@ISACA is a biweekly publication available from this page and delivered via email to ISACA members and subscribers. This electronic newsletter features timely industry and ISACA news, as well as features and updates relevant to our readers.

Tips From Industry Experts

Tips for Understanding Cyberrisk-Based Duty of Care By Lisa Young, CISA, CISM Recently, the US Securities and Exchange Commission (SEC) published updated guidance on cybersecurity disclosure requirements for publicly traded companies. As a practitioner who helps organizations build risk measurement and metrics programs, the most interesting component of the SEC guidance is the following statement… Read More >>

Learn About Cybersecurity Change Agents in ISACA Virtual Conference ISACA News Learn about the change agents shaping enterprise security operations from your office or home by participating in ISACA’s free, full-day virtual conference on Wednesday, 9 May. Change agents such as artificial intelligence (AI) and machine learning have pushed analytics to a new level… Read More >>

Ransomware spreads at an alarming pace and infects networks across entire industries. Phishing attacks are primarily to blame, and the cybercriminals behind these attacks are continuously innovating to stay ahead of the defenses. Read More >>
 

Webinar: Approaching the Final Stretch to GDPR ISACA News EU General Data Protection Regulation (GDPR) readiness is still an issue for many organizations, and the May deadline is approaching fast. Building a defensible position is the key to overcoming the initial hurdles of GDPR and will quickly, easily and definitively prove to regulators that the enterprise has taken the most material compliance steps it can. Read More >>

As more technology develops, more risk arises. With this rise in risk, the demand for more knowledgeable and skilled IT auditors, more advanced IT auditing technology, and better IT audit and enterprise cooperation grows. Read More >>
 

Today, doing business with third parties is becoming commonplace. Process development, stakeholder involvement, contracting, risk profiling, evaluation and monitoring are all concerns and considerations when working with a third-party vendor. Read More >>
 

Audit Program: Learn to Assess the Security of Your Enterprise’s Microsoft SQL Servers ISACA News Structured Query Language (SQL) is a programming language that is used to insert and modify data. While Oracle also offers SQL, Microsoft SQL is a widely used platform for SQL databases. The popularity of Microsoft’s platform can likely be attributed to the ease of Microsoft product integration. Read More >>

ISACA surveyed security managers and practitioners around the world to gather their insights and experiences with various cybersecurity issues for this year’s State of Cybersecurity 2018 report in an effort to help security professionals understand upcoming cybersecurity challenges and how to address them. Read More >>