1. Cybersecurity Frameworks that Help Reduce Cyber Risk

While security controls and practices are critical to maintaining the cyber health of your organization, you also need to show that you’re adhering to industry and regulatory standards. A cybersecurity framework can help.

Cybersecurity frameworks provide a common language and set of standards. They help security leaders in any industry define the processes and procedures they must take to assess, monitor, and mitigate cybersecurity risk internally and across the supply chain.

There are many frameworks – including NIST, ISO, SOC2, GDPR, and NERC-CIP – that can help guide this process. If you’re interested in exploring which framework is right for you, this blog is a useful point of reference.

2. Cybersecurity vs. Information Security: Is There a Difference?

Although often discussed in the same breath, cybersecurity and information security are quite distinct concepts. Understanding the differences and using the right tools to ensure you are addressing both can significantly lower your risk profile.

In this blog we cover the key principles of cybersecurity and information security. We also look at how the roles  of CISOs and security managers are evolving to cover both, and how they can be effective in doing so.

3. Critical Responsibilities of an IT Security Manager

Although published months apart, this blog is a natural follow-on to our #2 blog. It answers the question “What does an IT security manager do?”

In the past, the answer was straightforward. An IT security manager or cybersecurity manager served as an organization’s expert on cybersecurity protection, detection, response, and recovery. Although, these responsibilities vary based on the size of the team and the industry.

If you’re an IT security manager or looking to hire one, this blog explains the nine key responsibilities of this role and why it’s critical that each is tested and communicated across the organization.