Managing cybersecurity in an organization means managing risk at strategic level. While at operational level an organization might be “mature” in a way it manages information security risk (baseline security-hygiene controls are in place), at strategic level (top decision making level – strategic risk owners) it might not […]
For organizations with fragmented security operations, for example with one unit managing operations of perimeter network security another unit managing operations of end-point security and identities and third unit managing operations of applications and databases security, coordination of these functions is critical for effective and efficient Information Security […]
On the 1st of June 2018 at Webster University in Geneva I talked about security of IoTs. From “smart fridges” that ask for privacy policy consent to “smart fish tank thermometers” that were exploited by hackers to access and exfiltrate databases from within internal corporate networks, and connected […]
