Guidelines, Security and Systems Review

How AI continues to reshape the cybersecurity arsenal

CIO

OCTOBER 1, 2024

With each passing day, new devices, systems and applications emerge, driving a relentless surge in demand for robust data storage solutions, efficient management systems and user-friendly front-end applications. As civilization advances, so does our reliance on an expanding array of devices and technologies. billion user details.

Security

Security Software Review Artificial Intelligence Artificial Inteligence

Generative AI: Balancing security with innovation

CIO

SEPTEMBER 7, 2023

Slowing the progression of AI may be impossible, but approaching AI in a thoughtful, intentional, and security-focused manner is imperative for fintech companies to nullify potential threats and maintain customer trust while still taking advantage of its power.

Security

Security Generative AI Artificial Inteligence Innovation

Cybersecurity Snapshot: Schools Suffer Heavy Downtime Losses Due To Ransomware, as Banks Grapple with AI Challenges

Tenable

AUGUST 30, 2024

And get the latest on AI-system inventories, the APT29 nation-state attacker and digital identity security! Most schools faced astronomical recovery costs as they tried to restore computers, recover data, and shore up their systems to prevent future attacks,” reads a Comparitech blog about the research published this week.

Security

Security Systems Review Software Review Technical Review

Webinars

Prepare Now: 2025s Must-Know Trends For Product And Data Leaders

From Start to Scale: Driving Growth Through Seamless Payments Implementation

MORE WEBINARS

Beyond the hype: Key components of an effective AI policy

CIO

OCTOBER 2, 2024

An AI policy serves as a framework to ensure that AI systems align with ethical standards, legal requirements and business objectives. This includes regular audits to guarantee data quality and security throughout the AI lifecycle. This includes regular audits to guarantee data quality and security throughout the AI lifecycle.

Policies

Policies Technical Review Systems Review Software Review

Steps CIOs should take to protect customer data in Nigeria’s open banking systems

CIO

AUGUST 5, 2022

Due to Nigeria’s fintech boom borne out of its open banking framework, the Central Bank of Nigeria (CBN) has published a much-awaited regulation draft to govern open banking procedures. And at its core is the need to secure customer data through a robust set of requirements. Securing customer data. “One

Banking

Banking Systems Review System Data

Cybersecurity Snapshot: New Guides Offer Best Practices for Preventing Shadow AI and for Deploying Secure Software Updates

Tenable

OCTOBER 25, 2024

Plus, learn why GenAI and data security have become top drivers of cyber strategies. And get the latest on the top “no-nos” for software security; the EU’s new cyber law; and CISOs’ communications with boards. Looking for help with shadow AI? Want to boost your software updates’ safety? New publications offer valuable tips.

Software Review

Software Review Software Weak Development Team Technical Advisors

Everything you need to know about NIST Security Compliance

Firemon

OCTOBER 16, 2024

Whether you’re in government contracting, healthcare, or other sectors that handle sensitive data, adhering to NIST Cybersecurity Framework guidelines ensures your business operates within the highest standards of regulatory compliance. The guidelines set by NIST are particularly important in the realm of cybersecurity.

Security

Security Compliance Guidelines Systems Review

Cybersecurity Snapshot: How To Boost the Cybersecurity of AI Systems While Minimizing Risks

Tenable

JANUARY 12, 2024

Check out expert recommendations for deploying AI tools securely. 1 - How to ensure AI helps, not hurts, cybersecurity How can organizations use artificial intelligence (AI) in a way that’s safe and that benefits cybersecurity? In addition, cyber insurance demand is forecast to grow robustly. And much more!

Systems Review

Systems Review System Technical Review Development Team Review

US lawmakers advance bill to close loopholes in AI export controls

CIO

MAY 23, 2024

The House Foreign Affairs Committee has advanced a bill that would enhance the White House’s ability to regulate the export of AI systems, amid ongoing efforts to tighten grip on key technologies. This is why safeguarding our most advanced AI systems, and the technologies underpinning them, is imperative to our national security interests.”

