The U.S. Cybersecurity and Infrastructure Security Agency defines “Secure by Design” to mean that technology products are built in a way that reasonably protects against malicious cyber actors successfully gaining access to devices, data, and connected infrastructure.
I am going to begin this blog post with a provocative statement:
From a security perspective, the public internet is the weakest cybersecurity component of your business operations. It is literally the superhighway runway from which Cybersecurity attacks are launched.
Now that I have your attention, let me return to my primary question for you last month:
Do you and your business have the ability to anticipate, prepare for, and adapt to changing conditions to withstand, respond to, and recover from a Cyber Business Disruption?
Last month I closed my post by saying that in my next series of posts, I will endeavor to explore with you the exploding Global Risk Ecosystem which threatens our businesses today and into the future, and to help you self-assess as you ask your organization the following question:
Do you and your business have the ability to anticipate, prepare for, and adapt to changing conditions to withstand, respond to, and recover from a Cyber Business Disruption?
My last blog posts have focused on introducing Systemic Digital Risk in Complex Digital Environments and exploring new frameworks with which to assess Risk in today’s business environments.
Systemic Digital Risk in Complex Digital Environments
Last month, I introduced Systemic Digital Risk in Complex Digital Environments.
Systemic Digital Risk in Complex Digital Environments
In my last post we examined the Risk Manager role we each play in our daily lives, as well as in our professional lives. Seems simple, doesn’t it?
From the Moment we are Born, we are Confronted by Risks
We survive from Birth because someone is Managing Risks to Protect Us
GRC Definition: -
GRC is the capability, or integrated collection of capabilities, that enables an organization to reliably achieve objectives, address uncertainty and act with integrity, including the governance, assurance and management of performance, risk, and compliance.www.grcglossary.org
What is GRC?
My last blog post presented the changes released by the Security and Exchange Commission on July 26, 2023 to their “SEC New Rules on Cybersecurity Risk Management, Strategy, Governance and Incident Disclosure by Public Companies.”
In my last blog post, we explored both the World Economic Forum “Global Risks Report 2023” and the “Alliance Risk Barometer 2023”. A simple summation of both reports is:
At the end of my last post, I promised to provide visibility into categories and types of risk, and to provide visibility emphasis into Cyber Risks and their systemic interconnectedness with and potential impacts on business operations. This will take more
The most important consideration to fully embrace in understanding Risk to your Business today is that Digital and Information Technology Systems are the lifeblood of your business. Even the simplest “mom and pop business” utilizes information technology, online tools, and services today.
