Self Improvement Site
On The Internet! Take the Self Improvement Tour
On The Internet! Take the Self Improvement Tour
Risk Management Articles
We are currently looking for an Official SelfGrowth.com Guide to "Risk Management". If you have expertise in Risk Management and your own website and/or product for this topic, please review this form for complete details. The Official Guide Position is part of our Premium Placement Package
- 5 Practical Applications of Blockchain to Cyber Security and Compliance - by Submitted on Nov 07, 2018 from Michael PetersWhile digital currencies, particularly bitcoin, are the most common and well-known application of blockchain technology, they are far from being the sole or even the most important use. Blockchain is one of the most important technological advancements of the digital age, and its full potential ...
Views: 1382 - SEC Cyber Enforcement Action Cites Lack of Internal Controls - by Submitted on Oct 31, 2018 from Michael PetersDes Moines-based Voya Financial Advisors (VFA) has agreed to pay the U.S. Securities and Exchange Commission a $1 million penalty in the wake of an April 2016 breach that affected several thousand VFA customers. The SEC cyber enforcement action charged VFA with not having sufficient written ...
Views: 999 - 10 Cyber Security Travel Tips to Protect Your Devices & Data - by Submitted on Oct 31, 2018 from Michael PetersThe holiday season is fast approaching, but hackers don’t take vacations. Whether you’re planning to go home for the holidays or travel for business on a regular basis, make sure to protect yourself from cyber crime with these cyber security travel tips. Update Your OS & Software Before ...
Views: 1223 - Tips for Combating Shadow IT Usage in the Enterprise - by Submitted on Oct 18, 2018 from Michael PetersShadow IT is a very serious and growing threat to IT compliance and cyber security, and most organizations have no idea how common it really is. This article will examine some of the risks of shadow IT and discuss ways in which organizations can curb it. What Is Shadow IT? Shadow IT refers ...
Views: 942 - NIST 800–171 Compliance: A Guide for Government Contractors - by Submitted on Oct 14, 2018 from Michael PetersIf your company is part of the federal supply chain, you likely need to comply with NIST 800–171. NIST 800–171 compliance applies to contractors for the DoD, GSA, NASA, and other federal and state agencies; universities and research institutions that accept federal grants; consulting firms with ...
Views: 939 - NIST Privacy Framework Under Development to Complement NIST CSF - by Submitted on Oct 05, 2018 from Michael PetersCiting the success of its cybersecurity framework and the advent of IoT devices, artificial intelligence, and other technologies that are making it more challenging than ever for enterprises to protect their customers’ privacy, NIST has launched a collaborative project to develop a voluntary ...
Views: 923 - Best Practices for Achieving PCI DSS Compliance - by Submitted on Sep 27, 2018 from Michael PetersPCI DSS compliance is mandatory for any organization that accepts or processes payment cards, yet shockingly, a recent study by SecurityScorecard found that over 90% of U.S. retailers fail to meet four or more PCI DSS requirements. Compliance with PCI DSS is not something to be taken lightly. ...
Views: 1031 - Penetration Tests vs. Vulnerability Scans: Understanding the Differences - by Submitted on Sep 19, 2018 from Michael PetersThe difference between penetration tests and vulnerability scans is a common source of confusion. While both are important tools for cyber risk analysis and are mandated under PCI DSS, HIPAA, and other security standards and frameworks, they are quite different. Let’s examine the similarities ...
Views: 873 - Cloud Security: Understanding SOC 2 Type 2 Attestations - by Submitted on Sep 18, 2018 from Michael PetersWe are living in a cloud-first world; cloud services, including storage services and SaaS providers, are wildly popular. Unfortunately, third-party vendor breaches are at epidemic levels, and new regulations such as the EU GDPR are seeking to hold organizations accountable if third-party ...
Views: 919 - SANCTUM WEALTH MANAGEMENT: THE COST OF RISK AVERSION - by Submitted on Sep 10, 2018 from Sanctum WealthInvestment Outlook , Published Jan 18, 2018 Contact The opportunity cost of choosing risk aversion – investing in FDs for instance – has been high over the past two decades. Staying invested is clearly the right choice. Time and again investors have chosen risk aversion, and the opportunity ...
Views: 766 - NIST Issues Guidance for Medical IoT Device Security - by Submitted on Sep 05, 2018 from Michael PetersThere are more connected devices than there are humans on Earth. Organizations have been as quick to embrace the Internet of Things as consumers have, and the healthcare industry is no exception. Medical IoT devices have exploded in popularity and grown in complexity. Smart medical devices allow ...
Views: 989 - Social Media Cyber Security Risks and Best Practices for Businesses - by Submitted on Aug 29, 2018 from Michael PetersBusinesses tend to gloss over social media cyber security, thinking that it’s more of an issue in their employees’ personal lives than a threat to workplace cyber security. However, one in eight enterprises have suffered a security breach that was traced back to a cyber attack on social ...