Technical Review

Technical Review Systems Review Guidelines Government

Cybersecurity Snapshot: U.S., U.K. Governments Offer Advice on How To Build Secure AI Systems

Tenable

DECEMBER 1, 2023

Looking for guidance on developing AI systems that are safe and compliant? Plus, a new survey shows generative AI adoption is booming, but security and privacy concerns remain. publish recommendations for building secure AI systems If you’re involved with creating artificial intelligence systems, how do you ensure they’re safe?

Systems Review

Systems Review Artificial Inteligence Government System

The Importance of Security and Compliance in Enterprise Applications

OTS Solutions

JUNE 21, 2023

However, as more organizations rely on these applications, the need for enterprise application security and compliance measures is becoming increasingly important. Breaches in security or compliance can result in legal liabilities, reputation damage, and financial losses.

Compliance

Compliance Enterprise Applications Software Review

Why Cybersecurity Should Be Your Organization’s Top Priority

The Crazy Programmer

MARCH 3, 2021

Cybersecurity isn’t something new. Businesses are emphasized to protect their data systems from hackers for decades. Unfortunately, the escalating rate of digitalization that is consuming IT resources across organizations has led to basic network and device hygiene becoming one of the most neglected components of cybersecurity.

Systems Review

Systems Review Guidelines Compliance Firewall

Protecting Your Supply Chain with Data-Aware Security

CIO

JULY 13, 2022

In a previous article , we talked about the need for organizations to secure data wherever it resides. The scope of this problem is serious enough that it has gotten the attention of the US government’s Department of Commerce, which released new guidelines for addressing cybersecurity supply chain risk in May 2022. .

Data

Data Systems Review Malware Software Review

Going ‘AI native’ with in-house ChatGPT the MITRE way

CIO

JUNE 21, 2024

MITREChatGPT, a secure, internally developed version of Microsoft’s OpenAI GPT 4, stands out as the organization’s first major generative AI tool. Some of MITRE’s most prominent projects include the development of the FAA air traffic control system and the MITRE ATT&CK Framework collection of cybercriminal attack techniques.

ChatGPT

ChatGPT Generative AI Technical Review Nonprofit

Cybersecurity Snapshot: CISA Breaks Into Agency, Outlines Weak Spots in Report, as Cloud Security Alliance Updates Cloud Sec Guidance

Tenable

JULY 19, 2024

CISA’s red team acted like a nation-state attacker in its assessment of a federal agency’s cybersecurity. Plus, the Cloud Security Alliance has given its cloud security guidance a major revamping. And the latest on open source security, CIS Benchmarks and much more!

Weak Development Team

Weak Development Team Cloud Report Software Review

Security-Rich: How the D2iQ Kubernetes Platform Meets NSA/CISA Kubernetes Security Hardening Guidelines

d2iq

FEBRUARY 2, 2022

Cybersecurity continues to be a thorny problem for businesses and government agencies as breaches, disruptions, and data thefts continue to escalate. How DKP addresses each of the NSA/CISA guidelines is detailed in the “ How D2iQ Maps to the NSA/CISA Guidelines ” section below. impacting up to seven million people.”As

Guidelines

Guidelines Meeting Authentication Firewall

Cybersecurity Snapshot: NIST Unpacks Cyberattacks Against AI Systems, as FBI Strikes ALPHV/Blackcat Ransomware Gang

Tenable

JANUARY 5, 2024

Want to learn more about protecting AI systems from malicious actors? Plus, new granular configuration recommendations for securing Microsoft 365 are out. 1 - NIST categorizes cyberattacks against AI systems Are you involved with securing the artificial intelligence (AI) tools and systems your organization uses?

