Conversations in Risk-Based Security

NICE Framework Success Story - Abstract

Posted by Lynx Technology Partners on Feb 16, 2021 11:07:43 AM

Lynx is passionate about helping clients understand and reduce risks they may face, including potential hazards associated with competency gaps. Lynx trusts that a standardized approach improves their clients’ hiring, training, and succession processes as well as enables employees to better understand what capabilities are needed for desired positions and upskill accordingly. Lynx therefore utilizes the NICE Framework, as it is both far reaching and lends itself to competency assessments and careerpathing activities.

Read More

Topics: Cybersecurity Talent Gap, Risk Management, Integrated Risk Management, competency

A Ceasefire in the War Between IT and Security Operations

Posted by Lynx Technology Partners on Dec 7, 2020 3:48:45 PM

Friction has existed between IT departments and Security Operations for years. If turf wars and business silos are not the cause, the lack of collaboration and communication will often lead to disharmony between the two. The left hand should know what the right hand is doing and vice versa, but that can only happen if the problems between them are acknowledged and addressed. Check out our recent conversation where Lynx CEO Gina Mahin and Steven Bay, Director of Security Operations and Threat Intelligence at Security On-Demand, discuss how Integrated Risk Management can bring a ceasefire to this friction and turn these teams into partners working toward the common goal of protecting the business.

Read More

Topics: Risk Management, Security, cybersecurity, Shadow IT, Risk Integration, Integrated Risk Management

GRC Programs Largely Ignore Self-Destructing Risks

Posted by Lynx Technology Partners on Feb 4, 2019 9:50:20 AM

A close look at the reasons companies fail reveals that there are substantial risks that don't typically fall under the purview of most GRC programs. The Forrester Report, Extend Compliance And Risk Management To What Really Matters For Your Business, explores how companies can improve business performance by expanding the fundamentals of their GRC program to the aspects of their company that drive success with customer interactions, which will in turn drive growth and revenue for the company.

Read More

Topics: Risk Management, GRC, governance risk

Healthcare Industry Case Study: Cybersecurity and Risk Management

Posted by Doug Yarabinetz on Aug 1, 2017 2:42:41 PM

Many companies in the healthcare market struggle with compliance projects and finding the time and knowledgeable resources, as-well-as the budget, to adhere to government regulations in a timely manner.

Read More

Topics: Risk Management, cybersecurity, compliance mandates, FISMA Compliance

Five Ways to Reduce Your Audit Tax

Posted by Doug Yarabinetz on Apr 17, 2017 4:43:05 PM

Taxes are certainly not fun, but there is something worse: an audit. Combine the two in a risk and compliance scenario and you have the onerous “audit tax,” a figurative term used to describe the expenses a company incurs when deploying resources and manpower to satisfy the burgeoning set of internal and external compliance and audit mandates. The good news is that there are ways to reduce the audit tax burden.

Read More

Topics: Risk Management, compliance, compliance mandates

WHERE IS MY IT RISK?

Posted by Doug Yarabinetz on Mar 21, 2017 12:22:09 PM

Managing IT risk is part of running any business these days. Regardless of what business you’re in, understanding IT risk can help you increase network security, reduce management costs and achieve greater compliance. Corporate leaders who fail to identify, assess and mitigate IT risk are setting themselves up for serious security breaches and financial losses down the road.

Read More

Topics: Risk Management, Security, cybersecurity

Managed Security: Boost Your Security Posture Through Outsourcing

Posted by Doug Yarabinetz on Mar 7, 2017 7:42:50 PM

Join us for the webinar "Managed Security - How to Boost Your Security Posture Through Outsourcing Security to Experts featuring research from the 2017 Cybersecurity Trends Spotlight Report published by the Information Security Community on LinkedIn in partnership with Crowd Research.

Read More

Topics: Risk Management, cybersecurity, GRC

Vendor Risk Management: An Educational Webinar Series

Posted by Doug Yarabinetz on Jan 5, 2017 4:49:15 PM

Organizations increasingly rely on vendors and third-party relationships for strategic business advantage.  Ensuring that these partnerships don’t create an unacceptable risk requires a complete vendor risk management approach.  Join Michael Rasmussen, The GRC Pundit at GRC 20/20, as he presents this 3 part educational webinar series on managing vendor risk and compliance.

Read More

Topics: Risk Management, Security, Vendor Risk Management

Lynx Risk Manager Integrates with Lieberman Software’s ERPM

Posted by Doug Yarabinetz on Dec 22, 2016 9:51:15 AM

Lynx Technology Partners and Lieberman Software recently announced an integration module for Lynx Risk Manager (LRM) which imports privileged account information from Lieberman Software’s Enterprise Random Password Manager (ERPM) and immediately updates security control scores in LRM.  These scores form the basis for continuous measurement of password-related security risks, as well as compliance to a wide range of regulatory frameworks.

Read More

Topics: Risk Management, Security, GRC

Bobby Dominguez to Examine IT Risk Programs and the NIST CSF

Posted by Doug Yarabinetz on Oct 13, 2016 1:03:19 PM

Bobby Dominguez will discuss the operationalization of the NIST Cyber Security Framework to create an information technology risk program at ISACA’s CSX 2016 North America conference in Las Vegas, Nevada, USA, 17-19 October 2016. CSX 2016 North America will be focused on practical cybersecurity solutions and guidance, tailored to every level of a security professional’s career.

Read More

Topics: Risk Management, Security, NIST Cyber Security Framework, cybersecurity