Cybersecurity incidents like ransomware can potentially bring operations to a standstill. Recent regulatory changes by the FTC and proposed changes by the SEC show that both agencies are drafting cybersecurity rules similar to ERM concepts. This would include board oversight of cybersecurity and the responsibility of senior management to implement cybersecurity policies and procedures and provide training for information security staff that is sufficient for them to address relevant security risks. In addition, this could mean that your organization may be required to report incidents and disclose cybersecurity policies and procedures.
Tune in to this ISACA Podcast episode to listen in as Cyber Defense Labs’ Manager of Cybersecurity Advisory Services Tom Schneider tells ISACA’s Jeff Champion that any threat to this essential information is an enterprise risk that needs to be managed by the enterprise through teamwork, with leadership from both the board and senior management. Tom also gives insights into managing cybersecurity risk as an enterprise risk.
To read Managing Cybersecurity Risk as Enterprise Risk, please visit: www.isaca.org/managing-cybersecurity-risk-as-enterprise-risk.
To listen to more ISACA Podcasts, please visit: www.isaca.org/podcasts.
Unlocking Strategic Value from a Bug Bounty Program
The Cyber Standard Podcast - Episode 1
Measuring Security Risk Against Dynamic Threats
Reflecting on 25 Years of Information Security Matters
A View into CTEM Exposure Management: Reducing your Attack Surface 3x
Improving Security while Enabling Market Access with CCF
Leveraging Agile Concepts for Neurodiverse Auditors
Minimizing Risk and Audit Requests
Issue Management Confidential: Tools and Best Practices for Improving IT Issue Management
Improving Security while Enabling Market Access with CCF
Scaling Your Threat Modeling Program
Secure your Supply Chain with an Effective Vendor Security Program
Cultivating Inspired Leaders with Kristi Hedges
Exploring the Benefits of Neurodiversity within Cybersecurity
Internal Audits That Create Stakeholder Value Adopting an Agile Mindset
Strategies for Avoiding Burnout
The Danger of Distraction in Augmented Reality
Managing Human Risk Requires More Than Just Awareness Training
Preparing for Interruptions, Disruptions and Emergence Events
IS Audit in Practice: Data Integrity On Demand
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
A Prairie Home Companion: News from Lake Wobegon