CISM

Elastic Announces 2023 Elastic Excellence Awards Winners

Retrieved on: 
Wednesday, March 27, 2024
Professional Services, Data Management, Security, Technology, Data Analytics, Software, CISM, Organization, Elastic, Comcast, ESTC, ECA, ECS, Certification, ECE, CISSP, Public sector, Auction

Elastic ® (NYSE: ESTC) (“Elastic”), the company behind Elasticsearch®, today announced the winners and honorees of its Elastic Excellence Awards .

Key Points: 
  • Elastic ® (NYSE: ESTC) (“Elastic”), the company behind Elasticsearch®, today announced the winners and honorees of its Elastic Excellence Awards .
  • The awards celebrate organizations and individuals demonstrating ingenuity and resilience by pushing the limits of data search, observability, and security with groundbreaking implementations.
  • “We’re excited to announce the 2023 Elastic Excellence Awards winners and acknowledge our amazing community and their work.”
    The 2023 Elastic Excellence Award winners and honorees are,
    This award recognizes use cases addressing social and humanitarian challenges for the betterment of the world.
  • BUSINESS TRANSFORMATION AWARD: This award recognizes organizations that are creating measurable company-wide added value with each of Elastic’s solutions.

FedRAMP® Authorization Granted to Onspring GovCloud to Deliver Next-Gen GRC Software to U.S. Federal Agencies

Retrieved on: 
Tuesday, April 2, 2024
Automation, CISM, Tennessee Valley Authority, Federation, Partnership, Risk, Bureau, NERC, PMP, OMB, CISSP, POA, GRC, Tennessee Valley, Patent, TVA, Medical device

OVERLAND PARK, Kan., April 2, 2024 /PRNewswire/ -- Onspring, a no-code, cloud-based GRC software, announced the company achieved moderate-level FedRAMP® Authorization for Onspring GovCloud, which offers a suite of GRC process automation and reporting products, including OMB A-123, POA&M, and NERC compliance. 

Key Points: 
  • OVERLAND PARK, Kan., April 2, 2024 /PRNewswire/ -- Onspring, a no-code, cloud-based GRC software, announced the company achieved moderate-level FedRAMP® Authorization for Onspring GovCloud , which offers a suite of GRC process automation and reporting products, including OMB A-123, POA&M, and NERC compliance.
  • With the U.S. federal government moving operations to the cloud, GRC leaders at federal agencies had few options for FedRAMP-Authorized, cloud-based GRC software until Onspring GovCloud's FedRAMP Authorization.
  • Known for speed, reliability, flexibility, and ease of administration, Onspring saves time and cost through efficient and effective risk and compliance programs.
  • "Our GovCloud software increases efficiencies by 70%, enabling federal agency leaders to quickly and accurately execute GRC programs that improve their risk posture."

Horizon3.ai Unveils Pentesting Services for Compliance Ahead of PCI DSS v4.0 Rollout

Retrieved on: 
Tuesday, March 5, 2024
Data Management, Security, Technology, Software, Networks, Artificial Intelligence, Internet, CISSP, Intelligence, 1-Click, System and Organization Controls, CMMC, PCI DSS, Cybersecurity Maturity Model Certification, GDPR, Offensive Security Certified Professional, Report, NIST, Organization, CISM, Consultant, CIS, OSCP, SOC, Auditor, General Data Protection Regulation, Environment, PCI, Medical device

Horizon3.ai , a pioneer in autonomous security solutions, today announced the availability of the Horizon3.ai Pentesting Services for Compliance.

Key Points: 
  • Horizon3.ai , a pioneer in autonomous security solutions, today announced the availability of the Horizon3.ai Pentesting Services for Compliance.
  • Horizon3.ai recognizes that demand for pentesting expertise is at an all-time high, and organizations may be struggling to meet their compliance-driven pentesting needs.
  • Horizon3.ai Pentesting Services for Compliance are tuned to meet the needs of organizations subject to annual compliance with the PCI DSS v4.0 or the updated SAQs.
  • Learn more about the Horizon3.ai Pentesting Services for Compliance.

MorganFranklin Consulting Welcomes Veteran Cybersecurity Expert Michael Welch

Retrieved on: 
Tuesday, January 23, 2024
Technology, Finance, Consulting, Security, Professional Services, Software, Networks, Internet, Data Management, Florida Power & Light, CISO, Public policy, Knowledge, George Washington University, Information system, Business, Critical infrastructure, Risk, CMMC, CISSP, Risk management, CISM, McDonnell Aircraft Corporation, Burns & McDonnell, Duke Energy, OSI Group, Information, CISA

MorganFranklin Consulting , a leading finance, technology, and cybersecurity advisory and management firm that specializes in solving complex transformational challenges for its clients, today announced the return of cybersecurity expert Michael Welch as the Managing Director and Sector Lead for Utilities, Industrial and Critical Infrastructure within the cybersecurity practice.

