New Year, New Risks

Posted by - January 4, 2018
Risk Management is one of the primary duties of boards, executives, and security and compliance teams. But implementing the practices, processes, and policies that enable and ensure integrated risk management is another matter altogether.
digital security

How Safe Is Your Business?

Posted by - January 3, 2018
How much do you worry about being hacked? How much should you worry? In 2017, cyber-attacks doubled from 2016 levels—and the insider phrase now is “It’s not if, but when, you’ll be attacked.” In fact, organizations are silently and invisibly breached every day, with the private and confidential information of consumers,…
cyber security

Cybersecurity Insurance: Breaking Down the Benefits

Posted by - January 2, 2018
With corporate data breaches on the rise, many businesses are rethinking their security strategies and plans for risk management. This piece discusses how these repercussions are causing business leaders to implement more holistic approaches to security that include preventative measures in addition to attack response plans that includes cybersecurity insurance.
business men discussing plan

Combating Your Company’s Insider Risk

Posted by - December 11, 2017
New data privacy and cybersecurity regulations including the NY DFS and the EU GDPR are causing companies to tighten up on their controls and map their security programs to match the requirements in order to avoid punitive corrective actions and steep fines for violations. To be effective, controls and security…
stack of paperwork on desk

Business Insurance: Complex Needs Require Better Options

Posted by - November 15, 2017
Business needs in the 21st century are far more complex than just one general policy will cover. We live in a “sue crazy” culture and the reality is there are just as many people looking to nail it to the corporation as there are happy consumers eager for your product.…
lock and laptop

Cyber Attack Response –Are You Prepared?

Posted by - November 14, 2017
Today's world is full of cyber risks and attacks and an attack on a financial services firm's systems is no longer a matter of "if", but "when." It is crucial now more than ever that firms have appropriate cyber policies in place especially in the current regulatory climate (NYDFS and…
business meeting with white board

10 Privacy Risks Every Company Should Prepare for in 2018

Posted by - November 10, 2017
Privacy officers spend so much of their time putting out fires and focusing on operational activities, that they don’t have time to see the trends (and accompanying risks) that are around the corner. Brian Lee and Stephanie Quaranta outline three major risk themes and ten emerging risks that privacy and…
laptops on desk

Compliance is a Tall Order for Small Financial Institutions

Posted by - November 9, 2017
Now that the first compliance deadline for the New York State Department of Financial Services' new cybersecurity regulation has gone into effect, what do banks and financial institutions of all sizes need to know? In addition to the straightforward requirements such as appointing a CISO and implementing a robust cyber…
magnifying glass on paper

Bringing NYDFS Compliance into Focus

Posted by - November 1, 2017
The New York Dept. of Financial Services (DFS) Cybersecurity Requirements force companies to look into ways to prepare and tactics to navigate new regulations. This risk-driven regulation which requires financial services institutions, regulated by (DFS) to establish and maintain a cybersecurity program that will protect both customers’ private data and…
the white house in washington d.c.

Cybersecurity Expertise: From the White House to the C-Suite

Posted by - October 27, 2017
FTI Journal Profiles Anthony Ferrante In this Q&A from the FTI Journal, Anthony Ferrante addresses the growing cybersecurity threats affecting U.S. businesses today. Anthony has personally witnessed the rapid evolution of cyber risk and discusses his intelligence-led, strategic approach for addressing the cybersecurity threat to corporate America. This piece was…
legal paperwork

Gaining Clarity on the Impact of the New PRC Cybersecurity Law

Posted by - October 25, 2017
Multinational companies with operations in China are preparing for the impact of China's new Cyber-security Law, in place now for four months. The Law applies to everyone who operates networks in the PRC, particularly multinational corporations. This could impact their overall IT system set-up and global outsourcing. Also left open…