Leveraging NIST’s Revamped Cybersecurity Framework: A Strategic Approach to Risk and Security Management
By: Igor Volovich, VP, Compliance Strategy In the ever-evolving cybersecurity landscape, organizations are continuously challenged to stay ahead of threats while ensuring compliance with many regulations and best practices. The recent announcement by the National Institute of Standards and Technology (NIST) regarding its revamped Cybersecurity Framework 2.0 offers a fresh perspective on how businesses can […]
The National Cybersecurity Strategy Implementation Plan
The Biden-Harris Administration’s recently released National Cybersecurity Strategy calls for two fundamental shifts in how the United States allocates roles, responsibilities, and resources in cyberspace.
Where to Find Federal Funding for Compliance Modernization
With billions of federal dollars flowing into state and local agencies, there has never been a better time to invest in a cybersecurity program.
Tapping Into The Technology Modernization Fund To Help Meet New – And Binding – Vulnerability Detection Requirements
By: Nick Jovanovich, Chief Revenue Officer, Qmulos The Technology Modernization Fund (TMF) is an investment program that loans funding to federal agencies to address urgent IT modernization challenges. The goal is to aid all agencies, no matter what size, in accelerating information technology-related projects that will enhance cybersecurity, better secure sensitive Government systems, and improve services to […]
Understanding the National Cyber Strategy: A Path to Safe Harbor for Private Sector Firms
The United States government recently published its National Cyber Strategy, a comprehensive plan aimed at improving the nation’s cybersecurity posture. The strategy outlines several key initiatives, including securing federal networks, strengthening critical infrastructure cybersecurity, and promoting cybersecurity as a national economic and security priority.
Why the P&L Impact of Your Compliance Posture Will Be Greater This Year
As CMMC 2.0 becomes Federal law this spring, bringing increasing numbers of defense contracts within its scope, firms will begin to see their revenues directly impacted by their compliance posture – and that’s the point!
2022: The Year Cyber Compliance Mandates Made Security Real-Time
As a previous director of Federal Network Security (FNS) for the National Cyber Security Division of the Department of Homeland Security, I am highly sensitive to the great regulatory compliance struggle facing businesses and organizations. From NIST 800-171, NIST 800-53, ICS 500-27, SOX, HIPAA, FedRAMP, PCI DSS, and most recently, CMMC, the onslaught of new […]
Escalating Cyber Conflict Calls For Better Enterprise Risk Visibility
It’d be hard to miss the conflict between Russia and Ukraine, and the danger that individuals, companies, and European governments face, from land, air, and cyber attacks. So, we’ll assume that you don’t live under a rock. With the vast majority of Western national critical infrastructure assets under the control of private industry, enterprises are […]
Convergence Offers Hope In The Face Of Growing OT Threats
Operational Technology (OT) environments have increasingly come into scope of cyberattacks as continuing IT/OT convergence has eroded the boundary between these traditionally segregated domains. Despite the network convergence, the convergence of thinking and understanding of risk as an enterprise-wide issue that transcends organizational boundaries has not kept pace. You’ve heard me say this before, but […]