HHS 405(d) is an excellent resource that provides cybersecurity and cyber risk guidance for not only healthcare organizations, but all organizations. HHS 405(d) released the following resource for cyber insurance. Before getting to the resource, however, there are two critical things you must know about cyber insurance: New 405(d) One-Pager: How to Implement Cybersecurity Insurance
Business Cyber Risk
Latest from Business Cyber Risk - Page 2
Beware of Holiday Gift Card Scam that Could Steal Your Money, Shawn Tuma Discusses Tips to Protect Yourself
There is a trending scam of stealing funds from gift cards purchased in stores where criminals replace original gift cards with nearly-perfectly doctored cards that have been tampered with by having the barcodes changed to transfer the money intended to go on the gift card to other accounts controlled by the criminals. “Steal the originals,…
DFW Area Friends – Join Me to Talk Real World Cyber Incident Response and Preparation at Tech Titans’ Cybersecurity Forum
Your organization has been breached, now what? That’s the title of our discussion at Tech Titans’ Cybersecurity Forum this Thursday, December 14, 2023, from 3:30 – 6:00 PM in Richardson, Texas. This event is available for both members of Tech Titans and non-menbers and you can register at this link: https://business.techtitans.org/events/details/cybersecurity-forum-december-14-2023-4826?calendarMonth=2023-12-01 I will be moderating…
DFW Area Security Peeps – Join me at SecureWorld Dallas on October 25th & 26th!
I am super excited to share that I will speaking at one of my absolute favorite conferences each year — the United States’ preeminent cybersecurity conference — SecureWorld – Dallas! On Wednesday, October 25, 2023, I will be leading a full day workshop for SecureWorld Plus registrants on Real-World Cyber Risk Management and Resilience Planning…
Is the law evolving to hold individuals–specifically the CISO–responsible for companies’ cybersecurity failures?
Is the law evolving to hold individuals — specifically CISOs — responsible for companies’ cybersecurity failures? In my opinion, the answer is yes, albeit slowly and incrementally, but it certainly appears to be moving in that direction. Here are some of my thoughts on the SEC’s recently issuing a Wells Notice to SolarWinds’ executives —…
A few quotes from my keynote at SecureWorld Boston
Following the outstanding SecureWorld Boston event, my friends at SecureWorld shared Highlights and Insights from SecureWorld Boston 2023 and were kind enough to include a few quotes from my lunch keynote — let me know what you think and please offer your perspective on these ideas: For my friends in the Houston area, get ready,…
Join me and #EnterpriseUniversity for Real-World Cyber Risk Management and Resilience Planning on March 28, 2023!
On Tuesday, March 28, 2023, I will be teaching a class on Real-World Cyber Risk Management and Resilience Planning as part of #EnterpriseUniversity Enterprise Bank & Trust’s education program for business leaders and professionals! Join me for this course, and take a look at all of the live, virtual courses available at no cost to…