Phil Lee’s Post

Today’s post is a deep dive into the key requirements of #NIS2 and how they impact your business. 🔐 Cybersecurity 🔐 #NIS2 mandates a comprehensive risk management strategy that requires Essential and Important entities to assess cyber risks, run cybersecurity audits, have a business continuity plan to mitigate potential disruptions, verify the security of their supply chain, and much more. 📣 Incident reporting 📣 #NIS2 requires Essential and Important entities to be on the lookout for ‘significant incidents’ and ‘cyber threats’. The former must be reported to competent authorities within 24h by submitting an early warning, and from there there is a strict timeline to follow to keep the authorities apprised. 📬 Customer Notifications 📬 #NIS2 also requires to promptly inform their customers of both significant incidents and cyberthreats without undue delay. If you’re new to #NIS2, then be sure to also check out our earlier #NIS2 posts, which provide a brief overview of #NIS2 and its aims here: https://lnkd.in/eMkkWt8C and explain the types of entities it applies to here: https://lnkd.in/eJRyP6P5 Thanks to our #NIS2 expert Marco Piana for his insights in preparing this post!

#NIS2 can be another daunting 'task' for in-house lawyers. We at Digiphile keep unpacking it in a simple, strategic and actionable way. This time we look at its requirements and how 'legal' can deal with those.

Strong #thirdpartyriskmanagement programs are foundational for organizations to better anticipate IT threats that might impact their operations. #CyberResilience

Fortify Your Defenses with SISA's HITRUST Assessments As a leading breach forensics firm, SISA offers HITRUST assessments, combining investigative expertise with a commitment to fortifying organizational defenses. Our certified assessors leverage real-world cybersecurity insights to provide comprehensive guidance. We ensure compliance while empowering proactive vulnerability identification and mitigation. Partnering with SISA gives you access to our proven track record in uncovering and remediating breaches. This experience translates into robust risk management, safeguarding data and fostering trust. We're dedicated to helping organizations achieve cybersecurity excellence. Let's collaborate to fortify your defenses, elevate resilience, and secure your digital future. #SISAInfosec #ForensicsDrivenCybersecurity #HITRUSTAssessment Dharshan Shanthamurthy Mahendran Chandramohan, CISM Sachin Sawant - CISA, CISM, CPISI - A, PCI QSA Renju Varghese Venu Nambiar Derek Olson Brian Kregas Shuma Lamurong Naveen Krishnamurthy Ashok Kavichandran

Third-party and supply chain cyber risk is a blind spot for so many smart security leaders. When security is overrun, it can..and frequently does affect directly connected third-parties. Security leaders are responsible for protecting sensitive information..whether it resides within the confines of their networks..or beyond. Establishing and maintaining situational awareness of cyber risk across your supply chain, and applying the right countermeasure strategies, is equally important as building defenses against external and insider threats. #TheHeartofProgress #WeAreKyndryl Michelle Weston, PhD, Mark Slaga, Kris Lovejoy, Rhonda Childress, Adeel Saeed, Ronald Atkins, Mohamed Wassim Issaoui https://lnkd.in/gjqtSnAW

Third-Party Risk Management is top of mind for many clients in Canada - Particularly around how Federally Regulated Financial Institutions (FRFIs) are implementing and streamlining these programs to help meet OSFI B-10 & B-13 guidelines. This will be even more pressing across other industries with Bill C-26 around the corner giving regulators enforcement of the obligations under the Act and the ability to impose consequences for non-compliance. Kyndryl, as the world's largest managed infrastructure services provider - bigger than the next two closest competitors combined by market share (IDC) - is seen as an aggregator of global and Canadian critical infrastructure. As such, we're usually the first to be asked by regulators and regulated clients on how we comply with the guidelines. We're our own case study and we're pretty proud of what we've done in this area as we've streamlined our TPRM program and are helping our clients do the same! #TheHeartofProgress #WeAreKyndryl Gustavo Gomez Danny Huberdeau Mohamedshafik Damji, Juan Chamorro Shawn McGuire Dan McMullen Michael Stephenson Ahmer Bhurgri, Amjad Mehmood, Deepinder Singh Babbar Rocky Malfara Maxime Desbiens

Fortify Your Defenses with SISA's HITRUST Assessments As a leading breach forensics firm, SISA offers HITRUST assessments that combine investigative expertise with a commitment to enhancing organizational defenses. Our certified assessors utilize real-world cybersecurity insights to provide comprehensive guidance. We ensure compliance while empowering you to proactively identify and mitigate vulnerabilities. Partnering with SISA gives you access to our proven track record in uncovering and remediating breaches. This experience translates into robust risk management, safeguarding data, and fostering trust. We offer tailored assessments to fit the unique needs of your organization, ensuring that your security measures are not only compliant but also effective against current and emerging threats. Our goal is to build a resilient cybersecurity framework that withstands the evolving landscape of digital threats. We are dedicated to helping organizations achieve cybersecurity excellence. Let's collaborate to fortify your defenses, elevate resilience, and secure your digital future. Together, we can create a safer digital world. #SISAInfosec #ForensicsDrivenCybersecurity #HITRUSTAssessment Dharshan Shanthamurthy Paul Witt Renju Varghese Sachin Sawant - CISA, CISM, CPISI - A, PCI QSA Venu Nambiar Derek Olson Naveen Krishnamurthy Adriano Bertoni

Safeguarding your digital assets is essential in the face of increasing cyber threats. Learn about cybersecurity best practices and how Mantella IT provides comprehensive solutions to protect your organisation. Gain insights into threat intelligence, risk management, and incident response strategies to fortify your defences. 🔐🛡️ Visit our website at mantellait.co.za or contact us at 021 552 6857 to learn more about our services and how we can help secure your digital assets. #Cybersecurity #DataProtection #DigitalSecurity #ThreatIntelligence #RiskManagement #IncidentResponse #BusinessContinuity #CyberDefense #StayProtected

Managing cybersecurity risks within your suppliers can seem like a big task. It sounds time-consuming, complicated and expensive. But in reality, creating a supplier cyber risk management process that informs better risk-related decision making is far easier than you might think. This article explains Darkbeam's "Three S's" approach to managing the risk of supplier cyber attacks impacting your operations and finances. Learn how to easily scale your visibility, implement risk reduction processes and monitor your progress in an automated, cost-effective way. Some studies show that cyber attacks against suppliers cause half of all disruption in the supply chain. In this article, you'll learn how to assess and manage that risk. #supplychain #procurement #riskmanagement