Industry Insights

3rd Party Risk Management

Fraud Thrives in a Crisis - Why The Insurance Community Needs to Stay Vigilant

Dennis Toomey, Global Director, Counter Fraud Analytics and Insurance Solutions, BAE Systems Applied Intelligence • April 21, 2020

Alongside the sad and vast expense of legitimate claims, it is an unfortunate fact that in times of economic hardship, people have a history of taking any opportunity to exploit financial institutions for ill-gotten gain.

Governance & Risk Management

7 Habits of Highly Effective (Remote) SOCs

Jon Hencinski • April 20, 2020

As organizations shift to a remote workforce for their SOCs, they need to keep in mind seven daily habits. Here's a guide.

Fraud Management & Cybercrime

Social Engineering's Role in Cyber Fraud - And What We Are Doing About It

James Hatch, BAE Systems Applied Intelligence • March 26, 2020

As outlined in our Vision for Tackling Cyber Fraud last year, social engineering - a prime example of industrialized criminal deception - is leaving modern society vulnerable in two separate ways.

3rd Party Risk Management

What's the Return on Investment of a Vendor Management Platform?

Tony Howlett • March 24, 2020

An emerging technology, Vvendor Privileged Access Management (VPAM) can provide both operational efficiencies and increased security in your projected ROI analysis. And that is a rare combination in InfoSec these days.

Multi-factor & Risk-based Authentication

Demystifying FBI Notes on Cyber Attacks Involving Multi-Factor Authentication

Alexandre Cagnoni • March 17, 2020

Hackers are looking for every opportunity to bypass security measures, and MFA is no exception.

Anti-Money Laundering (AML)

Bringing Outsiders Into Your Compliance Team: Four Considerations

Richard Graham - Head of North American Business Solutions, BAE Systems Applied Intelligence • February 11, 2020

Money Laundering investigators are in high demand: banks and other financial institutions have spent almost two decades hiring more and more of them.

Endpoint Security

Growing Medical Device Sophistication Opens Security Issues

Tony Howlett • January 29, 2020

Securing medical devices properly is of crucial importance. However, before this goal can be completely achieved, there are several challenges to overcome.

Identity & Access Management

NIST 800-171 & Why Organizations Need Password Similarity Blocking in Active Directory

Josh Horwitz • January 7, 2020

Adopting the policies in NIST 800-171 brings multiple security-related benefits, including best practices for data access policies, reduced risk of data breaches and insider threats, and a scalable approach to protecting sensitive data.

Electronic Healthcare Records

HIPAA Standard 164.312(d): MFA to the Rescue

Emil Hozan • December 26, 2019

Humans have enough things to remember as it is and remembering yet another number or string isn't something anyone looks forward to.

Finance & Banking

Is AI The Ultimate Weapon in The Fight Against Financial Crime?

Gareth Evans • December 20, 2019

No matter how good the lock on your door, sooner or later someone can break in. When they do, how do you monitor them?

Digital Identity

Identity Theft Protection: A Crucial Consideration in Today's Heightened Environment

Allen Spence • December 16, 2019

According to the Identity Theft Resource Center, there were over 1,200 reported breaches last year alone, which exposed over 400 million records.

3rd Party Risk Management

Is your Organization Suffering From Third-Party "Compliance Drift"?

Tony Howlett • December 13, 2019

Third-party vendors accessing your most critical systems and networks can also bring in security incidents along with all those wonderful things they promised in the sales presentation.

Finance & Banking

Don't Forget The Basics: KYE Means KYC

Simon Viney • December 6, 2019

We can see criminals are moving up the financial value chain from attacking lots of targets with smaller rewards to smaller numbers of targets with higher rewards

3rd Party Risk Management

The Hidden Cost of a Third-Party Data Breach

Tony Howlett • December 4, 2019

Your best bet to avoiding the potentially exorbitant costs of a vendor hack is to not have one in the first place. A solid vendor risk management program, backed up by technology, policies, and procedures is the best protection. Good review and audit processes can catch any vendor-related problems before they become...

Governance & Risk Management

5 Things All Smart Security Leaders Need to Do Right Now

Amanda Fennell • November 20, 2019

Developing a mature security program takes time, but I've met many forward-thinking security leaders who've made swift and lengthy strides in protecting their clients' data. With those lessons in mind, here are five things any organization can do today to create immediate, measurable security benefits,