Views: 973 - The WPA3 WiFi Security Standard: What Your Enterprise Needs to Know - by Submitted on Aug 21, 2018 from Michael PetersAccording to the Wi-Fi Alliance, there are now more IoT devices than there are humans on Earth, and over 50% of internet traffic travels through wireless networks. As people’s dependence on connected devices has grown, free public WiFi has become insanely popular, but it’s also insanely ...
Views: 943 - Cyber Security Best Practices When Using Public WiFi Networks - by Submitted on Aug 17, 2018 from Michael PetersOnce a luxury item, free public WiFi has morphed into a standard service that consumers expect when patronizing everything from restaurants and retail stores to airports and hotels. Free WiFi users aren’t just checking Facebook or posting vacation photos to Instagram, either; all of us have sat ...
Views: 1048 - Understanding the NIST Cybersecurity Framework (NIST CSF) - by Submitted on Aug 08, 2018 from Michael PetersLast week, the NIST Small Business Cybersecurity Act (S. 770) passed the U.S. Senate and was sent to the White House, where the president is expected to sign it into law shortly. The bipartisan measure directs NIST to provide resources to small businesses to help them implement the NIST ...
Views: 896 - What Is Multi-Factor Authentication, and Why Is It So Important? - by Submitted on Aug 02, 2018 from Michael PetersOrganizations can no longer depend on passwords alone to protect their systems and data, especially since 25% of employees admit to using the same password for all of their accounts, at home and at work, and stolen account credentials are hackers’ preferred way to break into enterprise systems. ...
Views: 854 - Top Cyber Threats Organizations Are Facing Right Now - by Submitted on Jul 26, 2018 from Michael PetersCyber security is a continuous game of Spy vs. Spy. Every time a new technology is introduced, the potential attack surface expands. The moment one vulnerability is patched, hackers find another way in. Keeping up can feel overwhelming, even for security professionals. In no particular order, ...
Views: 861 - Business Email Compromise Losses Top $12 Billion Globally, Says FBI - by Submitted on Jul 20, 2018 from Michael PetersGlobal losses from business email compromise scams, a highly sophisticated form of phishing, grew by 136% between December 2016 and May 2018 and now exceed $12 billion, according to a public service announcement released by the FBI. What Is a Business Email Compromise Scam? A business ...
Views: 958 - Is the California Consumer Privacy Act the “American GDPR”? - by Submitted on Jul 12, 2018 from Michael PetersThe recent Exactis data leak, which could surpass Equifax in the sheer number and scope of records exposed, has data privacy advocates calling for an “American GDPR.” While it is unlikely that a federal data privacy law will come to pass anytime soon, some states have already taken matters into ...
Views: 976 - IoT and Security Challenges in Mobile App Development - by Submitted on Jul 12, 2018 from Anup KiranPeople expect apps to work not just on their smartphones, but on every smart device they own. The invasion of wearable technology has made it apparent that smart thermostats and smart bulbs can tap into an enormous market. Therefore, the Internet of Things (IoT) is poised to have a highly ...
Views: 752 - 4 Tips which can Secure Your Facebook Account from Hackers - by Submitted on Jul 07, 2018 from Usama MalikFacebook is the most widely used social media network. There are almost 2 billion monthly active users of Facebook according to stats. If you talk with 100 people around you, you will find that almost 92 people are using Facebook. Many celebrities and brands have their pages and accounts on ...
Views: 902(1 vote) - Nearly 340 Million Records Exposed in Exactis Data Leak - by Submitted on Jul 05, 2018 from Michael PetersLast week’s data leak at Exactis, a Florida-based marketing and data aggregation firm, has cyber security experts and data privacy advocates up in arms. WIRED reports: Earlier this month, security researcher Vinny Troia discovered that Exactis, a data broker based in Palm Coast, Florida, had ...
Views: 986 - Understanding the DMARC Email Security Protocol - by Submitted on Jul 01, 2018 from Michael PetersU.S. federal government agencies are required to use the email security protocol DMARC to prevent email spoofing, but the overwhelming majority of federal contractors either don’t have it installed or don’t have it set up properly. NextGov reports: Among the top 98 government contractors by ...
Views: 1078 - How can Premium Consulting Take Your Management to Another Level? - by Submitted on Jun 27, 2018 from David ColleenwoodPremium consultancy industry is rapidly expanding. The growing demand for this service is the main reason behind this expansion and popularity. This kind of services drives the company behavior and encourages the agendas and funds. However, to reap optimal benefits, both the clients and the ...
