Enhancing supply chain security

The role of CISOs and SIEM

At our recent Cyber Security community event during InfoSec, Ash Hunt, CISO at Apex Group, emphasised the increasing regulatory focus on supply chains under the Digital Operational Resilience Act (DORA).

DORA is critical legislation for financial institutions, but it represents just the 'tip of the iceberg' in cybersecurity measures. It’s expected to be a catalyst for other sectors and as CISOs play a pivotal role in navigating these regulations, prioritising risks based on business value, and ensuring compliance is key.

In this context, Security Information and Event Management (SIEM) systems are invaluable. They provide comprehensive monitoring, real-time threat detection, and robust reporting capabilities that align with regulatory requirements. By leveraging SIEM, organisations can enhance their supply chain security and effectively manage risks, ensuring a win-win for all stakeholders.

For a deeper understanding, we recommend watching Ash's insightful presentation, and taking a look at our recent paper “CyberSecurity is Everyone’s Responsibility”.

Hear from Ash Hunt

Our sister community MYREDFORT recently ran an event called CyberSync 2024, in which Ash Hunt spoke about the role of the CISO and why shareholder value is central to it.

Ash also discussed how to prioritise risk based on business value, evaluation of the impact of attacks and how to ensure you stay on the right side of the regulators.

Why cyber security is everyone's responsibility

Cyber security has become an integral part of the digital ecosystem, affecting individuals, businesses, and governments alike. From the minute a birth is documented, to the time a notification of death is filed, humans enter the pot of data which is continuously stirred by advancements in technology and changes in digital behaviour.

This discussion paper aims to shed light on the cascading impact of cyber crime, starting from the new breed of child hackers, personal responsibility, micro and SMBs without adequate cyber protection, to the broader implications for larger enterprises and the economy at large.

Related Stories
The CISO script
The CISO script

How to talk to non-technical business leaders about security risk - and get them to act.

Are your cyber defences prepared for multiple fronts?
Are your cyber defences prepared for multiple fronts?

CISO Andrew Hollister outlines key aspects of modern threat detection and incident response

3 reasons CISOs can trust DocuSign
3 reasons CISOs can trust DocuSign

Before taking the leap of faith, it’s best to have as much information as possible.