<img height="1" width="1" style="display:none;" alt="" src="https://dc.ads.linkedin.com/collect/?pid=26304&amp;fmt=gif">

BITSIGHT SECURITY RATINGS BLOG

Read about the latest cybersecurity news and get advice on third-party vendor risk management, reporting cybersecurity to the Board, managing cyber risks, benchmarking security performance, and more.

Washington moves on Data Breach Notification Standards

At BitSight, we’ve taken interest in the need for transparency and the ripple effects of major data breaches following the recent data loss events hitting major US retailers. Many security experts, including our own CTO Stephen Boyer,...

READ MORE »

Security Ratings: An Objective Risk Metric for Cyber Insurers

Cyber insurance is one of the fastest growing segments in the insurance industry.  With the tremendous increase in data breaches companies are looking for insurance products to cover them in the event of a loss. As reported in a recent ...

READ MORE »

Third Party Risk Management Becomes a Topic of Interest at RSA

Before the legions of attendees descend on San Francisco for the RSA conference next week, I wanted to take a minute to share three sessions that may be of interest! If third party risk management is an area of concern for you, clear your...

READ MORE »

Is PCI-DSS effective for security risk management?

As we noted in an earlier post, businesses and organizations are tasked with meeting the new compliance standards of the Payment Card Industry (PCI) Standards version 3.0 in the coming months. While these standards are meant to serve as a...

READ MORE »

Email Security Best Practices: How To Avoid SPF Misconfiguration

The threat from malicious email represents one of the greatest risks to IT security. The Messaging Anti-Abuse Working Group (MAAWG) identifies 85% of incoming mail as abusive or malicious.  One of the best practices to curb this risk is...

READ MORE »

How Strong is the Cyber Health of the U.S. Economy?

With the headlines these days filled with news of data breaches - Target, Neiman Marcus, Michaels, to name a few - cyber security is now top of mind among Americans. We know that today every business faces cyber risk, but just how are U.S....

READ MORE »

Why Third Party Risk Questionnaires Lead To A False Sense of Security

As it appears now, the entire Target breach may be the result of a compromised heating, ventilation, and air conditioning subcontractor that had worked for Target and many other retailers.

According to KrebsonSecurity.com, “Sources close...

READ MORE »

Regulators Put More Emphasis on Third Party Risk Management

With so much of today's business processes dependent on a complicated network of suppliers, contractors, and service providers, the problem of determining liability for data privacy and protection is quickly coming to a head. When...

READ MORE »
Load More

Subscribe to get security news and updates in your inbox.