Views: 720 - Asbestos Risk Assessment and Control Measures - by Submitted on Jun 26, 2018 from olive learningAsbestos is a mineral whose main characteristics are thermal isolation and highly resistant to fire. Asbestos toxicity is related to its fibrous structure, Which is globally tested and recognised as a first level Human carcinogen, found naturally in rocks and widely used by modern industry. ...
Views: 887(1 vote) - 4 Advantages of Hiring a Reliable Security Patrol Service - by Submitted on Jun 22, 2018 from Ron SpencerNo matter where a person is, the first and foremost thing that comes to mind is the security. Many house owners and the business corporate hire security guards to take care of their property. The professionals in this have a lot of responsibility and need to be attentive and strict on all ...
Views: 1722 - Tesla Breach Demonstrates the Importance of Industrial Cyber Security - by Submitted on Jun 20, 2018 from Michael PetersMassive data breaches are what grab headlines, but industrial cyber security attacks can be devastating in the real world. Tesla has just learned this lesson the hard way. CEO Elon Musk has accused a malicious company insider of altering product code, stealing data and exporting it to third ...
Views: 814 - Cyber Security Best Practices for a Sustainable Digital Transformation - by Submitted on Jun 13, 2018 from Michael PetersThe rise of ecommerce, particularly mobile ecommerce, has fundamentally altered both consumer and business buying habits. Organizations are embracing digital transformation in an effort to appease modern buyers and enhance the customer experience while cutting costs and improving efficiency. The ...
Views: 896 - ICS Security: 3 Reasons Why Air Gapping No Longer Works - by Submitted on Jun 06, 2018 from Michael PetersThere has never been a power outage in the U.S. due to a cyber attack, but it happened in Ukraine over the Christmas holidays in 2015, and there have been attempts to breach U.S. power companies and hack the power grid. In March, the U.S. Department of Homeland Security issued an alert ...
Views: 874 - Avoiding Disaster: Make Website and Business Asset Backups Mandatory - by Submitted on May 31, 2018 from Susan FriesenDo you have a backup of all your website and business data? A sudden attack on your web hosting or an employee error can cause havoc without warning. The same goes for any information about your business stored on your computer. If your computer suddenly got infected with a virus and you ...
Views: 1190 - How to Protect Your Enterprise & Yourself from Phishing Attacks - by Submitted on May 30, 2018 from Michael PetersPhishing attacks are big business. The FBI estimates that business email compromise, a highly targeted form of phishing, costs U.S. businesses half a billion dollars a year, and the Verizon 2018 Data Breach Investigations Report found that 90% of cyber attacks began with a phishing ...
Views: 874 - What Does MEP Mean in Construction? - by Submitted on May 30, 2018 from Narendra SharmaIf you are planning to build a new property, no matter what the purpose is, you will find “ME” a lot in the discussion and other medium. So, what is actually the MEP mean in construction? MEP stands for Mechanical, Electrical, and Plumbing. These are the integral parts of every building ...
Views: 1808 - 6 Reasons to Stop Using Spreadsheets for GRC - by Submitted on May 24, 2018 from Michael PetersDespite the availability of modern GRC software, many organizations still use spreadsheets to conduct IT compliance audits and other GRC activities. While spreadsheets are highly useful for many business functions, especially accounting, they are not GRC tools. Depending on spreadsheets to ...
Views: 1016 - 6 Tips for Writing a GDPR-Compliant Privacy Policy - by Submitted on May 17, 2018 from Michael PetersWe’re down to the wire now; the GDPR compliance deadline is next Friday, May 25. As organizations scramble to get ready for the most far-reaching data privacy law ever put on the books, consumers’ email inboxes are being inundated with notices of privacy policy updates. In addition to ...
Views: 963 - 5 Things to Know About Email Marketing and the GDPR - by Submitted on May 10, 2018 from Michael PetersEmail marketing is big business. MarTech Advisor reports that it is the best-performing channel for a company’s ROI, and 61% of consumers prefer to receive offers via email, as opposed to only 5% who prefer social media offers. However, many organizations are concerned about how the GDPR, the ...
Views: 1003 - 10 Steps to Preparing Your Business for the GDPR (General Data Protection Regulation) - by Submitted on May 10, 2018 from Susan FriesenEven if Your Business is Not Located in the EU The General Data Protection Regulation is a new set of rules amended to the current Data Projection Act that will soon be mandated for those businesses dealing with European consumers. On May 25, 2018 the regulation insists on safeguarding ...
Views: 1211(1 vote) - 12 Ways to Keep Your Data & Identity Safe Online - by Submitted on May 03, 2018 from Susan FriesenHow to Boost Your Digital Security for Peace of Mind From the recent Facebook data breach to compromised customer data at huge companies like FedEx and Delta, personal security is more relevant than ever. In fact, it might even seem that our data is under attack! While you can’t ...