Artificial Inteligence

Artificial Inteligence Systems Review System Generative AI

Cybersecurity Snapshot: Want to Deploy AI Securely? New Industry Group Will Compile AI Safety Best Practices

Tenable

DECEMBER 15, 2023

A group that includes the Cloud Security Alliance, CISA and Google is working to compile a comprehensive collection of best practices for secure AI use. Meanwhile, check out a draft of secure configuration recommendations for the Google Workspace suite. Dive into six things that are top of mind for the week ending December 15.

Groups

Groups Industry Hardware Software Review

Top Compliance Standards and the Differences Between Them: SOC 2, ISO 27001, NIST and PCI DSS

Kaseya

OCTOBER 10, 2024

To stay compliant, businesses rely on key standards like SOC 2, ISO 27001, NIST and PCI DSS, which offer essential guidelines for meeting regulatory requirements. International Organization for Standardization 27001 (ISO 27001) : An international standard that helps organizations manage information security. What is SOC 2?

Security

Security Compliance Guidelines Systems Review

What is NIST Compliance? A Guide to NIST Standards, Framework & Controls

Kaseya

JULY 12, 2024

In this article, we’ll explain what NIST is, why it’s so important in cybersecurity, the different standards and frameworks it includes and how to be compliant. When it comes to cybersecurity, NIST is famous for its guidelines and frameworks that help organizations protect their information and systems.

Compliance

Compliance Security Guidelines Systems Review

23 key gen AI terms and what they really mean

CIO

SEPTEMBER 25, 2024

Agentic systems An agent is an AI model or software program capable of autonomous decisions or actions. Gen AI-powered agentic systems are relatively new, however, and it can be difficult for an enterprise to build their own, and it’s even more difficult to ensure safety and security of these systems.

Artificial Inteligence

Artificial Inteligence Open Source Training Software Review

Cybersecurity Snapshot: A Look Back at Key 2023 Cyber Data for GenAI, Cloud Security, Vulnerability Management, OT, Cyber Regulations and more

Tenable

DECEMBER 22, 2023

As we bid adieu to 2023, we highlight major trends that impacted cybersecurity professionals in the past 12 months. Learn how the cyber world changed in areas including artificial intelligence, CNAPP, IAM security, government oversight and OT security. Cybersecurity teams were no exception.

Artificial Inteligence

Artificial Inteligence Technical Review Cloud Systems Review

What is NIST Compliance? A Guide to NIST Standards, Framework & Controls

Kaseya

JULY 12, 2024

In this article, we’ll explain what NIST is, why it’s so important in cybersecurity, the different standards and frameworks it includes and how to be compliant. When it comes to cybersecurity, NIST is famous for its guidelines and frameworks that help organizations protect their information and systems.

Compliance

Compliance Security Guidelines Systems Review

Cybersecurity Snapshot: U.K. Cyber Agency Urges Software Vendors To Boost Product Security, While U.S. Gov’t Wants Info on Banks’ AI Use

Tenable

JUNE 14, 2024

Check out the NCSC’s call for software vendors to make their products more secure. And the latest on the cybersecurity skills gap in the U.S. 1 - NCSC issues “code of practice” for software makers Software vendors improve the security of their products. And much more! That’s the goal of the U.K. The document from the U.K.’s

Software Review

Software Review Artificial Inteligence Banking Artificial Intelligence

The Importance of Security and Compliance in Enterprise Applications

OTS Solutions

JUNE 21, 2023

However, as more organizations rely on these applications, the need for enterprise application security and compliance measures is becoming increasingly important. Breaches in security or compliance can result in legal liabilities, reputation damage, and financial losses.

Compliance

Compliance Enterprise Applications Software Review

Why CIOs must lead the charge on ESG – and why enterprise architecture is the key

CIO

OCTOBER 29, 2024

As research suggests, the potential benefits of generative AI (genAI) adoption far outweigh the challenges, making it imperative for businesses to adopt a strategic approach toward scaling their AI implementation while observing guidelines for ESG compliance. Finally embracing opportunities for a “circular” economy will be key.

