Cybersecurity in Banking & Beyond

onSecurity – Leading with Cybersecurity

November 18, 2022 By Josh Eklow

Episode 11: Leading with Cybersecurity

onShore Security’s podcast, onSecurity, explores a variety of topics in the cybersecurity field. Cybersecurity practice is typically the territory of experts in the field, but for large organizations, cybersecurity is a board-level concern and should factor into decisions in every department, from security and risk to marketing and customer experience.

Cybersecurity can seem a big obstacle and is a large source of risk for the unaware or ill-prepared, but for those leading with cybersecurity, it offers a new way to think about every part of your organization, at every level.

For our eleventh episode, Robert Barr joins onSecurity to discuss the importance of cybersecurity awareness at the board level and the work that the Private Directors Association is doing with their new Cybersecurity Governance Committee to ensure that leaders have the understanding and knowledge needed to make big decisions.

onSecurity – Governance, Risk, and Compliance

November 4, 2022 By Josh Eklow

Episode 9: Governance, Risk, and Compliance

At the Enterprise level, many discussions and decisions about cybersecurity and IT focus on the operational capability of the organization and bad actors that may interfere. As cyber operations become a larger part of business operations as a whole, organizations now must also consider regulatory compliance or risk losing the ability to operate and even face potential damaging liability.

Chris Johnson, Sr. Director of Cybersecurity Programs at CompTIA ISAO, joins onSecurity to discuss the importance of GRC – governance, risk, and compliance. Though implementation of GRC in an organization may offer some hurdles, this work raises the cybersecurity posture of an organization, making them better able to prevent and resist cyberattacks, as well as comply with regulations, allowing them to continue the work they do and expand into new opportunities.

onShore Security CEO Stel Valavanis to Join PDA Cybersecurity Committee

August 18, 2022 By Josh Eklow

Cyberleader and CEO of onShore Security Stel Valavanis has been asked to join the cybersecurity committee of the Private Directors Association, a national non-profit business association with more than 3000 members, including executive board members, company owners, officers of family-owned businesses and more. Its mission is to advocate for and teach board formation and governance and to create a network of business owners and leaders. One of the fastest growing areas of the organization is the cybersecurity leadership team, offering education such as webinars and white papers, as well as offering guidance in long-term strategic planning to improve security posture.

This collaboration will further allow Stel and onShore Security to promote cybersecurity awareness and education at the board level, allowing boards to make better informed and forward-looking decisions regarding security. This understanding is vital not only to improve the value and performance of board members but also to make it clear that security affects every part of an organization and that it should be a board-level concern.

As Stel prepares to join the board, he looks forward to adding his experience and vision to those already working to achieve the forward-thinking goals of the organization. Stel says, “I joined PDA as a member, realizing the need for board development from the various boards I sit on where my cybersecurity background has been valuable. But PDA has a bigger vision, one that provides tools and support on many levels. The opportunity to have an impact is tremendous because the gap in cybersecurity is big. The assembled committee is impressive, making my participation even more of an honor.”

Robert Barr, Co-Chair of the Cybersecurity Committee and Enterprise Strategy Director of Oracle, says, “The Private Directors Association National Cybersecurity Committee is better enabling private company boards to create short and long-term value in tomorrow’s economy while strategically mitigating key risks and driving to healthier margins. We are pleased to welcome Stel aboard.”

For more information about The Private Directors Association, please visit their website.

onSecurity – Compliance and Security

June 23, 2022 By Josh Eklow

Episode 1: Compliance and Security

onShore Security CTO Steven Kent joins Stel to discuss the intersection of compliance and security. As the author of an oft-cited saying at onShore, “security is a process, not a product”, Steven Kent is the reason that onShore has been able to satisfy the complex needs of clients in the banking industry.

onShore Security Launches New Vulnerability Management Offering

March 17, 2022 By Josh Eklow

onShore Security relaunches vulnerability management services, massively expanding the previously offered service. Vulnerability management is necessary for organizations today and required by all cybersecurity compliance frameworks. This newly launched service goes way beyond standard Common Vulnerabilities and Exposure (CVE) scanning, ingesting policies, configurations, and full cloud assets with an automated continuous scan, all incorporated into our Elastic cluster for correlation. Unlike its competitors, onShore Security’s service includes a monthly analyst briefing. The briefing helps organizations make sense of the findings and provides insights that other providers overlook. On top of that, these features are fully integrated with our Elasticsearch-powered Panoptic SIEM^®.

Steve Kent, CTO of onShore Security, said, “By correlating found vulnerabilities with system and network activity, we can prioritize critical patches within specific environments, and help reduce our client’s risk exposure – both in the immediate and long term.”

“This is a complete revamp of our CVMaaS offering,” Stel Valavanis, CEO of onShore Security adds. “Because vulnerability management, beyond just regular scanning, has risen to the level of a required GRC [Governance, Risk, Compliance] process for enterprise, we’ve added continuous scanning and full analytics via our Elastic Stack big data platform. Add to this much deeper inspection of AD, GPOs, Azure configurations, etc., and you get a whole other level of offering that begs for a new name.”

To find out more about this new service, go to www.onshore.com/continuous-vulnerability-management/.