Risk remediation and identification is one of those concentrations within cybersecurity that tends to create some anxiety among cybersecurity professionals—it is hard to explain to someone not in the ...

Experts share how software development teams can ‘shift security left’ and improve governance of open source usage, software deployment, and data management. CIOs and their IT departments face ...

The management of information risk has become a significant topic for all organizations, small and large alike. But for the large, multi-divisional organization, it poses the additional challenge of ...

The objective of Connecticut College in the development and implementation of this comprehensive written information security program (“WISP”) is to create and guide the implementation of effective ...

An information security policy is the foundation of an enterprise security program, ideally establishing in clear language what the organization expects from its security operations based on both its ...

A lot of the work I do, especially for clients regulated by the Department of Labor (DOL), involves third-party risk reviews. In 2021, the DOL released a list of cybersecurity best practices. Now, in ...

Bill Edwards, a retired Army Colonel and Iraq War veteran, he is President of Federal and Public Safety at Building Intelligence Inc. We often hear and talk about security technologies in silos or ...

As a professor who teaches data modeling and database implementation, Dr. Jim Chen gets the technical side of information systems and all that goes into making them secure. But this longtime faculty ...

John is a business-centric technology professional specializing in Information Security Program Development, IT Risk Management, IT auditing, Data Privacy. He ...