Tag: information security
-
Actionable guidance on implementing a Risk Management Framework
Implementing a risk management framework in a large organization involves a series of steps that can help identify, assess, and mitigate risks effectively. Here is a detailed, step-by-step plan for implementing a risk management framework: Step 1: Establish Risk Management Governance 1.1 Define risk management roles and responsibilities for the board, executive management, risk management…
-
The CASB Primar
Imagine you have bought a new and shining car, a real piece of cutting-edge technology marvel with many features like ADAS, a 16-inch touch screen, and an AI-based assistant that can also maneuver the vehicle in an emergency. Keeping it shining and in a pink state would be your concern number 1. Next, your partner…
-
Avoiding pitfalls while implementing information security policies.
Implementing information security policies is critical for any organization that wants to protect its assets and data. Recently, some changes in the IT landscape have increased the awareness and importance of a well-established information security policy. Some of these drivers are Not only are these drivers motivating information security departments across the spectrum to work…
-
A SOAR Primer for a new hire!
Think of a security guard at a big event like a concert or a sports game. They have a lot of people to keep an eye on, and they need to be able to quickly respond if something goes wrong. But it takes work for one person to keep track of everything and make decisions…
-
How cloud adoption changing the classical information security policies?
Imagine you have a treasure box that you need to protect. You want to make sure no one can steal it, so you create a plan to keep it safe. But it’s more challenging than just putting a lock on it because the people who might try to steal it are brilliant and might try…
-
The Why and How of Security Incident Preparedness!
Every organization must have a well-defined and researched information security incident response capability. The risk of not having such a force with you is much more than the kind of investment these skillsets are demanding. The value proposition against the cost is not for the faint-hearted. There are several reasons why setting up such a…
-
What is the least you should know about DLP (Data Loss Prevention)?
DLP helps protect essential and sensitive information from being accidentally shared, lost or stolen. Data Loss Prevention (DLP) is like having a big, invisible guard standing at the door of your computer, checking everything that goes in and out. This guard ensures that important and sensitive information, like your personal information or your school grades,…
-
What is Digital Trust?
When you go to a store and purchase something, you trust that the store will keep your money safe and give you the correct change. In the same way, when you use the internet, you want to ensure that your information and money are safe and secure and that you are getting accurate and trustworthy…
-
What is Zero-trust Network Architecture (ZTNA) all about?
Imagine you have a big castle, and you want to ensure that only the people you trust can come inside and see your treasures. How would you define your security approach? You need to ensure that only the people (or computer programs) you trust can access important information and keep it safe from those who…
-
Why Start-ups can benefit from an established third-party risk management (TPRM) program.
Startups come with the benefit of quick decision-making, fewer processes and scrutiny and all the bliss of having a “no” or “simple” method of doing things. However, there are clear areas where such an approach may need to be revised in young entrepreneurs. One such place is managing the risk of the supply chain, especially…
E - Vidyapeeth 