Key Points: 
  • MorganFranklin Consulting , a leading finance, technology, and cybersecurity advisory and management firm that specializes in solving complex transformational challenges for its clients, today announced the return of cybersecurity expert Michael Welch as the Managing Director and Sector Lead for Utilities, Industrial and Critical Infrastructure within the cybersecurity practice.
  • “We are thrilled to welcome Michael back to the MorganFranklin team and harness his expertise to help provide our clients with premier cybersecurity services,” said Keith Hollender, a partner in MorganFranklin’s cybersecurity practice.
  • “I’m excited to be back at MorganFranklin to provide clients with key industry insight, knowledge and focus that strengthens their cybersecurity postures,” said Michael Welch.
  • Michael received a Master of Business Administration specializing in project management and information security from the Keller School of Business.

Resecurity and University of Jeddah Forge Strategic Partnership to Elevate Cybersecurity Education

Retrieved on: 
Saturday, November 18, 2023
Memorandum of understanding, CCSP, CTIA, CISA, Data science, Memorandum, Black hat, CEH, Workforce, Student, GCIH, CISSP, Artificial intelligence, CompTIA, Vision 2030, University, Partnership, University of Jeddah, CISM, Government, OSCP, Knowledge, CTI, Kingdom, Education, Arms industry, Medical device, Computer security, Drone

This landmark partnership aims to enhance cybersecurity education by delivering cutting-edge training programs and fostering collaboration in key areas of expertise.

Key Points: 
  • This landmark partnership aims to enhance cybersecurity education by delivering cutting-edge training programs and fostering collaboration in key areas of expertise.
  • Students of University of Jeddah will be given an unprecedented opportunity to closely collaborate with industry experts from Resecurity holding CompTIA Security+, CCSP, CISA, CISM, OSCP, CISSP, CTIA, GCIH and CEH certifications.
  • "This partnership marks a significant milestone in advancing cybersecurity education in the Kingdom of Saudi Arabia.
  • This collaboration signifies a shared vision between Resecurity and the University of Jeddah to contribute to the development of a skilled workforce in cybersecurity, ensuring a secure digital environment and beyond in scope of Saudi Arabia's Vision 2030.

Bitsight continues strong investment in Europe, appoints security industry veteran Tim Grieveson to SVP, Global Cyber Risk Advisor in EMEA

Retrieved on: 
Thursday, November 9, 2023
Grieveson, Intelligence, United Kingdom, CSO, Face, ICS, CISM, Security, Organization, Intellectual property, Information, CFOS, Research, Senior, CIO, CISO, Risk management, Risk, Ciso, Luminate, Information security, AI, Investment, Communication, AVEVA, Cryptocurrency, Medical device, BitSight

LISBON, Portugal, Nov. 9, 2023 /PRNewswire/ -- Bitsight, a leader in managing and monitoring cyber risk, announced today the appointment of cybersecurity industry veteran Tim Grieveson as Senior Vice President, Global Cyber Risk Advisor. This new addition to Bitsight leadership team follows the relocation last year of founder and CTO Stephen Boyer to lead Bitsight's growth in EMEA; and where the company continues to invest, increasing its headcount by 15% in 2023.

Key Points: 
  • Grieveson, who joins Bitsight effective November 27, 2023, will be responsible for engaging CISOs and other senior security leaders across Bitsight's customer base, focusing on EMEA.
  • He will work closely with Bitsight leadership, product, sales, and marketing to provide expert practitioner guidance consistent with Bitsight's cyber risk management data, insights, and solutions.
  • Grieveson joins from AVEVA where he has been Chief Security Officer & SVP Information Security, responsible for all aspects of cyber and physical security, risk management, security governance, and security strategy globally across the organization.
  • "Now, more than ever, having good cyber risk management practices is business-critical for every organization – no matter the industry," said Grieveson.

Bitsight continues strong investment in Europe, appoints security industry veteran Tim Grieveson to SVP, Global Cyber Risk Advisor in EMEA

Retrieved on: 
Thursday, November 9, 2023
Grieveson, Intelligence, United Kingdom, CSO, Face, ICS, CISM, Security, Organization, Intellectual property, Information, CFOS, Research, Senior, CIO, CISO, Risk management, Risk, Ciso, Luminate, Information security, AI, Investment, Communication, AVEVA, Cryptocurrency, Medical device, BitSight

LISBON, Portugal, Nov. 9, 2023 /PRNewswire/ -- Bitsight, a leader in managing and monitoring cyber risk, announced today the appointment of cybersecurity industry veteran Tim Grieveson as Senior Vice President, Global Cyber Risk Advisor. This new addition to Bitsight leadership team follows the relocation last year of founder and CTO Stephen Boyer to lead Bitsight's growth in EMEA; and where the company continues to invest, increasing its headcount by 15% in 2023.

