Analysis Center – РИСК-АКАДЕМИЯ – АНО ДПО ИСАР

New ISAC for K-12 school districts fills a key cyber intelligence gap

riskacademy — Thu, 17 Dec 2020 23:23:51 +0000

Roosevelt High School in Portland, Oregon. The Portland Public Schools district is among the first members of K12 SIX. (Visitor7, CC BY-SA 3.0 https://creativecommons.org/licenses/by-sa/3.0, via Wikimedia Commons)

The automotive sector has its own Information Sharing & Analysis Center (ISAC). So do the aviation and maritime industries. They all represent forms of transportation, but no one would say they all face the exact same cyber threat scenarios.

So why have K-12 schools traditionally been lumped in with the public sector and higher education when it comes to ISAC activity? Local education districts have their own distinct challenges as they strive to protect themselves against digital threats. It only makes sense that they have an ISAC of their own.

Now they do.

In October 2020, the Global Resilience Foundation (GRF) – a nonprofit subsidiary of the National Council of ISACs – soft-launched its Kindergarten Through Twelfth Grade Security Information Exchange, or K12 SIX for short. It’s the first-ever ISAC specifically created with local school districts in mind.

The organization already sports roughly one dozen members, with more in…

Pandemic accelerating security at financial institutions

riskacademy — Mon, 03 Aug 2020 23:07:01 +0000

Prior to the pandemic, financial institutions spent an average $2,700 on cybersecurity per full-time employee, up from $2,300 the previous year ), with COVID-19 now driving the need for companies to doubledown on cybersecurity going forward, according to a study from Deloitte’s cyber risk ad strategic risk services group in conjunction with the Financial Services Information Sharing and Analysis Center (FS-ISAC).

The allocation represents more than a tenth of organizations’ IT budgets, increasing slightly to 10.9 percent, up from 10.1 percent, according to data that was collected from 53 institutions late last year through January.

The third annual report from Deloitte and FS-ISAC also found that more than half of the spending went collectively to cyber monitoring and operations, endpoint and network security, and identity and access management.

COVID-19 has resulted in vast challenges for the financial sector’s cybersecurity challenges, the study noted.

“Looking ahead, given the tough macroeconomic conditions arising from the COVID-19 pandemic, many companies will likely be taking a hard look at whether they need to cut expenses across the board,”…

ClassNK Joins Maritime Transportation System ISAC to Help address Cybersecurity Risks

riskacademy — Thu, 09 Jul 2020 05:41:50 +0000

(Image Courtesy: ClassNK)

Nippon Kaiji Kyokai (“ClassNK”) joined the Maritime Transportation System Information Sharing and Analysis Center (MTS-ISAC) as part of a growing list of maritime community partners. This is an innovative relationship between the two nonprofit organizations aimed at strengthening vessel and shoreside cyber risk management.

The partnership provides ClassNK with actionable insights from community-sourced cyber threat intelligence to reinforce ClassNK’s Cyber Security Guidelines to help prevent cyber incidents from negatively impacting the safety and security of maritime operations. ClassNK is the first classification society and the first non-U.S. organization to formally join the MTS-ISAC, helping broaden the reach of the MTS-ISAC’s efforts to support the maritime community.

Both vessel and shoreside cybersecurity efforts will be under increasing scrutiny starting in 2021. The International Maritime Organization (IMO) has a deadline of January 1, 2021 for Maritime Cyber Risk Management to be addressed in Safety Management Systems.

Meanwhile, the U.S. Coast Guard will be inspecting Maritime Transportation…

Work From Home Financial Services: 15 Cybersecurity Best Practices

riskacademy — Sun, 17 May 2020 07:57:08 +0000

Work From Home (WFH) cybersecuritey tips from the Financial Services Information Sharing and Analysis Center, (FS-ISAC), a non-profit industry consortium.

by DH Kass • May 16, 2020

The Financial Services Information Sharing and Analysis Center, (FS-ISAC), a non-profit industry consortium focused on reducing cyber-risk in the global financial system, has issued a set of technology and security tips for teleworkers, work from home (WFO) staffers and businesses trying to successfully navigate the coronavirus (Covid-19) pandemic.

The suggestions spring from a webinar the association recently conducted for thousands of its members entitled Work From Home Security Tips, which homed in on “this new way of doing business,” the FS-ISAC said. Some 7,000 firms with users in more than 70 countries belong to the organization.

Of particular note, the FS-ISAC suggests businesses alert their MSPs and MSSPs of the shift in operating models so they can tune and tailor their notifications and adjust their monitoring activities. Here are 14 more recommendations, as segmented by technology and security,…

U.S. Maritime Stakeholders Launch Cyber Threat Clearinghouse

riskacademy — Tue, 12 May 2020 02:30:31 +0000

Jaxport is one of the initial board members for the new non-profit (file image courtesy Jaxport)
By

The Maritime Executive

05-11-2020 04:59:40

A group of American seaports and maritime stakeholders have decided to address cybersecurity threats by launching a new non-profit, the Maritime Transportation System Information Sharing and Analysis Center (MTS-ISAC).

The new organization’s objective is to promote cybersecurity information sharing throughout the maritime community. A group of leaders from seaports, shipowners and terminal operators recognized the need to improve their own cybersecurity resiliency, and since resources are limited, they realized the best approach was to work with their peers to identify, protect…