In 1891, Professor Fredrich Wieser wrote in his Theory of Value, “The idea of the importance of property only originates in scarcity. ” Applying this principle to computer and information security ...

The state auditor’s office says in a new report that it’s keeping the California Department of Technology (CDT) on its list of “high-risk” agencies due to concerns about state departments’ information ...

NEW YORK – May 6, 2020 –– The Information Security Forum (ISF) has published a major update to its Standard of Good Practice (The Standard) for IT security professionals, the industry’s most ...

CSA's AICM v1.1 expands the AI security framework into a bundled control, assessment, audit and standards-mapping package.

A lot of the work I do, especially for clients regulated by the Department of Labor (DOL), involves third-party risk reviews. In 2021, the DOL released a list of cybersecurity best practices. Now, in ...

Third-party auditors found deficiencies in the Labor Department’s information security and continuous monitoring controls. KPMG, which performed an audit released Tuesday by the Labor Department ...

Steve Durbin is Chief Executive of Information Security Forum. He is a frequent speaker on the Board’s role in cybersecurity and technology. Information security governance is the guiding hand that ...

As cyber threats grow more persistent and sophisticated, the responsibility placed on senior information security leaders has expanded well beyond tools and controls. Today's challenge lies in ...

For tech industry veteran Moudy Elbayadi, there’s no question that the arrival of productivity-boosting AI and agentic technologies is a net positive. “I’m the biggest fan of AI,” said Elbayadi, whose ...

The Department of Veterans Affairs “continues to face significant challenges” in complying with the Federal Information Security Modernization Act—or FISMA—according to an audit released by the VA ...

When reviewing job growth and salary information, it’s important to remember that actual numbers can vary due to many different factors—like years of experience in the role, industry of employment, ...

Regulatory compliance has emerged as the biggest driver of information security initiatives, trumping concerns such as worms and viruses for the first time, according to the results of a survey ...