Cyber Defense eMagazine March Edition for 2022

More documents

Recommendations

Info

Implementing legislation in hopes to minimize damage The Biden administration recently issued Binding Operational Directive 22-01, requiring most federal agencies to patch hundreds of cybersecurity vulnerabilities considered major risks for damaging intrusions including data breaches or compromise of government computer systems. Specifically, “Organizations of all sizes, including the federal government, must protect against malicious cyber actors who seek to infiltrate our systems, compromise our data, and endanger American lives,” DHS Secretary Alejandro Mayorkas said in a statement alongside the directive. The new order “requires federal civilian departments and agencies to protect against critical known vulnerabilities, which will reduce the risk of malicious intrusion and increase our collective cybersecurity.” What this boils down to is federal institutions, banks, credit unions and fintechs nationwide must find ways to comply with these new cybersecurity standards and mandates. But how? What if you are already behind the 8 ball? What can be done not only to improve but catch up? Meeting challenge with opportunity While the new government mandate might seem an insurmountable challenge to all but the big corporations, it isn’t. Rather, it’s an opportunity to shore up security and thwart cyberattacks and data breaches. Financial institutions everywhere already abide by considerable cybersecurity, privacy and information security requirements. Further, many have adopted the National Institute of Standards and Technology’s (NIST) Cybersecurity Framework as their main cyber risk management tool. But financial institutions that haven’t met those standards could take the order as an impetus to do so and improve their cybersecurity posture and make improvements in the maturity of their risk management program. Perhaps, too, federal institutions will view the order as a reason to enact zero-trust policies, procedures, and relevant technologies. The order mandates executive branch agencies to create zero-trust environments. Putting cybersecurity best practices in place Whether a bank, credit union or fintech adopts a zero-trust model or not, it’s wise to consider these best practices to increase cybersecurity: • Proactively monitor total cyber exposure. Consider partnering with a built-for-banking company that provides 24/7, real-time cybersecurity and cyber compliance and sends alerts of any anomalies. Cyber Defense eMagazine – March 2022 Edition 100 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
• Stay ahead of fraud. Fraud costs U.S. financial institutions $35 billion a year. Choose a cybersecurity provider that can integrate Information Security and the Bank Secrecy Act (BSA) – also known as the Anti-Money Laundering (AML) law and Fraud departments in a unified platform to prevent losses and protect account holders from the growing threat of fraud. • Extend internal cyber teams and expertise with highly skilled and trained security experts. Not every financial institution has the resources to adequately monitor and protect their networks, particularly outside of “banking hours.” As such, many partner with a certified cybersecurity provider that monitors and investigates alerts and provides around-the-clock protection that aligns with a company’s specific escalation process. By being that “extra set of eyes,” financial institutions can focus on their core business. • Keep up to date with compliance. Choosing a cybersecurity provider that also provides cyber compliance makes it simple and seamless for financial institutions to stay up to date, even though regulatory requirements seem to be always changing. The right provider allows financial institutions to leverage an always-on policy and control engine to make sure when compliance requirements change, organizations can comply. • Provide ongoing cybersecurity education. An organization is only as secure as its weakest link. Therefore, employee education should be a top priority. Employees should understand how to do things like choose passwords wisely and know how to detect phishing attacks – and what to do when a questionable email comes their way. Leveraging a trusted cybersecurity partner The current administration has prioritized cybersecurity as a national security threat. The mandate aside, cybersecurity should be a priority for everyone and every business. Financial organizations failing to address cybersecurity could face major damage that includes monetary loss, legal consequences, and reputational damage – leading to a loss of customers. Keep in mind, financial institutions face more than 70 million cyber events a day. And most small- to midsized financial institutions simply don’t have the staff to manage the volume of incidents that can be generated by these events, particularly those occurring after hours. An experienced cybersecurity provider can help ensure financial institutions are threat-ready and secure. The right one can consolidate data from all sources and without volume limits – providing real-time visibility into the entire network. It can eliminate false positives and prioritize events so you can address the threats that matter the most. Because here’s the thing: There are two types of organizations – those that have suffered a data breach and those that will. And like the price of gold that keeps rising, so, too will the cost of falling prey to a cyber breach. Cyber Defense eMagazine – March 2022 Edition 101 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2:
Why Changing Classified Document St
Page 3 and 4:
Tips And Trends for OT Cybersecurit
Page 5 and 6:
@MILIEFSKY From the Publisher… De
Page 7 and 8:
Welcome to CDM’s March 2022 Issue
Page 9 and 10:
Cyber Defense eMagazine - March 202
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
level of concern while working remo
Page 21 and 22:
The Fragility of a GPS Centric Worl
Page 23 and 24:
Formerly known as LOng-RAnge Naviga
Page 25 and 26:
The Role of The CFO In Enterprise C
Page 27 and 28:
Help them mitigate potential risks
Page 29 and 30:
The Safest Ways for Bitcoin Trading
Page 31 and 32:
and clear instructions through a "N
Page 33 and 34:
According to Cybereason’s “Rans
Page 35 and 36:
If you implement these three tips,
Page 37 and 38:
• Nearly half of zero-day malware
Page 39 and 40:
Don’t Become a Horrible Headline:
Page 41 and 42:
pandemic era. By empowering profess
Page 43 and 44:
Have We Learned from Our Past Mista
Page 45 and 46:
internet, etc. How much training is
Page 47 and 48:
How to strengthen cyber resilience
Page 49 and 50: A BCDR solution with automated disa
Page 51 and 52: 1. Cybersecurity Incidents Will Bec
Page 53 and 54: Is XDR The Right Solution for Today
Page 55 and 56: How Open XDR Helps Open XDR address
Page 57 and 58: A very small set of next-gen SIEM s
Page 59 and 60: • What are my options for data la
Page 61 and 62: Additionally, we’ll witness the r
Page 63 and 64: Top 10 Reasons Cyber Defense Firms
Page 65 and 66: 4. Teamwork and individual responsi
Page 67 and 68: 5 Reasons Organizations Need Compre
Page 69 and 70: systems to manage identity and acce
Page 71 and 72: Directed Analytics - The Future of
Page 73 and 74: Directed analytics allow these insi
Page 75 and 76: InDesign and uploaded to indd.adobe
Page 77 and 78: Are You Prepared for the New Normal
Page 79 and 80: • Find Unseen Risk - The hardest
Page 81 and 82: intruders were able to gain control
Page 83 and 84: About the Authors Michael Cheng is
Page 85 and 86: Why am I rehashing this old trope?
Page 87 and 88: 1. Look for and minimize attack sur
Page 89 and 90: On The Frontline in The War Against
Page 91 and 92: How to Fix Mid-Market Security Usin
Page 93 and 94: the particular victims being target
Page 95 and 96: 5 Ways Cybersecurity Will Change In
Page 97 and 98: #3: Supply chains will be the big r
Page 99: Executive Order Instructs Certain O
Page 103 and 104: Too Hot to Handle:The case for Zero
Page 105 and 106: Critically, endpoint security only
Page 107 and 108: To prevent lateral movement attacks
Page 109 and 110: Redefining Resilience in The New Wo
Page 111 and 112: About the Author Andrew Lawton is C
Page 113 and 114: Cyber Defense eMagazine - March 202
Page 135 and 136: CyberDefense.TV now has 200 hotseat
Page 137 and 138: Books by our Publisher: https://www
show all

Cyber Defense eMagazine March Edition for 2022

Create successful ePaper yourself

Delete template?

Save as template?