News

Baldrige-Based Tool for Cybersecurity

4 Dec 2016

The U.S. Commerce Department’s National Institute of Standards and Technology (NIST) has released a self-assessment tool to help organisations better understand the effectiveness of their cyber-security risk management efforts.

The document is called Baldrige Cybersecurity Excellence Builder and it is based on two of the main NIST resources, the organisational performance evaluation strategies from the Baldrige Performance Excellence Program and the risk management mechanism from the Cyber Security Framework.

NIST SME Security essential guide

2 Dec 2016

The National Institute of Standards and Technology (NIST) last week released an essential guide to help SMEs protecting their data and information.

"Small Business Information Security: The Fundamentals" is written for small-business owners not experienced in cybersecurity and explains basic steps they can take to better protect their information systems.

Protecting Smart Hospitals - ENISA recommendations for cyber security

28 Nov 2016

A new study by the European Union for Network and Information Security (ENISA) investigates threats and vulnerabilities in hospitals using the Internet of Things (IoT). The risk-based approach analyses attack scenarios and maps common good practices.

Smart solutions help hospitals improve patient care, including remote care but not enough attention is paid to security and safety issues as cost estimates for data breaches in hospital cyber incidents show.

ENISA's best practice on the design and implementation of a National Cyber Security Strategy

25 Nov 2016

In a constantly changing cyber threats environment, EU Member States need to have flexible and dynamic cyber security strategies to meet new, global threats.

ENISA recently published its second National Cyber Security Strategy Good Practice Guide, providing an update to the 2012 ENISA guidebook on the design and implementation of a National Cyber Security Strategy.

DocuSign opens Dublin cybersecurity research centre

14 Nov 2016

Electronic signature company DocuSign is to open a new cybersecurity 'Centre of Excellence' in Dublin.

The Centre will be committed to conducting research into the latest cyberattacks and trends, while developing tools for the advanced detection of such threats.

Worldwide Revenue for Security Technology Forecast to Surpass $100 Billion in 2020

8 Nov 2016

IDC forecasts that worldwide revenues will grow from $73.7 billion in 2016 to $101.6 billion in 2020.

G7 sets cyber-security guidelines for financial sector

18 Oct 2016

The Group of Seven industrial powers (Britain, Canada, France, Germany, Italy, Japan and the United States) agreed on a set of cybersecurity guidelines for the financial sector.

The document includes 8 recommendations which are drawn from the established best practices for cybersecurity.

Key GDPR Issues InfoSec Professionals should address

22 Sep 2016

The General Data Protection Regulation (GDPR) will enter into force on 25 May 2018. So what actions should InforSec Professionals already be taking to ensure compliance with the new regulation?

The GDPR will affect organisations that operate in the European Union (EU), do business with organisations in the EU, or store data in the EU. When preparing to implement the required changes to current practices, there are numerous challenges the information security professional must be ready to address.