The Risk Dr ®

Category: Politics

Risk Frameworks, Equifax, and Public Sector Risk

Time for another cyber risk roundup! I was interviewed for an article on Health Security and Risk Frameworks: Providers Must Go Beyond Frameworks for Strong Risk Management 800,000 Systems Still At Risk to BlueKeep RDP Vulnerability My hot take on the Equifax settlement For ISACA, I took aim here discussing the ways in which public…

23 August 2019

·

@ISACA, Economics, HITRUST, Loss Assessments, Policy, Politics, Priorities, Public Sector, Risk
Risk and Regulation

My latest @ISACA article was published today. In it, I focus on the notion of where our authority comes from in Information Security. Too often, in my opinion, we rely on regulation as a source of “why” when articulating control requirements. I think this is dangerous and counter to the very nature of what an…

8 March 2017

·

@ISACA, ISACA, Policy, Politics, Regulation, Risk