The SECOND Advisories Limited – Page 10 – Your Trusted Cybersecurity Advisor

Cybersecurity is neither product nor solution.

It is a never-ending journey with ongoing challenges to reach the rolling target of stakeholders expectation.

Automation is everywhere, be seen or behind the scene.

Cybersecurity becomes everyone's concern and therefore everyone's responsibility.

Critical Infrastructure Failure Has High Impact.

They must be secured to maintain reliable services.

Systems are no longer deployed as islands.

They are connected and accessible anywhere, anytime, any network, any device and any platform.

And so are people getting connected.

... mostly in the cyber world, even when face-to-face.

Cloud, Social Network, IM, AI are dominating.

Demarcation of biz and non-biz use, trusted and untrusted app are diminishing.

We are living in real and cyber space.

... always exposing to threats and must follow the same risk-taking principles for cost-effective and optimal protection.

Hackers are all around.

Be vigilant and smart to avoid being victim.

Collect latest cyber threat intelligence.

But assess material impacts to specific business environment by competent cybersecurity practitioners to avoid FUD.

Prepare for the worst.

React promptly to resume services to maintain survivability.

Streamlined IR is the bottom line.

Because we don't know what threats we don't know.

Engage all levels.

Ask what you can do for cybersecurity.

Be part of the transformation.

Each of us plays a different roles to protect the cyber community.

Cybersecurity is needed for all entity size.

... as mutual protection for individual and connected neighbor.

Act now and don't wait.

Are you ready for this journey and explore with us?

Services

Provide vendor neutral cybersecurity advisories to enhance the organization cybersecurity posture Act as a trusted...

Gallery

Slipping away for a break from cybersecurity conference / event (alphabetic order). Non-Cyber – Travel

About

Founded in 2016 ... Subject Matter Expert of cybersecurity in ICT (Information and Communications Technology) and ICS (...

Enforcement

Enforcement Having policy as written document isn't enough. If there is violation, it must be enforced thru correctional approach. In

Assumption #3

When we develop written directive, there might be chance that certain elements are assumed and be implicit. It is essential

Taxonomy #2

I have seen cybersecurity directive regarding applicability is to protect OT (Operational Technology) system so as to minimize cyber attacks

Landscape

Some cybersecurity practitioners only drill down to the level of details of network diagram or even wiring diagram to identify

Taxonomy

In policy development, it is essential the coverage of the rule is sufficient and precise to avoid ambiguity. A living

Suspicious

It is common to see such directive in subway, airport, key facilities, incident respond playbook etc. The problem is different

Blind Spot

When designing controls, we must understand what to protect. There might be blind spot that the intended controls are ineffective

Policy #7

The illustrated directive is unclear. Drone, also known as unmanned aerial vehicle, has different form factors. If the sign comes

Cyber ...

Early days in the industry, we are talking about information security to protect the information so as to minimize the

Information Integrity

Sometimes, a small mistake will invite question if the information processing facilities are producing accurate result without malicious tempering. The

Distance #2

Keeping distance on the road avoids accidents causing injuiry or fatality due to sudden situation changes. Keeping social distance avoids

Policy #6

Common pitfalls in writing policies (written directives) are: Embedded assumption by the author that is unknown to other readersFailed to

« Previous 1 … 8 9 10 11 12 … 22 Next »