Cyber Security Trend Week in Review: Security Congress Program, FedRAMP, Messaging Fraud
One of the great myths that the Cyber Security Trend Community debunks is the old saying that any news is good publicity. Clearly that can’t be said as the headlines of even the general press are now constantly dominated by the latest exploits of cyber criminals and state-sponsored hacking. An example of this is ongoing as this is written involving global coverage of probable North Korean involvement in the assaults on the SWIFT financial messaging system.
It is for this reason, in looking at what community members might find important to their organizations and careers, careful consideration is given to what is an eclectic mix of things, and this week is a terrific case in point.
A good place to start is with the release by our community sponsor (ISC)² of the sixth annual (ISC)² Security Congress. To be held September 12-15, 2016 at the Orange County Convention Center in Orlando, FL, the added attraction here is that it will be co-located with the ASIS International 62nd Annual Seminar and Exhibits, joining together 20,000 professionals from around the world for four days of education, and networking. The complete co-located program can be viewed in the show planner.
The single most important question when it comes to cyber security generally and in regards to specifics is universally applicable, “are you ready to find, remediate and prevent bad things from creating chaos?” This week saw answers from two sources and they are not encouraging.
- The Corporate Security in 2016 report based on a survey of top IT security pros in the UK found that not only had most organizations experienced a breach in the past year but 43 percent of those who experienced a breach went on to acknowledge that they have yet to improve their cyber security measures or change their policies.
- As featured on our sister Cloud Security Resource Community, a report done by KPMG in collaboration with (ISC)2 that is based on a survey of U.S. Federal agencies security professionals, despite last year’s massive Office of Personnel Management (OPM) data breach, have done little or nothing to increase their security posture because of a series of challenges.
And, speaking of the challenges in the U.S., a MeriTalk survey of federal IT decision makers found 79 percent frustrated with the Federal Risk and Authorization Management Program (FedRAMP).
It was not all bad and worse news this week in the community. In fact, if you’d like to impress the C-levels in your organization and hopefully get some extra funding for tools and training, you might which to show them the results of a recent survey by Infoblox that highlights the fact that that maintaining high levels of network security directly correlates with positive business outcomes.
And, in our final feature, be sure to look at The Mobile Ecosystem Forum (MEF) list of 11 distinct fraud types that impact messaging throughout the world to in the increasingly critical area of application-to-person (A2P) area. In fact, MEF has published what it is calling the messaging fraud framework in order to increase global awareness of the security risks involved.
The Memorial Day weekend is here in the U.S. and there is a bank holiday on Monday in the UK as well which means if you have nothing else planned, spending time on the Cyber Security Trend home page might be extremely useful. It has links to valuable resources to enable community members to stay on top of industry best practices and career advice.
Resources include white papers and profiles for of certifications that can help you keep up with the bad guys and advance your career. Two resources I recommend are, Official (ISC)² OnDemand Training and The Rise of the Cloud Security Professional Whitepaper . You also may wish to check out on our companion Cloud Security Resource site, the article about the new 2016 Cloud Security Spotlight Report, is one to download and add to your reference library.
Stay safe and enjoy the holidays if your country is in celebration mode this weekend.