HHS 405(d) is an excellent resource that provides cybersecurity and cyber risk guidance for not only healthcare organizations, but all organizations. HHS 405(d) released the following resource for cyber insurance. Before getting to the resource, however, there are two critical
Business Cyber Risk
Latest from Business Cyber Risk - Page 2
Beware of Holiday Gift Card Scam that Could Steal Your Money, Shawn Tuma Discusses Tips to Protect Yourself
There is a trending scam of stealing funds from gift cards purchased in stores where criminals replace original gift cards with nearly-perfectly doctored cards that have been tampered with by having the barcodes changed to transfer the money intended to…
DFW Area Friends – Join Me to Talk Real World Cyber Incident Response and Preparation at Tech Titans’ Cybersecurity Forum
Your organization has been breached, now what? That’s the title of our discussion at Tech Titans’ Cybersecurity Forum this Thursday, December 14, 2023, from 3:30 – 6:00 PM in Richardson, Texas. This event is available for both members of Tech…
DFW Area Security Peeps – Join me at SecureWorld Dallas on October 25th & 26th!
I am super excited to share that I will speaking at one of my absolute favorite conferences each year — the United States’ preeminent cybersecurity conference — SecureWorld – Dallas! On Wednesday, October 25, 2023, I will be leading a…
Is the law evolving to hold individuals–specifically the CISO–responsible for companies’ cybersecurity failures?
Is the law evolving to hold individuals — specifically CISOs — responsible for companies’ cybersecurity failures? In my opinion, the answer is yes, albeit slowly and incrementally, but it certainly appears to be moving in that direction. Here are some…
A few quotes from my keynote at SecureWorld Boston
Following the outstanding SecureWorld Boston event, my friends at SecureWorld shared Highlights and Insights from SecureWorld Boston 2023 and were kind enough to include a few quotes from my lunch keynote — let me know what you think and please…
Join me and #EnterpriseUniversity for Real-World Cyber Risk Management and Resilience Planning on March 28, 2023!
On Tuesday, March 28, 2023, I will be teaching a class on Real-World Cyber Risk Management and Resilience Planning as part of #EnterpriseUniversity Enterprise Bank & Trust’s education program for business leaders and professionals! Join me for this course, and…
HHS Releases HPH Sector Cybersecurity Framework Implementation Guide to Help Healthcare Organizations Leverage NIST Cybersecurity Framework
On March 8, 2023, the U.S. Department of Health and Human Services (HHS) released its HPH Sector Cybersecurity Framework Implementation Guide (the Guide) to help healthcare organizations leverage the NIST Cybersecurity Framework. This Guide is not only a must-read for…
FBI, CISA, MS-ISAC Joint Cybersecurity Advisory – #StopRansomware: LockBit 3.0
The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Multi-State Information Sharing & Analysis Center (MS-ISAC) routinely release a Joint Cybersecurity Advisory (CSA) as part of an ongoing #StopRansomware effort to publish advisories for…
Boston Area Friends – Join me for the lunch keynote at SecureWorld Boston on March 23!
I am super excited to share that next week I will be headed to Boston to speak at one of my absolute favorite conferences each year — the United States’ preeminent cybersecurity conference — SecureWorld! On Thursday, March 23, 2023,…