2024/33 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Check permitted NIS2 exceptions! / Connecting insecure assets to your networks? / No need to be the best – not being the worst is “good enough” / Always include a little budget for our ISAC to find true “best practice” / Hidden object picture can really engage users / Remember Cyber Awareness Month

von oschwabeVeröffentlicht am Keine Kommentare

2024/33 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Check permitted NIS2 exceptions! / Connecting insecure assets to your networks? / No need to be the best – …

Mehr über “2024/33 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Check permitted NIS2 exceptions! / Connecting insecure assets to your networks? / No need to be the best – not being the worst is “good enough” / Always include a little budget for our ISAC to find true “best practice” / Hidden object picture can really engage users / Remember Cyber Awareness Month” Lesen

2024/32 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Get a free account at the MISP for EU ISACs / ENISA Threat Landscape 2024 published / Follow the Money? / Protecting Session Tokens in critical / Remember Cyber Awareness Month

von oschwabeVeröffentlicht am Keine Kommentare

2024/32 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Get a free account at the MISP for EU ISACs / ENISA Threat Landscape 2024 published / Follow the …

Mehr über “2024/32 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Get a free account at the MISP for EU ISACs / ENISA Threat Landscape 2024 published / Follow the Money? / Protecting Session Tokens in critical / Remember Cyber Awareness Month” Lesen

2024/31 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Key Incident Scenarios to Agree / Integrate with Strategic Roadmap of Administration / Maintain your own Backups / Remember Cyber Awareness Month

von oschwabeVeröffentlicht am Keine Kommentare

2024/31 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Key Incident Scenarios to Agree / Integrate with Strategic Roadmap of Administration / Maintain your own Backups / Remember …

Mehr über “2024/31 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Key Incident Scenarios to Agree / Integrate with Strategic Roadmap of Administration / Maintain your own Backups / Remember Cyber Awareness Month” Lesen

2024/30 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: It is Cybersecurity Awareness Month – EU & CISA Invites / Key Controls are sometimes very straight-forward / Comply-Secure-Contain / We can attract cyber professionals to low paid jobs / Hack the Hague on Monday 30 Sep 2024 – Worth emulating?

von oschwabeVeröffentlicht am Keine Kommentare

2024/30 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: It is Cybersecurity Awareness Month – EU & CISA Invites / Key Controls are sometimes very straight-forward / Comply-Secure-Contain …

Mehr über “2024/30 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: It is Cybersecurity Awareness Month – EU & CISA Invites / Key Controls are sometimes very straight-forward / Comply-Secure-Contain / We can attract cyber professionals to low paid jobs / Hack the Hague on Monday 30 Sep 2024 – Worth emulating?” Lesen

2024/29 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Use In-House training to configure solutions / Is your outsourced SOC secure? “Go Look See” / Collaboration platforms can provide unauthorized network access / Upgrading inside the perimeter the hidden cost of new security solutions / Four cities piloting CIS18 benchmarking platform

von oschwabeVeröffentlicht am Keine Kommentare

2024/29 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Use In-House training to configure solutions / Is your outsourced SOC secure? “Go Look See” / Collaboration platforms can …

Mehr über “2024/29 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Use In-House training to configure solutions / Is your outsourced SOC secure? “Go Look See” / Collaboration platforms can provide unauthorized network access / Upgrading inside the perimeter the hidden cost of new security solutions / Four cities piloting CIS18 benchmarking platform” Lesen

2024/28 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Ban bots from joining online conferences to prevent GDPR breaches / Resource augmentation for supplier NIS2 cyber audits? / Prioritizing legal responsibility versus citizen welfare?  

von oschwabeVeröffentlicht am Keine Kommentare

2024/28 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights:  Ban bots from joining online conferences to prevent GDPR breaches / Resource augmentation for supplier NIS2 cyber audits? / …

Mehr über “2024/28 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Ban bots from joining online conferences to prevent GDPR breaches / Resource augmentation for supplier NIS2 cyber audits? / Prioritizing legal responsibility versus citizen welfare?  ” Lesen

2024/27 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights:   Praise good cyber behaviour / Key KPI for Phishing Exercises is the # Reported! / Paper can side-step digital controls / Learn global and act local / Make it easy to report suspicious emails

von oschwabeVeröffentlicht am Keine Kommentare

2024/27 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights:  Praise good cyber behaviour / Key KPI for Phishing Exercises is the # Reported! / Paper can side-step digital …

Mehr über “2024/27 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights:   Praise good cyber behaviour / Key KPI for Phishing Exercises is the # Reported! / Paper can side-step digital controls / Learn global and act local / Make it easy to report suspicious emails” Lesen

2024/26 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Threat estimates only +/30 % correct / Betting odds of Ransomware Event next week at 3:2 / Threat actors know how we will react – not good? / Make sure you can extract all data at any time without cost from security solutions / Single points of failure are often deep within solutions and easy to reach.

von oschwabeVeröffentlicht am Keine Kommentare

2024/26 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights:  Threat estimates only +/30 % correct / Betting odds of Ransomware Event next week at 3:2 / Threat actors …

Mehr über “2024/26 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Threat estimates only +/30 % correct / Betting odds of Ransomware Event next week at 3:2 / Threat actors know how we will react – not good? / Make sure you can extract all data at any time without cost from security solutions / Single points of failure are often deep within solutions and easy to reach.” Lesen

2024/25 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Fed the cat today? / Many critical IT services are not connected to your networks / Best practice tools for helping meet NIS compliance? Survey Pending / Segmentation is key to protection / CISO offices must be independent from IT / Opportunity to professionally review funding proposals

von oschwabeVeröffentlicht am Keine Kommentare

2024/25 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights:  Fed the cat today? / Many critical IT services are not connected to your networks / Best practice tools …

Mehr über “2024/25 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: Fed the cat today? / Many critical IT services are not connected to your networks / Best practice tools for helping meet NIS compliance? Survey Pending / Segmentation is key to protection / CISO offices must be independent from IT / Opportunity to professionally review funding proposals” Lesen

2024/24 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: User Comms should be at Grade Level 10 / Cyber incidents can trigger a state of emergency – prepared? / Ready for the Thunder Run attack? / Comparing CIS18 scores with peers should be in a conversation / Prohibit the use of credit cards for purchasing IT services

von oschwabeVeröffentlicht am Keine Kommentare

2024/24 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights:  User Comms should be at Grade Level 10 / Cyber incidents can trigger a state of emergency – prepared? …

Mehr über “2024/24 Weekly Update from the MCE SIG “City ISAC I4C+” Highlights: User Comms should be at Grade Level 10 / Cyber incidents can trigger a state of emergency – prepared? / Ready for the Thunder Run attack? / Comparing CIS18 scores with peers should be in a conversation / Prohibit the use of credit cards for purchasing IT services” Lesen