Architecture

Architecture Enterprise Technical Review Sustainability

How the new AI executive order stacks up: B-

CIO

NOVEMBER 9, 2023

The White House’s new executive order, “ Safe, Secure, and Trustworthy Artificial Intelligence ,” is poised to usher in a new era of national AI regulation, focusing on safety and responsibility across the sector. Naturally, such guidelines are only effective in encouraging innovation if they are consistently applied. But will it?

Artificial Inteligence

Artificial Inteligence Technical Review Artificial Intelligence Guidelines

Cloud Security — Maturing Past the Awkward Teenage Years

Palo Alto Networks

OCTOBER 22, 2024

As such, cloud security is emerging from its tumultuous teenage years into a more mature phase. The initial growing pains of rapid adoption and security challenges are giving way to more sophisticated, purpose-built security solutions. This alarming upward trend highlights the urgent need for robust cloud security measures.

Cloud

Cloud Artificial Inteligence Software Review Systems Review

Cybersecurity Snapshot: A ChatGPT Special Edition About What Matters Most to Cyber Pros

Tenable

MARCH 3, 2023

In this special edition, we highlight six things about ChatGPT that matter right now to cybersecurity practitioners. For instance, Chris Anley, NCC Group’s chief scientist, used it to do security code reviews and concluded that “it doesn’t really work,” as he explained in the blog “ Security Code Review With ChatGPT.”

ChatGPT

ChatGPT Technical Review Software Review Generative AI

3 steps to eliminate shadow AI

CIO

SEPTEMBER 12, 2024

The perils of unsanctioned generative AI The added risks of shadow generative AI are specific and tangible and can threaten organizations’ integrity and security. The generated code could contain undetected malicious code that further risks the severe consequences of a data breach and system downtime.

Generative AI

Generative AI Software Review Guidelines Compliance

CIOs look to sharpen AI governance despite uncertainties

CIO

NOVEMBER 4, 2024

IDC, for instance, recommends the NIST AI Risk Management Framework as a suitable standard to help CIOs develop AI governance in house, as well as EU AI ACT provisions, says Trinidad, who cites best practices for some aspects of AI governance in “ IDC PeerScape: Practices for Securing AI Models and Applications.” The challenges? “AI

Government

Government Generative AI Policies Nonprofit

Network Security Policies

Firemon

AUGUST 14, 2024

Network Security Policies: The Definitive Guide What Are Network Security Policies? In this guide, you’ll learn the various types of security policies and explore how to strategically implement them to create a robust network environment that protects against threats and supports your business objectives.

Policies

Policies Network Guidelines Compliance

Network Security Policies

Firemon

AUGUST 14, 2024

Network Security Policies: The Definitive Guide What Are Network Security Policies? In this guide, you’ll learn the various types of security policies and explore how to strategically implement them to create a robust network environment that protects against threats and supports your business objectives.

Policies

Policies Network Guidelines Compliance

Driving Industry Development of Zero Trust Through Best Common Practices

CableLabs

SEPTEMBER 24, 2024

government has undertaken efforts to adopt a zero trust architecture strategy for security to protect critical data and infrastructure across federal systems. In recent years, the U.S. It has also urged critical infrastructure sectors — including the broadband industry — to implement zero trust concepts within their networks.

Industry

Industry Development Infrastructure Software Review

Best practices for integrating AI in business: A governance approach

CIO

JULY 15, 2024

Effective AI governance ensures that AI systems are used responsibly, ethically, and in compliance with relevant laws and regulations. Promote Transparency: Transparency and explainability of AI systems are crucial to the positive reception of these new tools, minimizing skepticism and resistance to adoption.

