The Fatal Flaw in IT Risk Management

Risk Management

The spate of high profile data breaches have, if nothing else, proven that organizations are managing risk poorly. Part of the blame for that lies in a fundamentally flawed way that companies gather risk data. With the growing use of GRC portals, there is a reliance on questionnaires and surveys to gather risk data. This approach is generating flawed data and subsequently flawed risk management.

Security Analytics Part 1: The Game is On

Industry Analysis

Security Analytics is an emerging class of technologies that leverages big data and advanced analysis techniques to find attackers and malicious activity deep inside today’s networks. Anitian conducted an in-depth study of this market and presents our research and insights.

How to Communicate Risk to Executive Leadership

Opinion

In an age when cybercrime and advanced persistent threats are creating havoc, how does IT security communicate risk to executive leadership? The key is to deliver business risk intelligence to leadership in a format they can understand and use.

The Failure of the PCI-DSS?

Opinion

The Target breach has ignited a firestorm of debate over the efficacy of the PCI-DSS. The problem with the PCI-DSS is not the standard, but a deeply flawed an corrupted assessment process.

We Are Privacy and Security Hypocrites

Opinion

Whether it is personal, local, national or cyber – we adore security, privacy, and spying in all its forms…until it affects us personally…then we hate it with the burring hot passion of 10,000 suns.