The distortions created by cyber incidents and the challenge of handling cyber incidents are amplified with the introduction of liability. However, the imposition of death - an irreversible and undesirable impact - shows we need to sort it.
Looking at the distinctions between Cyber Threat Intelligence (CTI) and cyber risk - both with similar elements with supportive properties, but often misunderstood. Offering definition to aid practitioners, auditors, regulators and boards.
Challenges to the blending of Cyber/Fraud/AML spaces in financial services gives cybercrime more room to maneuver. Criminals find monetisation advantages in victim organisational separations, with innovative solutions based on careful observation and rapid growth in operational maturity. This post uncovers difficulties financial services encounter in cybercrime-monetisation.
Issues - regardless of scale - often acquire similar responses when the systems are complex. This post looks at components of complex system issue response and reasoning behind it.
Some things are bent to suit. Some are broken in process. Some things just have to burn. The following are considerations for metaphorical implications.
At opposite ends of the intelligence spectrum, need-to-know (limited audiences) and need-to-share (expansive audiences) vie for dominance. Here we define these practices, associated concerns, and circumstances where one approach is likely preferable.
With the Taliban back in control in Afghanistan, and with the departing US forces having left behind a lot of equipment and hardware, the CTI community is keeping an eye on the inevitable shifts in cyber threats arising from or involving Afghanistan.
Whether rational, rationalized, emotional, irrational, or intuitive, our behaviours are signals to others about where we are operating from. Taking time to clarify your understanding of your internal mechanisms at play will significantly improve your messaging to the external world. Messaging as revealed by your behaviours and decisions.
Private-sector organisations have different response options available utilising CTI than governments or militaries. Learning what is important to the organisation affects what to look for when distilling and analysing. This post will help understand how to create CTI relevance for the business.
Developing operational resilience - an organisation's ability to continue functioning through failure - requires reconsidering what brings the effect of shock and volatility closer to zero. Looking to the relative resilience in place twenty or more years ago, the need for analogue solutions in digital spaces becomes apparent.