Identity and Access Management: The Foundation of Security Ever wondered how many of your employees still have access to systems long after they’ve left your company? For most organizations, the shocking answer is “way too many.” This invisible security gap is exactly why Identity and Access Management has become the backbone of modern information security....
New regulatory requirements in place for UAE healthcare sector.
Strategic partnership on cybersecurity.
As an information security professional, I am often asked by managers and owners of SMBs on how they can protect their businesses from a cyber-attack. I have therefore decided to put together a playbook that may assist these businesses to protect themselves or in worst case scenario withstand a cyber-attack. I have tried to list...
In the previous post; The human factor in cybersecurity: Employees, we have seen how human factor affects the overall cybersecurity posture of an organization. We classified employees as unwitting and malicious and saw how unwitting employees get duped in compromising the organization’s security policies. We also learned about a methodology to educate the unwitting employees...
We have been hearing a lot about humans being the weakest link in cybersecurity management. We have also seen a lot of surveys and research reports indicating the same. The one below that is attributed to IBM says 95% of all successful cyber-attacks are caused by human error. What does this mean to a business...
Definition: Social engineering (in the context of information security) is the use of deception to manipulate individuals into divulging confidential or personal information that may be used for fraudulent purposes. The current pandemic (COVID-19) has offered a plethora of opportunities for the bad-actors to put their social engineering skills to wreck mayhem. Sudhakar S Narayan,...
During the current pandemic while the majority of us are forced to work from homes, we in the cybersecurity profession are quite busy trying to safeguard all critical infrastructure from bad actors who are making use of this situation to achieve their sinister objectives. In the past few months we have seen an increase in...
Many parts of the world are slowly relaxing the lockdown and have asked the businesses to open in a phased manner. From a CISO’s perspective we need to consider the actions that ought to be taken to protect the most vital business resource – it’s people. In other words, how will the CISO transit the...
The COVID-19 outbreak was declared a Public Health Emergency of International Concern on 30 January 2020 by the WHO. Since then it has now mutated into a PANDEMIC affecting every person and business across the globe. For many, this is the first experience of disruption caused by a pandemic. Businesses that have well-formulated business continuity...