Vulnerability And Patch Management February 18, 2017 Posted by: Edem Glymin Category: Risk Management No Comments The purpose of the Vulnerability Assessment policy is to establish controls and processes to help identify vulnerabilities within the firm’s technology infrastructure and information system components which could be exploited by attackers to gain unauthorized access, disrupt business operations

How to Apply Proper Risk Management Methodology on Information Security? February 18, 2017 Posted by: Edem Glymin Category: Risk Management No Comments How to apply proper risk management methodology on information security? Risk in its negative way might be defined as one undesired consequence that may or may not occur, as  a result of specific

Dear CISO and Board I think we should always consider our job as a part of the business. We finally started to consider cyber security and data protection as a serious issue but now the question is how we evaluate a risk in our analysis and business plans… Current documentations and reports, for risk analysis,

How Business Email Compromise Scams Can Hurt Your Business October 27, 2016 Posted by: GSS Ghana Category: Risk Management No Comments Today’s digital frontier can be very much likened to the old days of the Wild West. In this present era identified by the ubiquitous nature of the Internet, cybercriminals are calling the shots; constantly

The Business Risk of Cyber Threats to Ghana’s Banking & Financial Systems October 27, 2016 Posted by: GSS Ghana Category: Risk Management No Comments The Cyber Security Threat Landscape Unless you have been living under a rock for the last few years you most certainly have been struck in awe by the overwhelming impact of

Future SOC August 27, 2016 Posted by: GSS Ghana Category: Risk Management No Comments Are you waiting for something bad, or going somewhere good? A CEO asked me that once. It is one of those deep questions that more information security people need to ask themselves. In the world of cybersecurity, the conventional thinking for

The Pyramid of Pain July 22, 2016 Posted by: GSS Ghana Category: Risk Management No Comments To illustrate this concept, I have created what I like to call the Pyramid of Pain.  This simple diagram shows the relationship between the types of indicators you might use to detect an adversary's activities and how much pain it will