Tag: cybersecurity governance

  • Schneier on Security: Biden Signs New Cybersecurity Order

    Source URL: https://www.schneier.com/blog/archives/2025/01/biden-signs-new-cybersecurity-order.html Source: Schneier on Security Title: Biden Signs New Cybersecurity Order Feedly Summary: President Biden has signed a new cybersecurity order. It has a bunch of provisions, most notably using the US governments procurement power to improve cybersecurity practices industry-wide. Some details: The core of the executive order is an array of mandates…

  • Wired: The FCC’s Jessica Rosenworcel Isn’t Leaving Without a Fight

    Source URL: https://www.wired.com/story/the-fccs-jessica-rosenworcel-isnt-leaving-without-a-fight/ Source: Wired Title: The FCC’s Jessica Rosenworcel Isn’t Leaving Without a Fight Feedly Summary: As the US faces “the worst telecommunications hack in our nation’s history,” by China’s Salt Typhoon hackers, the outgoing FCC chair is determined to bolster network security if it’s the last thing she does. AI Summary and Description:…

  • Cloud Blog: Cloud CISO Perspectives: Talk cyber in business terms to win allies

    Source URL: https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-talk-cyber-in-business-terms-to-win-allies/ Source: Cloud Blog Title: Cloud CISO Perspectives: Talk cyber in business terms to win allies Feedly Summary: Welcome to the first Cloud CISO Perspectives for January 2025. We’re starting off the year at the top with boards of directors, and how talking about cybersecurity in business terms can help us better convey…

  • CSA: Enhancing NIS2/DORA Compliance: A Business-Centric Approach

    Source URL: https://www.devoteam.com/expert-view/enhancing-nis2-dora-compliance-a-business-centric-approach/ Source: CSA Title: Enhancing NIS2/DORA Compliance: A Business-Centric Approach Feedly Summary: AI Summary and Description: Yes Summary: The text discusses the European Union’s NIS2 Directive and the Digital Operational Resilience Act (DORA), emphasizing their importance in enhancing cybersecurity across various sectors. It introduces the Alert Readiness Framework (ARF) as a practical tool…

  • Slashdot: US Sanctions Chinese Firm Linked to Seized Botnet

    Source URL: https://yro.slashdot.org/story/25/01/04/0431231/us-sanctions-chinese-firm-linked-to-seized-botnet Source: Slashdot Title: US Sanctions Chinese Firm Linked to Seized Botnet Feedly Summary: AI Summary and Description: Yes Summary: The text discusses the recent sanctions imposed on a Beijing-based cybersecurity company, Integrity Technology, due to its involvement in cyberattacks, specifically those attributed to a Chinese government-operated botnet known as Flax Typhoon. This…

  • Wired: The Top Cybersecurity Agency in the US Is Bracing for Donald Trump

    Source URL: https://www.wired.com/story/cisa-cuts-trump-2/ Source: Wired Title: The Top Cybersecurity Agency in the US Is Bracing for Donald Trump Feedly Summary: Staffers at the Cybersecurity and Infrastructure Security Agency tell WIRED they fear the new administration will cut programs that keep the US safe—and “persecution.” AI Summary and Description: Yes Summary: The text discusses concerns among…

  • NCSC Feed: A decade of Cyber Essentials: the journey towards a safer digital future

    Source URL: https://www.ncsc.gov.uk/blog-post/cyber-essentials-decade Source: NCSC Feed Title: A decade of Cyber Essentials: the journey towards a safer digital future Feedly Summary: The 10-year anniversary of Cyber Essentials is not just a celebration of past achievements but a call to action for the future. AI Summary and Description: Yes Summary: The text highlights the 10th anniversary…

  • Schneier on Security: Roger Grimes on Prioritizing Cybersecurity Advice

    Source URL: https://www.schneier.com/blog/archives/2024/10/roger-grimes-on-prioritizing-cybersecurity-advice.html Source: Schneier on Security Title: Roger Grimes on Prioritizing Cybersecurity Advice Feedly Summary: This is a good point: Part of the problem is that we are constantly handed lists…list of required controls…list of things we are being asked to fix or improve…lists of new projects…lists of threats, and so on, that are…

  • The Register: Satya Nadella asked for 50% cut in his incentive payout over security failures

    Source URL: https://www.theregister.com/2024/10/28/satya_nadella_security/ Source: The Register Title: Satya Nadella asked for 50% cut in his incentive payout over security failures Feedly Summary: Microsoft agreed, then upped his payout 63% Comment Filings with the Securities and Exchange Commission show that, at SatNad’s request, the Microsoft board agreed to halve his incentive package, but then more than…

  • The Register: Penn State pays DoJ $1.25M to settle cybersecurity compliance case

    Source URL: https://www.theregister.com/2024/10/23/penn_state_university_doj_settlement/ Source: The Register Title: Penn State pays DoJ $1.25M to settle cybersecurity compliance case Feedly Summary: Fight On, State? Not this time Pennsylvania State University has agreed to pay the Justice Department $1.25 million to settle claims of misrepresenting its cybersecurity compliance to the federal government and leaving sensitive data improperly secured. ……