Articles

Recent articles

The U.S. Dept of Health and Human Services Cybersecurity Performance Goals sets expectations on healthcare delivery organizations to protect their data and technology environments.
Healthcare
Operational Resilience
Risk Management

What HHS's New Cybersecurity Performance Goals Mean to Healthcare Organizations

George V. Hulme
Operational Technology
Cyber Resilience
Risk Management

Volt Typhoon Takedown Highlights Critical Infrastructure Security Complexities

George V. Hulme
Operational Technology
Operational Resilience
Vulnerability Management
Risk Management

What IT Cybersecurity Teams Need to Know about OT Vulnerabilities (Part 1)

Dan Ricci
With more than a dozen cybersecurity incident notification laws in effect around the world, it’s time for Chief Information Security Officers (CISOs) and incident response teams to think about the consequences of declaring an incident: timing is everything.
Risk Management

Don’t Call it an Incident–Yet: Managing Liability in a New Era of Incident Reporting and Compliance

Cristin Flynn Goodwin
Technical debt in OT leads to increased operations costs as teams fight to maintain outdated systems, and security teams struggle to keep those same systems secure, often through compensating controls.
Operational Technology

Getting Strategic Against Technical Debt in OT

George V. Hulme
Risk Management
Vulnerability Management
Zero Trust
Operational Technology

A Strategic Necessity: Compensating Controls in ICS, OT

George V. Hulme
Risk Management

CISO Strategies in a Time of Geopolitical, Kinetic Conflict

ADM. Michael S. Rogers, USN (Ret.)
Operational Technology
Vulnerability Management
Operational Resilience

OT Patch Management Truths

George V. Hulme
Typical OT network
Operational Technology
Industrial

The Purdue Model's Risky Blindspot

George V. Hulme
Risk Management

Contentious Debates in Wake of SEC Action Against SolarWinds, CISO

George V. Hulme
Risk Management

Do U.S. Boards of Directors Have Adequate CISO Representation?

George V. Hulme
Cyber Resilience
Healthcare

Managing Clinical Engineering Supply Chain Risk, Part 2

Adam Zoller

Latest on Nexus Podcast