The Imprimis "CyberDeck" Blog

Cybersecurity Tips & Techniques and Best Practices from the "Assessment & Remediation Trenches"...

radarloopriskmgmtradarbanner

Cybersecurity Risk - Defined, Described, Detailed...

So, let's get started with my first Risk Management Radar Blog post... 

Over the years there has been many definitions of Cybersecurity and the associated Risks that come with not being fully Cybersecurity Aware for small to medium sized businesses !...  Here are a couple of examples:

 

From a GSA.GOV RFQ:

“Cybersecurity Risk Management” means technologies, practices, and policies that address threats or vulnerabilities in networks, computers, programs and data, flowing from or enabled by connection to digital infrastructure, information systems, or industrial control systems, including but not limited to, information security, supply chain assurance, information assurance, and hardware and software assurance.

 

From a TechTarget "Essential Guide" Description:

"Risk management" is the process of identifying, assessing and controlling threats to an organization's capital and earnings. These threats, or risks, could stem from a wide variety of sources, including financial uncertainty, legal liabilities, strategic management errors, accidents and natural disasters. IT security threats and data-related risks, and the risk management strategies to alleviate them, have become a top priority for digitized companies. As a result, a risk management plan increasingly includes companies' processes for identifying and controlling threats to its digital assets, including proprietary corporate data, a customer's personally identifiable information and intellectual property.

Do you have a Risk Management Plan for your business ?

 

CyberStart

Imprimis as developed a product line and framework that can support SMB to do just that.  The CyberStart is the initial effort which provides the basics in cybersecurity and corporate cyber insurance.  The cyber basics greatly reduce the risk of a breach and supports the underwriting of insurance.  CyberStart mitigates the risk from cyberattacks and legal liabilities, while supporting a positive profile in the marketplace.  Together, cyber basics and insurance are an effective risk management approach that is affordable for all small businesses.

Beyond the basics, companies will need to comply with industry standards.  The framework established in CyberStart can be expanded to include compliance with standards.  Imprimis has developed a suite of tools and processes that support achieving compliance in the minimum time and cost, and once compliance is achieved, Imprimis provides services required for sustainment. 

If your interested in learning more about the CyberStart solution... allow us to provide a live demonstration the Imprimis system.


About Michael Semmens:

Michael Semmens is a former Corporate VP at BDM International, a corporation eventually acquired by Northrop Grumman Corporation. At BDM Mr. Semmens was responsible for developing and managing business divisions in energy, information technology, manufacturing, and advanced instrumentation. Major programs included designing the CAD/CAM system for the B2 bomber, the initiation of the EDGAR program for the SEC, building totally automated factories for Morton Thiokol, Caterpillar, and developing manufacturing control designs for Ford Motor Company. He also was responsible for the state and local IT outsourcing business. Mr. Semmens has also managed and arranged funding for a number of high-tech start-up companies. He was named Engineer of the Year in New Mexico, received the R&D 100 Award, and Leadership in Education from the University of Colorado at Colorado Springs.
 

Welcome to the Risk Management Radar Blog Series

Introduction:

 

The cyber domain simultaneously portends tremendous opportunity for increased capability and productivity, and a spectrum of threats and risks that threaten every business. This is especially true for small to medium sized businesses (SMB). These businesses are known for their great innovation and creativity, agility, and efficiency but not for their great reservoir of resources – especially financial resources.


Nonetheless, every small business has a fiduciary responsibility to manage the risks associated with the cyber domain. So, what are these risks? Are they losses from cyberattacking which is now an everyday occurrence? Are they hidden liabilities? Are they regulations that if not met can result in fines or disqualification? Or is it the risk of falling behind the competition? The answer, of course, is all the above.


So, what is the right approach for small businesses? Well, in a word, start. First recognize that your capability in the cyber domain must become a key competency. Define the cyber capability that you need for your business – today and in the future. Then devise and implement a plan that allows a reasonable on-ramp with a blueprint or framework that allows your cyber capability to grow with the company’s needs in the market place.

 

Need Help ? - You've come to the right place...

radarloopriskmgmtradarbanner

 

The i2 Risk Management Radar Blog Series:

In this blog series, over the next 3 months, I will be addressing a wide variety of cybersecurity risk, risk managememt, remediation, insurance and compliance topics.  Through the "i2 Risk Management Radar" as I am calling it... I will be providing a "deeper dive" for the small to medium sized business manager, or executive who is ultimately responsible for their companies risk management profile and status. 

Through a series of technical briefings, expanded white papers, and my experience as a cybersecurity professional... I hope to deliver to you helpful, expanded perspectives on an number of cybersecurity technology topics, policy & procedures best practices, in-the trenches remediation tips and techniques, and long term cybersecurity life-cycle and maturity models that every business will need to adopt and maintain.

So when you see my animated "I2 Risk Management Radar Banner" (above) on the CyberDeck Blog page... this will be my continuing cybersecurity blog series...

Here are some of the categories I will be covering in the weeks and months to come:

  • Cyber Risks
  • Cyber Risk Management
  • Cyber Remediation
  • Cyber Insurance
  • Cyber Compliance
  • Cybersecurity Standards
  • Cyber Compliance Tools
  • Cyber Management & Culture

 

So, look for my first i2 Risk Management Radar post this week !

 

Watching your Cybersecurity Radar !

 

Michael Semmens
President, Imprimis, Inc.
Colorado Springs, CO
 

About Michael Semmens:

Michael Semmens is a former Corporate VP at BDM International, a corporation eventually acquired by Northrop Grumman Corporation. At BDM Mr. Semmens was responsible for developing and managing business divisions in energy, information technology, manufacturing, and advanced instrumentation. Major programs included designing the CAD/CAM system for the B2 bomber, the initiation of the EDGAR program for the SEC, building totally automated factories for Morton Thiokol, Caterpillar, and developing manufacturing control designs for Ford Motor Company. He also was responsible for the state and local IT outsourcing business. Mr. Semmens has also managed and arranged funding for a number of high-tech start-up companies. He was named Engineer of the Year in New Mexico, received the R&D 100 Award, and Leadership in Education from the University of Colorado at Colorado Springs.
 

Welcome to the Imprimis "CyberDeck" Blog !

CyberDeckImageBanner

 

 

 

 

 

 

Here you will find a "Direct Connection" to the talented SME's of Imprimis... (a.k.a "Subject Matter Experts") who are our in-house cyber security specialists operating on the front lines for Cyber Security Assessment, Remediation and Sustainment... 

On the CyberDeck we will post a weekly blog or a series of posts spanning multiple days or weeks covering a cybersecurity topic of interest that we will not only "introduce" to you... we will do a "deep dive" on it as well... diving into the details and into the weeds... because that's where the true wisdom comes from.  Gaining a complete understanding of all angles of a challenging cybersecurity policy or procedure...

So What is a CyberDeck ?

In keeping with the origins of the word "cyberdeck" and to pay homage to the original use of it in a literary sense...

Etymology
cyber- +‎ deck, coined by William Gibson in Neuromancer (1984).
https://en.wiktionary.org/wiki/cyberdeck

cyberdeck (plural cyberdecks)
(science fiction) A piece of equipment that can be temporarily connected to the user's brain as an interface to cyberspace.

The Imprimis "CyberDeck" Blog
A "Direct Connection" to the Imprimis Cybersecurity Team where you can frequently "jack" into information such as engaging articles and best practice reviews of some of the tips and techniques used by the Imprimis Cybersecurity Team as they continiously battle "hackers and bad actors" in the Cyber "Warfare" Arena...

 

Stay tuned for our first series of Blog Posts in the coming weeks... !