Study Finds Security Experts and Regular Users Differ in Approach

Sally Smoczynski, a contributing writer for this website, recently read a story about a Google sponsored survey report which attempted to compare and contrast responses from security experts and non-security expert Internet users regarding what they do to stay safe online. Given that you can find more online security tips in a few seconds than you could use in a lifetime, and, given that security hacks and breaches continue to be a security threat for everyone using the Internet, Smoczynski was convinced that perhaps the results of this survey would be helpful to both her clients and the … [Read more...]

Cloud Computing – {Need to Keep Up with Terminologies}

by: Ben J. Carnevale Cloud computing remains a strong topic of interest for organizations big and small. And, as with many topics and developing technologies concerned with use of the internet, risk management and cyber-security preparedness teams struggle to keep up with the terminology and risk mitigation strategies needed in order to make cloud technologies work successfully and effectively for your organization.   To help that process along, our staff has recommended adding a recent article dealing with “cloud computing terms you need to know” to your organization’s … [Read more...]

ANSI/ASIS PSC.1-2012; Implementation Recommendations

              Lisa DuBrock, CPA, CBCP, MBCI, is a Managing Partner for Radian Compliance, LLC, where she specializes in implementing private security company management system standards as well as information security standards for her clients. She is also a contributing writer to this website. Given some of the recent comments and questions presented to our staff regarding the steps needed to implement the ANSI/ASIS PSC.1-2012, Management System for Private Security Operations (soon to be released as a standard under ISO), our staff … [Read more...]

Data Breach Costs now Average $154 per Record

In a recently published benchmark research report it was found that executives in 2015 – motivated by growing concerns from ongoing data breaches and other cyber-attacks to their organizations – are now paying greater attention to the security practices of their organizations. To that point, research from that report also indicated that the average total cost of a data breach for the 350 companies participating in this research increased from $ 3.52 to $ 3.79 million US dollars (e.g. a 23% increase in total cost of data breach since 2013). The average cost paid for each lost or stolen … [Read more...]

Supply Chain Disruption Report Just Released

For many of our readers and the organizations where they work, any kind of supply chain disruption could easily qualify as a serious incident and one that would easily have been discussed and included in their disaster preparedness planning process. With that thought in mind, our staff recommends reading and potentially adding a recent EventWatch™ 2014 Supply Chain Disruption report to your organization’s business continuity and disaster preparedness team’s reading resource library. This report  This report was funded and supported by Resilinc’s database of over 40,000 suppliers and over … [Read more...]

Private Security Companies and PSC.1

As follow-up to an earlier posting on this website, and to several requests for more information regarding information and background on the ANSI/ASIS PSC.1-2012: Management System for Quality of Private Security Company Operations standard, our staff would like to direct our readers to an article recently posted by James Schmitt from the Human Analytics group. As reported earlier, members of the Human Analytics group participate often as contributing writers to this website and with a rising interest in our readership of standard related activities and private security companies, Schmitt’s … [Read more...]

Private Security Companies Considering Compliance with PSC.1

by Ben J. Carnevale Recently, our staff has been researching developments related to efforts by both the U.S. Department of Defense and the U.K. Foreign Commonwealth Office to support the creation of a certifiable standard for private security operations. This posting will try to address some of those developments and begin this website’s process to now include these activities as consideration and subject matter encompassed by this website’s   objective to keep our readers informed of all related continuity and compliance requirements affecting their companies where they work and their … [Read more...]

Is Password Recycling Addressed in Your Information Security Metrics?

                              Maria Deutscher, who is a staff writer for SiliconANGLE, recently reported on the results of a new report from Netskope, Inc. reinforcing perhaps much of what our readers already know – e.g. for many - if not most enterprises - cloud security and security metrics of effectiveness and privacy in the cloud remain a “work-in-progress”. Nonetheless, one of those issues of “work-in-process” is bringing attention to the information security related risks surrounding password recycling. However with that being said, this report … [Read more...]

2014 US State of Cybercrime Survey Report Now Available

Recently, a report entitled the “2014 US State of Cybercrime Survey” was released and made available to the public.  This survey was co-sponsored by PwC, CSO magazine, The CERT® Division of the Software Engineering Institute at Carnegie Mellon University, and the United States Secret Service.  Cybersecurity leaders from these organizations worked together to evaluate survey responses from more than 500 executives of US businesses, law enforcement services, and government agencies where they identified requirements for effective cyber security processes and procedures and evaluated these … [Read more...]

Emergency Management Planning Guide — Useful Writing Tips

Often our staff tries to avoid a “re-inventing the wheel” approach when addressing inquiries from our readers.  To that point and answering several inquiries of “how do I?” organize an Emergency Management or Disaster Preparedness guide for where I work, and for where I live …our staff reviewed its inventory of past articles and disaster recovery materials and decided to focus on a recent project completed in the Santa Rosa County in the state of Florida. Knowing that emergencies and disasters can happen anywhere and anytime, the Santa Rosa County Board of Commissioners supported and … [Read more...]