GRCNegotiating the minefield that is governance, risk and compliance (GRC) can be a daunting task for corporate, financial and IT executives alike. With companies facing significantly greater risks due to government and private industry compliance regulations that vary from country to country, combined with significantly increased litigation, most managers are searching for new ways to decrease their risk profile while continuing to scale back on costs and personnel. While software can help, it needs to understand the overall business goals and environment in order to judge risk appropriately.
There are many ways to do DevSecOps, and each organization — each security team, even — uses a different approach. Questions such as how many environments you have and the frequency of deployment of those environments are important in understanding how to integrate a security scanner into your DevSecOps machinery. The ultimate goal is speed […]
It’s Cybersecurity Awareness Month, but security awareness is about much more than just dedicating a month to a few activities. Security awareness is a journey, requiring motivation along the way. And culture. Especially culture.That’s the point Proofpoint Cybersecurity Evangelist Brian Reed drove home in a recent appearance on Business Security Weekly.“If your security awareness program […]
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news