Key Points: 
  • Grieveson, who joins Bitsight effective November 27, 2023, will be responsible for engaging CISOs and other senior security leaders across Bitsight's customer base, focusing on EMEA.
  • He will work closely with Bitsight leadership, product, sales, and marketing to provide expert practitioner guidance consistent with Bitsight's cyber risk management data, insights, and solutions.
  • Grieveson joins from AVEVA where he has been Chief Security Officer & SVP Information Security, responsible for all aspects of cyber and physical security, risk management, security governance, and security strategy globally across the organization.
  • "Now, more than ever, having good cyber risk management practices is business-critical for every organization – no matter the industry," said Grieveson.

Onspring Promotes Nichole Windholz to Chief Information Security Officer

Retrieved on: 
Tuesday, November 7, 2023
FedRAMP, CISSP, Project Management Professional, Nichole, CISM, Business continuity planning, G2 Crowd, CISO, Trust, Risk management, Risk, GRC, Confidentiality, Cerner, Certified Information Systems Security Professional, Cryptocurrency, Capterra

OVERLAND PARK, Kan., Nov. 7, 2023 /PRNewswire/ -- Onspring, a no-code GRC software platform, announced today the promotion of Nichole Windholz to the role of Chief Information Security Officer (CISO). In her new role, Nichole will be responsible for overseeing the company's information security strategy and ensuring the protection of Onspring's data and systems.

Key Points: 
  • OVERLAND PARK, Kan., Nov. 7, 2023 /PRNewswire/ -- Onspring, a no-code GRC software platform , announced today the promotion of Nichole Windholz to the role of Chief Information Security Officer (CISO).
  • In her new role, Nichole will be responsible for overseeing the company's information security strategy and ensuring the protection of Onspring's data and systems.
  • Nichole will also be responsible for staying abreast of the latest security threats and industry trends, ensuring that Onspring remains at the forefront of information security best practices.
  • Nichole has several industry accreditations, including a Certified Information Systems Security Professional (CISSP) license and a Certified Information Security Manager (CISM) license, as well as a Project Management Professional accreditation.

eMoney Advisor Expands Leadership Team with Addition of Jason Novak as Head of Information and Security

Retrieved on: 
Tuesday, October 10, 2023
Payment card industry, Air Movement and Control Association, Muhlenberg College, Certified Information Systems Security Professional, Risk management, CRISC, ISACA, NIST, PCI, Confidentiality, Information, CISM, CISA, ISO, Information technology audit, CISSP, Information technology, AICPA, (ISC)², Information system, ISC, Privacy, McKenna, Management, Audit, Risk

"We're thrilled to have him join our core leadership team and evolve our information and security strategy."

Key Points: 
  • "We're thrilled to have him join our core leadership team and evolve our information and security strategy."
  • Novak joined eMoney in 2014, previously serving as senior vice president of security and IT operations and director of security.
  • Additionally, Novak is certified in Risk and Information Systems Control (CRISC) and is a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), and Certified Information Security Manager (CISM).
  • He is a member of the Information Systems Audit and Control Association (ISACA) and International Information Systems Security Certification Consortium, Inc. (ISC)².

Kovrr Appoints Jack Freund, Ph.D., Distinguished Cybersecurity Risk Quantification Expert as Chief Risk Officer

Retrieved on: 
Thursday, September 14, 2023
Knowledge, Australian Film Institute Global Achievement Award, Informatics, Mohammed bin Rashid Al Maktoum, IAPP, ACM, Disclosure, CIPP, Nova Southeastern University College of Engineering and Computing, ISC, CISA, Research, PMP, Fortune 500, Materiality, Distinguished Fellow of the British Computer Society, ISSA, CGEIT, Organization, TEL, IEEE, Nova Southeastern University, CISM, Risk, ISACA, Information system, Celebrity board director, CRQ, CISSP, Senior Member, CRISC, Calibration, Risk management, Management

TEL AVIV, Israel, Sept. 14, 2023 /PRNewswire-PRWeb/ -- Kovrr, the leading provider of cyber risk quantification (CRQ) solutions, is pleased to announce that it has appointed Freund, a leader in cyber risk measurement and management, as its Chief Risk Officer. His expertise and industry knowledge further strengthen Kovrr's leadership edge in providing solutions that help cybersecurity, risk, and compliance professionals worldwide fortify digital resilience and solidify management programs for new regulations, such as the US SEC's latest disclosure laws.

Key Points: 
  • Co-author of the foundational cyber risk quantification (CRQ) book Measuring and Managing Information Risk: A FAIR Approach, Freund's extensive enterprise experience in cyber risk analysis is an invaluable asset to the company, offering unique and fresh insights for clients leveraging Kovrr's financial risk quantification platform to determine material cyber risks.
  • As Chief Risk Officer at Kovrr, Freund will play a pivotal role in multifaceted business initiatives that significantly enhance the company's broader market product capabilities.
  • His comprehensive background and hands-on experience in cyber risk modeling will propel Kovrr towards pioneering a new industry standard in the financial cyber risk quantification field.
  • "The SEC's July rulings created a fast-approaching deadline for corporations to quantify their cybersecurity vulnerabilities and provide detailed mitigation action plans.