Tag Archives: risk analysis

Updates to OpenFAIR

Posted on August 3, 2020 by Carmelo

There’s an update to OpenFAIR and here’s the video on it. The update includes adding the NIST CSF 5 Functions around the 15 minute mark.

Posted in Security Blog | Tagged , , , , , , , , , | Comments Off on Updates to OpenFAIR

An Infographic to Implement an IT Governance, Risk, and Compliance Framework and a Risk Management Framework

Posted on July 3, 2018 by Carmelo

I built an Infographic to Implement an IT Governance, Risk, and Compliance Framework and a Risk Management Framework. I do hope everyone finds it useful. A good solid framework is a critical foundation to lay for managing risk in businesses … Continue reading

Posted in Security Blog | Tagged , , , , , , , , , , , , | Comments Off on An Infographic to Implement an IT Governance, Risk, and Compliance Framework and a Risk Management Framework

Just Accept the Risk

Posted on July 13, 2017 by Carmelo

Lately, there is a lot of risk management in my life.

Posted in Security Blog | Tagged , , , , | Comments Off on Just Accept the Risk

When Less Is More

Posted on March 23, 2017 by Carmelo

I had a slightly engaging discussion regarding the scoring of impact, with human life being one of the factors. (Think a negative event with the factors being reputation, financial, property, human life as part of the equation) What value do … Continue reading

Posted in Security Blog | Tagged , , | Comments Off on When Less Is More

National Crime Agency in the UK

Posted on July 16, 2016 by Carmelo

The National Crime Agency in the UK has published the National Crime Assessment, it is a fantastic read and can be found here. An interesting fact is that plain crime is at 47% total crimes committed, while computer misuse and … Continue reading

Posted in Security Blog | Tagged , , , , , | Comments Off on National Crime Agency in the UK

Gartner Security and Risk Management Summit: Day 2

Posted on June 14, 2016 by Carmelo

Keynote Speaker Colin Powell Biography link here

Posted in Security Blog | Tagged , , , , , , , | Comments Off on Gartner Security and Risk Management Summit: Day 2

Gartner Security and Risk Management Summit: Day 1

Posted on June 13, 2016 by Carmelo

We arrived into town (Alexandria VA) yesterday and I have been crazy busy since. I hadn’t realized how many friends and how much family I have on this side of the world! So with the already busy conference schedule, I … Continue reading

Posted in Security Blog | Tagged , , , , , , , | Comments Off on Gartner Security and Risk Management Summit: Day 1

RSA Conference 2016

Posted on March 2, 2016 by Carmelo

This week, I’m at the Moscone center in San Francisco, learning from those who have learned the lessons through trials and tribulations and have experienced them in such a way that they have put them into practice, have gained passion … Continue reading

Posted in Security Blog | Tagged , , , , , | Comments Off on RSA Conference 2016

Let the Data Tell Your Story

Posted on August 30, 2015 by Carmelo

Big data doesn’t necessarily mean good data. This presentation, created Aug 25 2015, makes us realize that bad guys have the good data and it enables them to keep attacking successfully. (It’s a 47 minutes presentation)

Posted in Security Blog | Tagged , , , , , , , , | Comments Off on Let the Data Tell Your Story

AT&T Data Breach = $25 Million Dollar Fine

Posted on April 10, 2015 by Carmelo

AT&T data breaches exposed about 280,000 U.S. customers’ names and full or partial Social Security numbers. The breaches occurred at call centers used by AT&T in Mexico, Colombia, and the Philippines when employees accessed sensitive customer data without adequate authorization. … Continue reading

Posted in Security Blog | Tagged , , , , , , , , , , , | Comments Off on AT&T Data Breach = $25 Million Dollar Fine