New Connecticut law creates liability protections for businesses implementing recognized cyber frameworks
July 14, 2021
July 14, 2021
The law takes effect on Oct. 1 and makes Connecticut the third state after Ohio and Utah to provide such incentives for implementing cyber frameworks.
Schools are facing these ransomware attacks with poorer cyber defenses than many private companies and far more vulnerabilities that hackers could exploit.
The guide shares that working with a trusted partner is the most efficient way for agencies to efficiently execute any security strategy.
Center for Internet Security spearheads report on ‘effective governance’ at state level for managing cyber threats
July 6, 2021
July 6, 2021
Cybersecurity governance must be agile, allowing cybersecurity programs to evolve as new threats that require adaptations in risk management strategies emerge.
Businesses that follow one of the approved frameworks will have an “affirmative defense” against claims that a breach was the result of a “failure to implement reasonable cybersecurity controls.”
Running on public funding could make it difficult for schools to find the money for consistent cybersecurity investments from year to year.
Attestation can be conducted remotely and at scale, ensuring transparency of compliance with industry security controls and benchmarks.
The goal of CIS Controls V8 is to provide practical and specific actions that can spark creation of a better network security environment.
Center for Internet Security Updates CIS Controls With Focus on Cloud, Mobile, and Remote Work
May 25, 2021
May 25, 2021
The key difference between the CIS Controls and other frameworks is their organization of the controls into "Implementation Groups" (IGs).
Looking back at the roles she’s had, Moriarty said she sees them as evolution, “where knowledge and experience gained has opened the door for the next role.”
According to a 2018 CBIA survey, nearly one-quarter of Connecticut businesses experienced a data breach or cyber-attack in the previous two years.
The v8 release is not just an update to the Controls; the whole ecosystem surrounding the Controls has been (or soon will be) updated as well.
Resources play an important role, something that can benefit larger enterprises, but bigger doesn’t always equal better for cloud security.
Safeguarding public cloud environments is a shared responsibility. Cloud customers should use CIS Benchmarks to ensure cloud security at the account level.
The primary method of cyberattacks has been unsophisticated spear-phishing campaigns to infect networks with malicious ransomware.
