The Chief Information Security Officer (CISO) plays a pivotal role in the modern organization, embodying the confluence of technological expertise, strategic planning, and executive leadership. This article draws upon three comprehensive documents to elaborate on the evolving role of the CISO, focusing on the nuances of reporting structures, the multifaceted challenges they face, and their…
Lire la suite
Discover the importance of cybersecurity governance in achieving cyber maturity. Learn about key components, best practices, and effective frameworks.
By Marc-André Léger This article was originally published in 2013 In 2009, ISACA launched a first information risk repository: Risk IT. Risk IT relies on COBIT 4, the IT governance framework that, according to ISACA, provides the missing link between traditional business risk management and information risk management and control. One of the main ideas behind ISACA’s…
Lire la suite
By Marc-André Léger, Ph.D., MBA, MScA, C.Adm.Email: marcandre@leger.ca Abstract This article presents a simple strategy to accelerate literature reviews. The approach was developed for new graduate students wishing to engage in scientific research with little knowledge of how to perform a systematic search using academic sources and scientific journals on a particular topic. However, it…
Lire la suite
By Marc-André Léger, Ph.D. MBA. MScA. C. Adm. Keywords Compliance, Compliance management, information security, cybersecurity Abstract This article presents the results of a systematic review of recent academic literature on the cybersecurity compliance management. It proposes a working definition of cybersecurity compliance management as a process for the governance, oversight and tracking of how organizations…
Lire la suite
In the intricate web of modern society where the sails of technology, health, finance, and business are ever billowed by the winds of change, the notion of ‘risk’ stands as a crucial beacon in navigating the unpredictable. Originating from the perilous ventures at sea signified by the Middle-Ages Italian term ‘risco’, risk has journeyed through…
Lire la suite
In the intricate dance of market economics, supply and demand traditionally lead the way, dictating prices and guiding consumer behavior. Nevertheless, in the grand ballroom of commerce, there exists a paradoxical player: Veblen goods. Named after the economist Thorstein Veblen, who first illuminated their peculiar nature, Veblen goods flip the script on conventional economic wisdom.…
Lire la suite
Introduction In the ever-evolving landscape of cybersecurity, risk analysis has become increasingly complex, requiring advanced computational techniques to address multifaceted challenges. One such advancement is the use of deep learning platforms to analyze cybersecurity risk scenarios. Deep learning, a subset of machine learning, has shown immense promise in various domains, including natural language processing, computer…
Lire la suite
Introduction In a world increasingly driven by digital interactions, cybersecurity cannot be underestimated. Cybersecurity frameworks serve as the cornerstone for securing modern organizations’ complex infrastructure. These frameworks encompass a set of guidelines, best practices, and tools designed to provide a structured and strategic approach to cybersecurity management. This blog post aims to elucidate the concept…
Lire la suite
Today I asked ChatGPT to use the new Dall-E functionality to create an artistic rendition of generative AI that I can use to illustrate an article. Here is what it answered. Generative AI is an exciting frontier that marries the complex intricacies of artificial intelligence with the boundless realm of creativity. The images presented here…
Lire la suite