This monthly IT security newsletter comes from Conformance1, your IT-security systems services provider. We offer a number of free compliance and training tools including an interactive ISO 27001 certification checklist, pricing estimators, grouped discounted product/service purchasing, and more.
In this issue
|
|
|
Career The salary of a Chief Security Officer The 22nd annual Security and Compliance Compensation report, produced by The Foushée Group, found that, from 2018 to 2023, the average base pay for a CSO increased by 1.3% to $345,266 annually. When including bonuses, the total compensation rose by 5.3% to $471,638 annually….Read more |
|
|
|
|
|
|
|
|
Management Cybersecurity Risk Management: Frameworks, Plans, & Best Practices This article by Mark Knowles discusses the complexities and challenges of managing cybersecurity risks in today’s digital environment. The article acknowledges the increasing difficulty of maintaining secure and compliant architectures and systems while offering recommendations on the best frameworks, plans, and practices….Read more |
|
|
|
Risk Management Security Assessment for an IoT-Based System This article from QASource highlights the critical importance of security in the rapidly growing Internet of Things (IoT) market. With projections indicating significant growth in the IoT sector, the need for comprehensive security measures to protect data and services managed by IoT devices has become paramount….Read more |
|
|
|
|
|
|
Software Getting Started With Passkeys, One Service at a Time Major technology companies like Apple, Google, Microsoft, and third-party password providers such as 1Password and Bitwarden have embraced passkeys. This widespread adoption is in response to the recognition that passwords pose a significant security risk online….Read more |
|
|
Management Improving Enterprise Patching for General IT Systems The report highlights the long-standing issue of cybersecurity attacks due to unpatched software. Despite widespread awareness of this vulnerability, many organizations struggle to update their software. A successful patching strategy must balance security with business objectives and mission impact….Read more |
|
|
|
|
Risk Management Key reasons third-party risk management programs fail According to a Gartner report, over 80% of organizations have encountered business disruptions due to third-party issues in the past two years, highlighting the importance yet difficulty of managing such risks. John P. Mello Jr.’s article discusses organizations’ prevalent challenges in managing third-party cybersecurity risks….Read more |
|
|
|