How implementation of cybersecurity practices affects the architectural design of HIS
How the implementation of cybersecurity practices affects thearchitectural design of…
data security
Zero Trust Architecture
The Role of Enterprise Architecture in Organisational Adoption of Zero…
Zero Trust Architecture
The Role of Enterprise Architecture in Organisational Adoption of Zero…
How implementation of cybersecurity practices affects the architectural design of HIS
How implementation of cybersecurity practices affects the architectural design of…
How Does Cloud Computing Enhance Enterprise Performance in Organizations?
How Does Cloud Computing Enhance Enterprise Performance in Organizations? by…
Security Architecture Framework for Enterprises
Security Architecture Framework for Enterprises (SAFE) by Vender Yanto Salim,…
Transforming business practices through augmented intelligence: a new revolution
Opinion piece / Crossed view – MEGA International – June…
Solorigate: A case study for why supply chain security is critical for governments and businesses
By Jim Hietala (VP, BD and Security), Andras Szakal (VP and CTO), John Linford Security and OTTF Forum Director) – The Open Group
In potentially the most damaging cyber-supply chain attack ever, a leading IT systems management vendor became the latest hi-tech company to suffer a major cybersecurity breach with wide-reaching consequences. The malware that caused the attack has been dubbed SUNBURST by Microsoft and code-named Solorigate by FireEye, the security consulting firm that uncovered the breach after falling victim to it late last year.
After successfully infiltrating the development environment, attackers were able to observe and learn how to subvert the vendor’s development and operations pipeline. Hackers were then able to maliciously taint the vendor’s product by planting a sophisticated trojan. Once the software, which required broad systems access, was installed in customers’ environments, the attackers were able to leverage the tainted software to exfiltrate sensitive information from within an organization’s network.
Risk Tech, Reg Tech – All The 2018 Tech
We recently published our Risk And Compliance Tech Tide report outlining 14 core technologies to track in 2018. One of the challenging parts of this research is setting the right scope. We found risk and compliance technology everywhere, covering every…
Introducing The Open Group Open FAIR™ Risk Analysis Tool
Since late in 2016, The Open Group Security Forum have been collaborating with San Jose State University and Probability Management to develop a Risk Analysis tool that adheres to The Open Group Open FAIR™ Standard.
With a view to creating a tool that helps accelerate the adoption of the Open FAIR standard, the tool provides both experienced and novice risk practitioners with a practical and pragmatic tool to help analyse perceived risk in a consistent and simple to use way, whatever industry they work in. It is now ready and we are pleased to make it available to use and evaluate for free.
Zero Trust on a Beer Budget
I have a good friend that has a small business (roughly 100 employees and 2 office locations, everything lives in the cloud, no real “network” to speak of) that is doing well. A few weeks ago, over barbeque and range time (some folks play golf, we sho…
Uber’s Uber Breach: A Stunning Failure In Corporate Governance And Culture
When a breach is announced most security & risk pros are not too surprised. Yet Uber found a way to make the industry raise our collective eyebrows when it was discovered that Uber not only suffered a breach in late 2016 and failed to notify affect…