Government

Government Artificial Inteligence Systems Review Quality Assurance

Cybersecurity Snapshot: Data Breach Costs Rise, as Ransomware Attacks Fall, Reports Find

Tenable

AUGUST 2, 2024

Plus, the IT-ISAC says that ransomware attacks fell in Q2 due to law-enforcement disruptions of ransomware groups. Meanwhile, check out a Carnegie Mellon comp sci professor’s take on AI system security. Security teams that use AI and automation extensively for prevention experience an average of $2.2 And much more!

Report

Report Weak Development Team Data Artificial Inteligence

Cybersecurity Snapshot: Critical Infrastructure Orgs Found Vulnerable to Basic Hacks, While New MITRE Tool Uses ML to Predict Attack Chains

Tenable

SEPTEMBER 20, 2024

1 - CISA: Critical infrastructure orgs susceptible to common attacks After assessing the security of 143 critical infrastructure organizations in 2023, the U.S. Each of the 143 critical infrastructure organizations received a report about their network security results, mapped to the MITRE ATT&CK framework. Coast Guard (USCG).

Infrastructure

Infrastructure Tools IoT Software Review

The extent Automic’s group CIO goes to reconcile data

CIO

MAY 8, 2024

On the IT front, group CIO Marcelo Dantas and his team look after technology across the entire business, which includes product engineering, service, security and infrastructure. Then we have to make sense of the data, massage it and import it in our system. Most importantly, though, show it’s okay to fail. “If

Groups

Groups Data Technical Review Weak Development Team

Regulation and Compliance Updates Every IT Professional Needs to Know

Kaseya

SEPTEMBER 4, 2024

In this blog, we’ll break down the latest updates and key changes you need to be aware of, helping you navigate these complexities and ensure your IT practices remain compliant and secure. Privacy rule: Focuses on safeguarding patient information, ensuring that it’s kept confidential and only shared when necessary.

Compliance

Compliance Security Guidelines Telecommunications

7 ways to ensure the success of product-centric reliability

CIO

SEPTEMBER 7, 2023

Plan for capacity management: One of the more critical changes we made was to better plan for capacity management and performance testing via quarterly capacity management reviews. These reviews bring the right people together to determine projected average and peak traffic patterns and volumes six to 12 months in advance for each customer.

Systems Review

Systems Review Guidelines Technical Review Exercises

Leap ahead: 29 expert cybersecurity hiring and retention tips from CISOs

Lacework

FEBRUARY 29, 2024

This Leap Day, let’s jump into action to address a critical challenge in tech: the widening gap in cybersecurity talent. With new tools, technologies, and complex cloud environments, the demand for skilled security professionals is higher than ever. Value soft skills Cybersecurity is both a technical and human challenge.

Technical Review

Technical Review Culture Education Training

Cybersecurity Snapshot: 6 Things That Matter Right Now

Tenable

SEPTEMBER 2, 2022

Securing machine learning systems. Shifting security left – meaning, starting security checks earlier in the software development process – has been widely hailed. Most companies expect developers to do security code reviews, but many don’t provide them with security training. And much more!

Security

Security Software Review Artificial Inteligence Technical Review

Cybersecurity Snapshot: Insights on Log4Shell, the Metaverse, IoT, Pig Butchering, Active Directory

Tenable

DECEMBER 2, 2022

Get the latest on Log4Shell’s global remediation status; the need for metaverse security rules; a shutdown of “pig butchering” domains; tips for secure IoT products; an informal poll about AD security; and more! . Cybersecurity and Infrastructure Security Agency (CISA). Log4j guidance from the U.S.

IoT

IoT Systems Review Guidelines Technical Review

Cybersecurity Snapshot: CISOs Are Happier, but Dev Teams Still Lack Secure Coding Skills

Tenable

JANUARY 20, 2023

Plus, NIST mulls major makeover of its Cybersecurity Framework. Also, the struggle to develop secure apps is real. Then check out how Uncle Sam plans to use AI and ML to boost cybersecurity. Almost 70% of organizations' SDLCs are missing critical security processes. Learn all about the spike in CISO job satisfaction.

