Conversations in Risk-Based Security

Hosted by Security Current, The Security Shark Tank® during RSA is the premier pitch event of its kind.  It draws over 20 CISOs from across the country in an informative and fun forum to hear from a select group of invited vendors in a rapid-fire, back and forth pitch.

Lynx CEO Gina Mahin was in the shark infested waters yesterday.  What do you have to do to swim with the sharks without being eaten alive?  Above all else, INNOVATION is Critical.  Not only is it a critical differentiator in the tank, but it's really the most important driver for all of us in cybersecurity.  We build it.  They hack it.  We create walls and infrastructure.  They throw AI at 'em.  It's the old, "If you're not innovating, you're dying!"  And while that might be an extreme statement for some industries, well...in cyber, it's (sadly) pretty darn close to reality.

Consumer data privacy protection is a global concern – driving new regulations around the world.  Many U.S. companies are multi-national, and have already begun work to increase security and transparency in meeting the requirements of GDPR.  In general, if a company is in compliance with GDPR (or are on their way in meeting those requirements), then that company is fairly far along in meeting the requirements of CCPA.  

Culture is a funny thing.  We all know we need it…we need more of it…we need it at the center of decision-making…we discuss it in meetings…we’ve even created executive positions for it…BUT can we define it?  Culture is fairly intangible – sorta the, “I know it when I see it” thing.

And we all know – that’s not enough.

In this highly connected world, cybersecurity threats are inevitable. With more devices connecting to the internet, and the daily conducts of our lives slowly shifting into the digital space, people with ill intentions can find new ways to exploit vulnerabilities and carry out cyber-attacks. Fortunately, there is something we can do to protect ourselves, and that is understanding what the future of cybersecurity holds.

Lynx proudly announces our selection as a National Best and Brightest Companies to Work For winner for the third consecutive year. This award recognizes companies that excel at employee relations, use innovation to motivate employees, implement creative compensation programs and more. Winners will be recognized by the National Association for Business Resources (NABR) at the National Best and Brightest Summit – Illuminate 2021 symposium and awards gala on March 24-26 2021, Dallas, Texas.

Originally written and published by Kevin Howarth of NTSC (NTSC.org)

If a theme emerged in the National Technology Security Coalition’s (NTSC) recent conversation with Aric K. Perminter, Chairman and Founder of Lynx Technology Partners, it’s that CISOs are seeking services and solutions that enable simplification, automation, and integration of strategic, operational, and IT risk management processes and data. As a security visionary and leader, Perminter guided Lynx Technology Partners through its founding in 2009 into a multimillion-dollar information security and risk management company. As chairman of the Board of Directors, Perminter is responsible for formulating and executing long-term strategies and interacting with clients, employees, and other stakeholders. During his 25-year career, Perminter has held a wide variety of leadership positions across key parts of information technology businesses—including serving as Lynx’s CEO through August 2015.

October does not only mean we get to enjoy pumpkin spice lattes and hot apple cider, but it is also National Cyber Security Awareness Month (NCSAM).  According to National Initiative for Cybersecurity Careers & Studies (NICCS), this years’ theme is “Own it, Secure it, Protect it”.  The Cybersecurity and Infrastructure Security Agency (CISA) and the National Cyber Security Alliance (NCSA) co-lead the NCSAM initiative each year (NCSAM Toolkit).

A risk-based determination of whether – and how – to conduct remote assessments of vendors

Expert Contributors:  Angela Dogan, Lynx Technology Partners and Andrew Hout, Shared Assessments

Given how much time and money virtual assessment of vendors can save companies and their third party risk management programs, it may be surprising to learn that cost and convenience should have little, if anything to do, with determining whether a risk assessment should be performed in person or remotely.

Many of you may have read the recent article by Mary K. Pratt, contributing writer, TechTarget titled, Top 10 CISO Concerns for 2019 Span a Wide Range of Issues.  If you haven’t, check out the link later in this post, it’s worth the read.  Pratt outlined, through a series of interviews with top CISOs, the top ten concerns dominating the CISO’s agenda this year.