Posts
-
Sep 23rd, 2021
CRQ Isn’t Done Well: A Review of NIST’s Report on Integrating Cybersecurity and ERM
It’s been almost a year since the National Institute of Standards and Technology (NIST) issued its internal report on “Integrating Cybersecurity and Enterprise Risk Management (ERM).” I
-
Jun 4th, 2021
How Risk Quantification Gives Your Security Team A Leg Up in Patch Management
Two of the major challenges facing most Security Operations Centers (SOCs) are patch management and alert prioritization. However, many organizations struggle with the complexity of keeping up-to-date
-
Jun 1st, 2021
3 Reasons The Insurance Industry Desperately Needs Automated Cyber Risk Quantification
The cyber insurance industry is in turmoil as more and more businesses seek insurance protection against the onslaught of advanced threats, particularly ransomware, while both carriers and those seeki
-
May 24th, 2021
Inside The Business Benefits of Automated Cyber Risk Quantification
Many businesses may have heard of cyber risk quantification (CRQ), but most businesses still don’t know what their exposure is to any given cyber event. And how could they when their security teams
-
May 7th, 2021
Cyber Execs Warn CISOs Could Disappear If They Don’t Get Better at Communicating Risk
Three leading global chief information security officers (CISOs) with a wide range of experience across different industries warned that if CISOs do not improve their ability to communicate cyber risk
-
Apr 13th, 2021
Inside The Lean Six Sigma of Cybersecurity
Some of the greatest companies in the world have embraced the Lean Six Sigma process improvement methodology to eliminate errors, remove waste and inefficiency, and improve operational performance. At
-
Mar 24th, 2021
The Cyber Risk Quantification Journey: It’s Not As Hard As Some Think
A survey of 300 cybersecurity professionals who attended a live webinar on cyber risk quantification (CRQ) sponsored by Spire Solutions and ThreatConnect shows that there is truth behind the anecdotal
-
Mar 8th, 2021
Make More Confident & Efficient CVE Patching Decisions Based on Potential Impact
When Risk Quantifier (RQ) became a part of the ThreatConnect family last year, it was clear we had big plans when it came to changing the way security works. We spoke about the deep rooted belief we h
-
Feb 11th, 2021
Improving Upon The FAIR Standard’s Time-to-Value
The Factor Analysis of Information Risk (FAIR) is the de facto standard quantitative model for information security and operational risk. And while FAIR continues to have a positive impact on how secu
-
Jan 14th, 2021
Cyber Risk Quantification: The Pressure Is On (New Survey)
New survey suggests companies aren’t prepared or equipped to deliver cyber risk quantification data Cyber risk has long been acknowledged as one of the top risks facing companies of all sizes. And w
-
Jan 6th, 2021
Risk Quantification, Threat Intelligence & Automation: Stronger Together
ThreatConnect's marries cyber risk quantification (CRQ), threat intelligence platform (TIP), and SOAR capabilities.
-
Sep 10th, 2020
ThreatConnect: The Brain of Security
Why Acquiring Nehemiah Security was the Right Decision Since its inception, ThreatConnect has used the analogy that it wants to be the “brain of security,” to act as its central nervous system pro