Tag
Historically, risk generally is deemed to be a red flag. It is a trigger for caution and calls for necessary actions to be taken. An organization’s approach to risk defines its risk management strategy and implementation strategy. Risks can be catastrophic, have serious consequences, or be minor with little impact.…
Over the last two decades, Information Security has become more interlinked with Risk Management as a discipline, and that is owed to greater technological leaps across various industries, as well as information being hailed as the currency of this generation. This has led to a logical amalgamation between Risk Management…
The presence of potential risks to an organization or individual is greater than ever, now in the digital era. Understanding your vulnerabilities and what you can do to mitigate those risks is fundamental. Here is a list of books that offer a breakdown of information security and risk management since…
With the changing economic context that relies more and more on information technologies which need to be secured, the title Information Security Expert has become shiny and luxurious that many have become quite curious about this category of professionals. In the following, I will share with you what the life…
We do business in an increasingly complex world of bytes, account numbers, and passwords. Nearly everything in our lives is now stored on a cloud. But our reliance on technology has come at a cost, making us more vulnerable to cyberattacks. The Center for Strategic and International Studies (CSIS) in…
ARE PEOPLE REALLY THE WEAKEST LINK IN THE INFORMATION SECURITY CHAIN? This question sounds familiar, right? Indeed, information security is often considered as a chain, and everyone knows that a chain is only as strong as its weakest link is. Starting from this metaphor, it seems like a good idea…
AI is slowly growing in its use and its maturity. So, should there be controls placed on its use, development, and future? As a young man, I spent a considerable amount of time reading, and my favorite reading pastimes were science fiction and science. I enjoyed science fiction authors, such…
The face of the healthcare industry is changing. With the advent of Internet of Things technologies (IoT), in-body and wearable medical devices are now capable of reporting patient statistics in real time, administering medicine, autonomously delivering corrective stimulus and more. Patients receive alerts on their smartphones when their glucose levels…
It is incorrect to presume that only large organizations need to manage risk. The size of the organization is not a factor when it comes to dealing with risk; all organizations are responsible for ensuring the availability, integrity, and confidentiality of the assets entrusted to them by their clients. Therefore,…
ISO/IEC 27552 will be published in July 2019 as an extension ti ISO/IEC 27001 and ISO/IEC 27002. This standard is ISO's response to integrating Information Privacy Management Systems to existing Information Security Management Systems based on ISO/IEC 27001 in order to insure compliance with data privacy regimes such as the…
