The Broken Windows Theory of Cybersecurity

Cybersecurity programs rarely fail because of a single catastrophic decision. More often, they deteriorate through the accumulation of small compromises that individually appear insignificant but collectively reshape an organization’s security posture. A server misses a maintenance cycle because the business cannot tolerate downtime that evening. An exception to multifactor authentication Read more

By Eric Vanderburg, ago
Cybersecurity Risk Assessment

Cybersecurity Risk Assessments: Compliance vs. Technical Approach

Cybersecurity Risk Assessment Definition The term cybersecurity risk assessment describes the process of identifying and analyzing an organization’s overall risk. This is primarily accomplished by evaluating the organization’s security controls. Despite having a standard definition, however, the methodology and approach used by different service providers to evaluate these controls can Read more

By Eric Vanderburg, ago