FortifyData

🔒 Cybersecurity in Higher Ed: Are You Prepared? This week, I had the pleasure of sitting down with Eric Smith Vice President of Technical Services Delivery at  FortifyData to dive deep into the evolving world of cybersecurity in higher education. With nearly 30 years of experience in cybersecurity, Eric brought incredible insights into the unique challenges higher ed institutions face, from ransomware and phishing attacks to the importance of continuous penetration testing and GLBA compliance. We also discussed how Fortify Data is helping universities improve their cybersecurity posture through continuous risk assessment and threat intelligence. Whether you're in higher ed, cybersecurity, or just curious about how to protect sensitive data, this episode is packed with actionable takeaways and real-world success stories. 🎧 Listen now to learn: * Why higher ed is a prime target for cyberattacks * How to prioritize vulnerabilities and measure cybersecurity success * The role of awareness and budgeting in building a strong cybersecurity strategy 👉 Listen here: https://lnkd.in/eNH5fwef #EdTech #Cybersecurity #HigherEducation #FortifyData #RiskManagement #GLBA #Podcast #EdTechConnect

In 2024, there were 585 US healthcare data breaches reported to the HHS OCR according to analysis by SecurityWeek. The HHS recently proposed changes to the HIPAA Security Rule to 'require' actions to strengthen the protection of ePHI. These proposed rules are open for comment through March 7, 2025. We analyzed the proposed security rule changes and think it's great and looking forward to seeing healthcare organizations adopt these before they become required. Those proposals include: - Conduct an inventory of all IT assets. - Map out all the places where electronic information might end up. - Segregate networks to the extent possible. - Encrypt PHI at rest and in transit; - Activate multi-factor authentication; - Conduct a vulnerability scan at least once every six months and a penetration test at least once every 12 months; - Use anti-malware protection; - Remove extraneous software from electronic information systems; - Backup your data and have a data recovery plan. Read more on the proposed rules and what healthcare organizations can start to do to meet these requirements in our whitepaper. Link in the comments.

Third-party data breaches continue to be an all-too-common occurrence, underscoring the importance of cybersecurity programs that include a vendor or third-party cyber risk management component.    We have compiled a list of these 16 major third party breaches in 2024, and discuss what you can do to mitigate the risk of a third-party data breach, including how to incorporate external vulnerability data of vendors into the third-party risk management program at your organization. #thirdpartyriskmanagement #tprm https://lnkd.in/gHdZcGQ2

"What do you mean you 'can't do anything' about third-party risk?" Hear Eric S.'s and our guest Chris Schreiber's insights on the latest Campus CyberCast Podcast. We had a great discussion with Chris about CampusCISO, his new endeavor CampusBridge and his thoughts on higher education cybersecurity. Check out the full episode, link in the comments, where we covered topics of: - sustainable cybersecurity program budgeting in higher education - context driven risk prioritization - ransomware - data breach lawsuits #thirdpartyriskmanagement #cyberriskmanagement #highered #ransomware

The December Edition has arrived: Cyber Threat and Vulnerability Forecast for Higher Education! 🔍 Key Highlights: - 3 Ransomware linked CEVs to be aware of: CVE-2023-28461, CVE-2024-11667, CVE-2024-51378 - 2 European Higher Education Institutions report cyber attacks and data breaches - Overview of a common Higher Education vendor's improvement in cybersecurity The publication of our latest cyber threat and vulnerability forecast, specifically focused on the higher education sector. This report delves into the prominent Known Exploited Vulnerabilities (KEVs) identified within the past 30 days, providing critical insights and actionable intelligence for educational institutions. Higher education institutions are increasingly targeted, making it essential to stay ahead of the curve. Our forecast aims to equip IT security teams that don’t have access to our platform with the knowledge they need to protect their organizations from emerging threats. Link to gain access to the report is in the comments Stay informed, stay secure, and let's work together to safeguard our educational environments.

We are excited to announce that FortifyData has been named a Product of the Year by Campus Technology and THE Journal in cybersecurity risk management! 🎉 It's an honor to share the recognition with the other technologies focused on improving higher education. We're honored to receive this recognition for our innovative cybersecurity solutions for higher education. Thank you to our team, customers, and partners! 🚀 Links to the awards are in the comments! #highereducation #cybersecurity #edtech

We are excited to be at the EDUCAUSE Annual Conference in San Antonio to connect with clients and hear what current challenges security teams have. Swing by booth 5046 to connect with us- we are right by the pickleball court! #EDU24 #highereducation #cyberriskmanagement

We had a great discussion with Isaac Abbs Associate Vice Chancellor of IT and CIO for Pima Community College and FortifyData’s Victor Gamra, CISSP, CISM, PCIP, Eric S. and Marshall England to discuss trending vulnerabilities and threats in Higher Education as highlighted in our recent Cyber Threat and Vulnerability Forecast Report and he shared is perspective on many other topics • Strategies for identifying and addressing critical vulnerabilities. • Tailored solutions for managing third-party risks. • Effective communication strategies with institutional leadership. • Guidance for institutions lacking a dedicated Chief Information Security Officer. • Exploring the impact of artificial intelligence on threat detection and prevention. • The latest volume of phishing tactics he is seeing We look forward to sharing more insights from higher education IT and cybersecurity leaders in the future. #HigherEdSecurity #HigherEducation #VulnerabilityManagement https://lnkd.in/eHAsQbNH

New Cyber Threat and Vulnerability Forecast for Higher Education Released! We are excited to announce the publication of our latest cyber threat and vulnerability forecast, specifically focused on the higher education sector. This report delves into the prominent Known Exploited Vulnerabilities (KEVs) identified within the past 30 days, providing critical insights and actionable intelligence for educational institutions. 🔍 Key Highlights: - Identification of the prominent KEVs identified by our platform in higher education. - Highlights of recent trending threats - Overview of a vendor's improvement in cybersecurity Higher education institutions are increasingly targeted, making it essential to stay ahead of the curve. Our forecast aims to equip IT security teams that don’t have access to our platform with the knowledge they need to protect their organizations from emerging threats. Link to gain access to the report is in the comments Stay informed, stay secure, and let's work together to safeguard our educational environments. #HigherEducation #VulnerabilityManagement #KEVs #InfoSec

🚀 MSSPs, it's your time to shine with the new NIS 2 regulations! Effective from October 17, 2024, NIS 2 broadens its scope to include more sectors and SMEs, and DORA follows on January 13, 2025.   MSSPs are you looking to scale your client coverage and help them meet compliance requirements through continuous monitoring of entities and third parties? FortifyData is helping other MSSPs do this.   • Help SMEs Mature Compliance: Many European SMEs lack resources for NIS 2 compliance and are turning to MSSPs for help. FortifyData’s growing network of MSSPs uses our tech to automate and scale processes.   • Ensure Continuous Vendor Visibility: Enterprises face challenges with numerous third parties to monitor the risks they pose and how do you manage the threat intelligence on those third parties? FortifyData allows MSSPs to continuously monitor and technically validate the data provided on third-party controls and enriches findings with cyber threat intelligence.   • Capitalize on MSSP Growth: "The urgent need for cybersecurity services will drive double-digit growth in Europe over the next five years," says Richard Thurston of IDC. Source: IDC, European Security Services Forecast, 2024-2028   Learn more about the advantages of using FortifyData for NIS 2 compliance management. Schedule a demo today! 📅 #Cybersecurity #MSSP #NIS2 #Compliance   https://lnkd.in/gUNiBbvB