IT Security Risk Assessment," a new report posted this week on Dark Reading's Risk Management Tech Center.] Many security and compliance projects begin ...

Many of today’s organizations are undergoing a very high degree of change, while at the same time the overall pace of business continues to increase. The risk picture of most organizations is changing ...

CEO of Schwenk AG & Crisis Control Solutions LLC, a leading expert in risk and crisis management for the automotive industry. In the intricate tapestry of the modern business landscape, every thread ...

The Technical Specifications for Certification of Personal Information Cross-border Processing Activities V1.0 (June 2022); and The Technical Specifications for Certification of Personal Information ...

In evaluating the quality of Department of Homeland Security’s (DHS’s) approach to risk analysis—element (a) of this study’s Statement of Task—we must differentiate between DHS’s overall ...

Britain’s national security thinking has traditionally been shaped by familiar concerns: hostile states, terrorism, energy ...