This is GRC (Page 7)

Sign in Subscribe

10 Harsh Truths About Cloud Security

30 Aug 2023 DevSecOps DevOps Security

10 Harsh Truths About Cloud Security

As a specialist in cloud security due diligence and third-party security risk management, I present the hardest aspects of the discipline. Questionnaires and scanners have created a culture of "checkmarkism" that lead to fast results but low value advice.

Why is security so expensive?

23 Aug 2023 Security

Why is security so expensive?

IT managers sometimes call InfoSec the "security tax". Yes, security is expensive due to skilled experts, evolving tech, and attack surfaces. Security paywalls and compliance checkmarks give it a bad rep. In the end, it's a question of showing the value of security.

Why the Media Should Stop Reporting on Security Breaches

16 Aug 2023 Breaches

Why the Media Should Stop Reporting on Security Breaches

Not every security breach is the same. These complex events are not always of public interest. Media coverage may use them to fuel your anger and anxieties, rather than inform you.

Common Security Analyst Mistakes to Avoid

09 Aug 2023 Careers

Common Security Analyst Mistakes to Avoid

Successful security analysts understand the context of an organization. They educate colleagues about security risks. They leverage the trust they've earned to guide and advise their colleagues. Here's what NOT to do to achieve success!

How much does a security breach cost?

02 Aug 2023 Breaches

How much does a security breach cost?

How much money does a security breach cost? Looking at the IBM cost of a data breach report, I explore how information security cannot solely be a question of avoiding breaches.