The management of information risk has become a significant topic for all organizations, small and large alike. But for the large, multi-divisional organization, it poses the additional challenge of ...

Model-Driven Security Engineering for Data Systems represents a structured methodology that integrates security into the early stages of system and database development. This approach leverages ...

Fulfilling the risk management and regulatory compliance obligations with consistency in today’s vastly disparate and complex IT enterprise environments has challenged CIOs to rethink the approach to ...

Information Security Architecture – Architect for choice I fully concur with, but Tom Scholtz’s definition of an Information Security Architecture is really what I would define as an overall ...

At a recent seminar on information security management, I heard that FUD (fear, uncertainty and doubt) is dead, that ROI is dead and that the insurance model is dead. Information security needs to ...

The latest set of AI guidance from the Cloud Security Alliance (CSA) explores the importance of Model Risk Management (MRM) in ensuring the responsible development, deployment, and use of AI/ML models ...

At RSA Conference 2025, Cisco unveiled agentic AI capabilities in Cisco XDR, the latest version of Splunk SOAR, and an open-source AI security management model. Cisco today announced a range of ...

The title of Chief Information Security Officer, or CISO, emerged during the 1990s as the first large-scale cyber attacks started to occur. Since then, it's become a near-ubiquitous role in any large ...

Healthcare organizations today face a wide range of escalating threats, including workplace violence, cyber intrusions, social unrest, and increasingly targeted acts against healthcare professionals ...