Views: 1229(2 votes) - Many U.S. Companies Unaware that the GDPR Applies to Them - by Submitted on May 02, 2018 from Michael PetersWith just over three weeks to go until the May 25, 2018, deadline, many U.S. companies are woefully unprepared for the EU’s new General Data Protection Regulation, or GDPR. In fact, quite a few of them don’t yet realize they have to achieve GDPR compliance. A new survey by CompTIA found that “A ...
Views: 940 - GDPR Compliance Issues Could Cause WHOIS Directory to Go Dark - by Submitted on Apr 25, 2018 from Michael PetersThe deadline for compliance with the EU’s General Data Protection Regulation (GDPR) is fast approaching, and an astounding number of organizations are woefully unprepared to meet it. A new survey of IT decision-makers by Crowd Research Partners found that a whopping 60% of organizations will ...
Views: 874 - 4 Reasons Why Home Security Audits Are Important and a Necessity - by Submitted on Apr 24, 2018 from Ron SpencerWhen it comes to keeping the house secured from miscreants, it is a step that every homeowner takes where right from installing security cameras to putting up security alarms, steps are taken to ensure maximum protection. When it comes to moving to a new house or probably living in a particular ...
Views: 1653 - 2018 Verizon Data Breach Report: Ransomware Most Common Malware - by Submitted on Apr 19, 2018 from Michael PetersWhile cryptominers are on the rise, ransomware was the most prevalent form of malware in 2017, according to the 2018 Verizon Data Breach Report, released last week. Ransomware made its first appearance in Verizon’s 2013 report, and this is the second year in a row in which ransomware incidents ...
Views: 1152 - Best Practices to Prevent Supply Chain Cyber Attacks - by Submitted on Apr 12, 2018 from Michael PetersDue to globalization and outsourcing, enterprise supply chains are more intricate than ever. Most products are no longer manufactured by a single entity. Materials, components, and even final products pass through multiple hands before ending up in the hands of end users. Additionally, most ...
Views: 1331 - Cyber Security Lesson Brief from the Under Armour Breach - by Submitted on Apr 04, 2018 from Michael PetersLast week, athletic apparel manufacturer Under Armour announced that its popular MyFitnessPal weight loss and fitness tracking app had been hacked, compromising 150 million accounts. The Under Armour breach is the largest data breach so far this year and ranks among the top five to date. It also ...
Views: 1130 - The 12 Biggest Cloud Security Threats Facing Your Organization - by Submitted on Mar 28, 2018 from Michael PetersCloud computing has opened up a world of opportunities for businesses, but it has also resulted in new cyber security threats. Some of these mirror the threats organizations have been combating on premises for years, while others are unique to the cloud. What are the top cloud security threats ...
Views: 972 - 10 Tips to Improve Employee Cyber Security Compliance - by Submitted on Mar 23, 2018 from Michael PetersYour organization’s people are your first line of defense against cyber criminals. Unfortunately, they’re also your weakest link. Insiders pose the biggest threat to cyber security in the healthcare industry, and only 13% of public sector employees “take personal responsibility for cyber ...
Views: 1124 - 5 Things You Should Be Doing to Protect Your Business Online - by Submitted on Mar 21, 2018 from Jessica McMohenCybersecurity is a hot topic among major organizations, but do you give it much thought for your small business? You might not realize it but small businesses are a primary target for cyber attacks. According to the Verizon Data Breach Investigation Report published in the final quarter ...
Views: 1709 - Employees Are Biggest Threat to Healthcare Data Security - by Submitted on Mar 15, 2018 from Michael PetersHealthcare data security is under attack from the inside. While insider threats — due to employee error, carelessness, or malicious intent — are a problem in every industry, they are a particular pox on healthcare data security. Two recent reports illustrate the gravity of the ...
Views: 1059 - Tax Phishing Scams Are Back: Here Are 3 to Watch Out For - by Submitted on Mar 07, 2018 from Michael PetersTax season is stressful enough without having to worry about becoming the victim of a cyber crime. Here are three different tax phishing scams targeting employers, individuals, and even tax preparers that are currently making the rounds. Employers: W-2 Phishing Emails The W-2 phishing ...
Views: 994 - Top 3 Mistakes to Avoid While Selecting QA Company - by Submitted on Mar 07, 2018 from Darsh TQuality Assurance starts from the very first stage of software development and experienced QA has to be actively involved in each stage of the Software Development Life Cycle. Taking QA services from a third party service provider would be a great decision in many senses. However, you have to ...
Views: 886 - #MeToo Prompts Employers to Review their Anti-Harassment Policies - by Submitted on Feb 28, 2018 from Michael PetersThe #MeToo movement, which was birthed in the wake of sexual abuse allegations against Hollywood mogul Harvey Weinstein, has shined a spotlight on the epidemic of sexual harassment and discrimination in the U.S. According to a nationwide survey by Stop Street Harassment, a staggering 81% of ...
Views: 932