Doug is an industry leader with over 30 years of experience in risk management, cyber security, & communications in the critical infrastructure markets, specializing in building long-term strategies.
Cyber Security
Navigating the New Era of Cybersecurity: The U.S. Securities and Exchange Commission (SEC) takes a bold step with its latest regulations on Cybersecurity Risk Management and Incident Disclosure. Uncover the details of this transformative final rule impacting publicly traded companies.
Cyber Security
Learn how to integrate a robust cybersecurity program into your Enterprise Risk Management, engage a cross-functional team, adopt industry standards, and safeguard against third-party threats. Don't leave your critical infrastructure exposed.
Cyber Security
Explore the technical underpinnings of today's cyber threats, from the inner workings of ransomware to the hidden vulnerabilities in third-party relationships. Dive into real-world incidents and gain insights to fortify your digital defenses.
Cyber Security
October is #CybersecurityAwarenessMonth! Dive into the latest threats to critical infrastructure, from ransomware to supply chain risks.
Cyber Security
Utility CxOs ask the question: how do you quantify the potential financial impact of cyber breaches? This has been a long-standing challenge in the utility sector and one that can lead to frustration for IT and OT leaders who often struggle to justify cyber security budgets. Utility CxOs intuitively understand
Cyber Security
Similar to the cyber security attacks that have been experienced by many electric utilities, physical security threats are also on the rise. As stated in the news, attacks on electrical systems were up by nearly 80% in 2022 compared to the previous year.
Cyber Security
In appreciation for Cyber Security Awareness Month during October, we are excited to provide a three-part article series on Cyber Security Risk Management for Critical Infrastructure Executives and Board Directors. This series will cover the following topics: 1. The Increasingly Threatening Cyber Threat Landscape for Critical Infrastructure Operators 2. Guidelines
Cyber Security
In appreciation for Cyber Security Awareness Month during October, we are excited to provide a three-part article series on Cyber Security Risk Management for Critical Infrastructure Executives and Board Directors. This series will cover the following topics: 1. The Increasingly Threatening Cyber Threat Landscape for Critical Infrastructure Operators 2. Guidelines
Cyber Security
In appreciation for Cyber Security Awareness Month during October, we are excited to provide a three-part article series on Cyber Security Risk Management for Critical Infrastructure Executives and Board Directors. This series will cover the following topics: 1. The Increasingly Threatening Cyber Threat Landscape for Critical Infrastructure Operators 2. Guidelines
Cyber Security
DOE, CISA, NSA, and the FBI urge critical infrastructure organizations, especially Energy Sector organizations, to implement the detection and mitigation recommendations provided in this CSA to detect potential malicious APT activity and harden their ICS/SCADA devices.
Cyber Security
U.S. Congress passed landmark legislation that mandates critical infrastructure providers and federal agencies promptly report cyberattacks and ransomware payments to the Cybersecurity and Infrastructure Security Agency. Read the Fact Sheet here! Fact Sheet Cyber Incident Reporting for CI Act 2021 Draft Fact-Sheet-Cyber-Incident-Reporting-for-CI-Act-2021-Draft.pdf 206 KB download-circle
Cyber Security
For years the security community has viewed internal resources as presenting the greatest cyber risk to an entity. In 2021, shortly on the heels of the much-publicized SolarWinds breach, as well as many other supply chain/third party cyber breaches, it can be argued that supply chain/third parties now
Cyber Security
On July 27th, 2020, the North American Reliability Corporation (NERC) released new reference material for mapping CIP Standards to the NIST Cybersecurity Framework. The latest update from NERC provides much needed guidance on how NERC CIP standards are represented in a NIST profile. Acumen has developed an integrated cybersecurity program