Security Diligence Blog
Shields Up - Adopting a Heightened Cybersecurity Posture - April 2022
October is Cybersecurity Awareness Month - October 2021
Cyber Incidents - Contracts and Recovering Damages - September 2021
Industry Certifications - Here's My Lineup - August 2021
Information Security vs Cybersecurity - What's the Difference? - July 2021
What is an Expert Witness? - June 2021
News
Risk Management Reaches a Critical Inflection Point
Continuous Monitoring of Third Party Vendors: Building Best Practices White Paper Release
New York's Department of Financial Services Issues Cybersecurity Regulation
Resources
Cybersecurity
The National Institute of Standards and Technology (NIST) Cybersecurity Framework is a risk-based approach to evaluate and guide organizations in the management of cybersecurity risk based on business needs and enterprise risk management processes. Click here to learn more.
The Federal Financial Institutions Examination Council (FFIEC) Cybersecurity Assessment Tool is available to assist institutions in identifying risks and assessing cybersecurity preparedness. Combined with other methodologies, this tool can be used to perform a self-assessment to assist in shaping risk management processes and programs. Click here to learn more.
The SANS Institute is a private U.S. for-profit company founded in 1989 that specializes in information security, cybersecurity training and professional certifications. The ABCs of Cybersecurity Terms is a free resource compiled by Keith Palmgren, SANS Senior Instructor, and provides a comprehensive glossary of cybersecurity
terminology that will quickly get you up to speed on the industry’s terms and meanings. Click here to learn more.
Third-Party Risk
Shared Assessments, the trusted source in third-party risk assurance, is a member-driven, industry-standard body with tools and best practices that injects speed, consistency, efficiency, and cost savings into the control assessment process. Shared Assessment has released a number of publications and white papers designed to assist organizations in assessing third-party vendors and raise awareness of this key risk area with company boards and the C-Suite. Click here to learn more.