Software Review

Software Review Artificial Inteligence SDLC Technical Review

How AI continues to reshape the cybersecurity arsenal

Generative AI: Balancing security with innovation

Cybersecurity Snapshot: Schools Suffer Heavy Downtime Losses Due To Ransomware, as Banks Grapple with AI Challenges

Webinars

Beyond the hype: Key components of an effective AI policy

Steps CIOs should take to protect customer data in Nigeria’s open banking systems

Cybersecurity Snapshot: New Guides Offer Best Practices for Preventing Shadow AI and for Deploying Secure Software Updates

Everything you need to know about NIST Security Compliance

Cybersecurity Snapshot: How To Boost the Cybersecurity of AI Systems While Minimizing Risks

US lawmakers advance bill to close loopholes in AI export controls

Cybersecurity Snapshot: U.S., U.K. Governments Offer Advice on How To Build Secure AI Systems

The Importance of Security and Compliance in Enterprise Applications

Why Cybersecurity Should Be Your Organization’s Top Priority

Protecting Your Supply Chain with Data-Aware Security

Going ‘AI native’ with in-house ChatGPT the MITRE way

Cybersecurity Snapshot: CISA Breaks Into Agency, Outlines Weak Spots in Report, as Cloud Security Alliance Updates Cloud Sec Guidance

Security-Rich: How the D2iQ Kubernetes Platform Meets NSA/CISA Kubernetes Security Hardening Guidelines

Cybersecurity Snapshot: NIST Unpacks Cyberattacks Against AI Systems, as FBI Strikes ALPHV/Blackcat Ransomware Gang

Cybersecurity Snapshot: Want to Deploy AI Securely? New Industry Group Will Compile AI Safety Best Practices

Top Compliance Standards and the Differences Between Them: SOC 2, ISO 27001, NIST and PCI DSS

What is NIST Compliance? A Guide to NIST Standards, Framework & Controls

23 key gen AI terms and what they really mean

Cybersecurity Snapshot: A Look Back at Key 2023 Cyber Data for GenAI, Cloud Security, Vulnerability Management, OT, Cyber Regulations and more

What is NIST Compliance? A Guide to NIST Standards, Framework & Controls

Cybersecurity Snapshot: U.K. Cyber Agency Urges Software Vendors To Boost Product Security, While U.S. Gov’t Wants Info on Banks’ AI Use

The Importance of Security and Compliance in Enterprise Applications

Why CIOs must lead the charge on ESG – and why enterprise architecture is the key

How the new AI executive order stacks up: B-

Cloud Security — Maturing Past the Awkward Teenage Years

Cybersecurity Snapshot: A ChatGPT Special Edition About What Matters Most to Cyber Pros

3 steps to eliminate shadow AI

CIOs look to sharpen AI governance despite uncertainties

Network Security Policies

Network Security Policies

Driving Industry Development of Zero Trust Through Best Common Practices

Best practices for integrating AI in business: A governance approach

Cybersecurity Snapshot: Data Breach Costs Rise, as Ransomware Attacks Fall, Reports Find

Cybersecurity Snapshot: Critical Infrastructure Orgs Found Vulnerable to Basic Hacks, While New MITRE Tool Uses ML to Predict Attack Chains

The extent Automic’s group CIO goes to reconcile data

Regulation and Compliance Updates Every IT Professional Needs to Know

7 ways to ensure the success of product-centric reliability

Leap ahead: 29 expert cybersecurity hiring and retention tips from CISOs

Cybersecurity Snapshot: 6 Things That Matter Right Now

Cybersecurity Snapshot: Insights on Log4Shell, the Metaverse, IoT, Pig Butchering, Active Directory

Cybersecurity Snapshot: CISOs Are Happier, but Dev Teams Still Lack Secure Coding Skills

Stay Connected