Search All RSA Blogs

Cyber Security is not for the Faint of Heart

It’s only midweek, but we’ve already witnessed an incredibly active week in the technology and especially the cyber security market: the closing of the Dell/EMC merger; HPE’s sale of its non-core software assets, including Arcsight, a leader in the SIEM space, to British firm Micro Focus, Intel’s sale of a majority ownership stake of McAfee...

Read more

Is Canada really better at Cyber?

The 2016 Cyber Readiness Study of Canadian Organizations was published today by Scalar Decisions, a solution provider based in Toronto, and RSA partner.  Scalar was recently rated #1 for Security among Information Communications and Technology companies in Canada by The Branham Group. When we compare the results of the second annual Scalar Security Study with...

Read more

Quantifying Financial Risk Exposure to Cyber Attacks

Cyber Risk Quantification is the new responsibility for CISOs.

Read more

The Other Cyber Skills Gap: Educating Tomorrow’s CISOs

Critical considerations for educating tomorrow’s security & risk executives.

Read more

Cyber Risk Appetite: Defining and Understanding Risk in the Modern Enterprise

In April, I wrote two blogs (How Hungry… and Appetite and Exercise) on the concept of risk appetite. I highlighted the fact that organizations must take on risk to drive growth within the business. That risk must be balanced with activities to manage the risk within a tolerance that is acceptable to the organization. Some...

Read more

Why a Cyber Risk Assessment Is Essential for M&A Due Diligence

According to J.P. Morgan, the global mergers and acquisitions (M&A) market amounted to $5 trillion in 2015 and continues to show strong levels of growth. When it comes to M&A, the due diligence process involves investigating the health of another business before engaging in any sort of transaction. This process will take many factors into account,...

Read more

Defining Business-Driven Security for the Modern Enterprise

As I travel around the world and meet with CISOs and security teams, I continue to be amazed at the organizational disconnects around managing cyber risk. Security Operations and Identity & Access Management teams operate their own business processes with very few connection points. Security and Risk & Compliance teams have different world views of...

Read more

Cyber Incident Risk: From IT Headache to Business Threat

How to manage the risk of a cyber incident exposing the entire business.

Read more

Defining Your Cyber Risk Appetite

When a senior executive tells the board he or she wants to discuss the company’s risk appetite, usually the board’s interest is piqued. After all, understanding an organization’s risk appetite is critical to the decisions the board makes. So why should defining a company’s cyber risk appetite be so difficult? A CISO’s role is to...

Read more

Starting the Conversation Between Security and Risk Management

Breaking down silos is key to minimizing cyber attack risk. Read how to start the conversation.

Read more