BitSight Security Ratings Blog

The latest security ratings happenings and advice to keep
your company’s security posture strong.

Subscribe

This is the introductory post in a series exploring how security ratings can address key aspects of the National Institutes of Standards and Technology’s (NIST) Framework for Improving Critical Infrastructure Cybersecurity. The purpose of...

Read More

In recent years, the US government has become a leading advocate for continuous monitoring of security threats and vulnerabilities. But how effectively are departments and agencies in implementing these programs? And how do we measure...

Read More

In his 2015 State of the Union Address, President Barack Obama mentioned the importance of improving America's cybersecurity and what he believes it will take to make it happen. Below is a review of the most interesting statements and...

Read More

ISACA and the Institute of Internal Auditors (IIA) recently released areport emphasizing the board’s role in overseeing security risk management. In particular, the report mentioned management of third party risk, arguing that boards...

Read More

In 2011, the SEC issued a set of disclosure guidelines that told companies to disclose any potential cyber risk, possible effects of that risk, as well as the status of internal controls and risk management procedures in place. It was a...

Read More

Proposed cyber security legislation, notably bills relating to a federal data breach notification standard, has been slow moving in the halls of Congress. While measurable progress has been made on some legislative pushes -- recently...

Read More

An Update on Data Breach Notification

Ben Fagan | June 11, 2014

In a previous blog post, we outlined federal initiatives to pass a data breach notification law that would simplify the current myriad of state regulations. In the wake of the Target and Neiman Marcus data breaches, legislators and...

Read More

Merely doing things out of habit can be a risky thing to do. Such as when we just go through the motions when completing tasks – tasks we do so many times that muscle memory or our subconscious take over and put us in autopilot.

Doing...

Read More

Any time now, the Payment Card Industry Standards Council Third Party Security Assurance SIG is expected to release its guidance to merchants, service providers, and banks on third-party service provider assurance for Requirement 12.8 of...

Read More

EXPERIENCE THE BITSIGHT SECURITY RATINGS PLATFORM

We’d love to show you how you can simplify your risk management and take charge of your cyber security with these intuitive and powerful solutions.

Request Demo