by John Verry | Aug 12, 2019 | InfoSec Strategies
In part 1 of this post I introduced Vilfredo Pareto and “The Pareto Principle” as applied to information security. The goal is to mitigate 80% or more of your InfoSec risk with 20% or less of the effort, by focusing on the most prevalent risk—which is associated with... by John Verry | Feb 19, 2019 | Security Awareness Training
Lots of companies offer good Security Awareness Training, including KnowBe4, Wombat, eLearning, MediaPro, SANS, and Pivot Point Security (I saved the best for last :>)). They all offer important modules that you should include in your training (phishing, social... by Taylor Smith | Jul 26, 2018 | Security Awareness Training
A new OpenVPN survey of the cybersecurity habits of 500 US-based employees underscores what experts frequently state: your users can be your greatest security risk. Despite heightened security concern, the existence of company cybersecurity policies, and even exposure... by Jeremy Sporn | Jul 12, 2018 | ISMS Consulting
The growing risk and disruptive potential of cyber-attacks are making cyber liability insurance (CLI) increasingly relevant to many businesses. CLI offers a way to mitigate financial risk and (if done well) create a “safety net” to improve resilience should a data... by Lou Romero | Jul 3, 2018 | InfoSec Strategies
For the last 20 months or so, we’ve worked with nearly 200 government municipalities on cyber loss control projects, now largely completed. Based on the findings from this effort, we’ve identified those areas where many municipalities are most vulnerable and are...
