The FTI Cybersecurity Briefing

What's Trending

The NIST Cybersecurity Framework 2.0

The National Institute of Standards and Technology (NIST) released the public draft of the NIST Cybersecurity Framework (CSF) 2.0 on August 8, 2023. The draft makes updates to the CSF 1.1 to address current and future cybersecurity challenges faced by organizations, and to make it easier for organizations to implement and use the framework. NIST is seeking feedback on the draft through November 4, 2023, and plans to publish the final version of the CSF 2.0 in early 2024.

Learn More >>

Threat Intelligence Report

Ivanti Zero-Day

Advanced persistent threat (APT) actors are exploiting a zero-day vulnerability in Ivanti Endpoint
Manager Mobile (EPMM), gaining unauthorized access through application programming interface (API) paths. This allows access to personally identifiable information (PII) and the ability to implement configuration changes. The FTI Cybersecurity team has created a threat intelligence report regarding this critical vulnerability.

Learn More >>

Service Spotlight

UK & EU Cybersecurity Compliance Services

FTI Cybersecurity's compliance services are focused on ensuring that your organization meets its unique compliance requirements while maximizing the return on cybersecurity investment. The web of overlapping cybersecurity compliance and regulatory regimes across the UK and EU can be daunting, but FTI Cybersecurity experts have unrivaled experience in regulation and regulatory matters, and can assist your organization with assessments, frameworks, strategies, and solutions for compliance.

Learn More >>

Media Mentions

Former FBI Assistant Director in Charge and Cybersecurity Expert Michael J. Driscoll Joins FTI Consulting

FTI Consulting announced the appointment of Michael J. Driscoll as a Senior Managing Director within the firm’s Cybersecurity practice. Mike, who brings his strong leadership background to the Cybersecurity team in New York, joins with more than 26 years of experience in cybersecurity, intelligence, criminal and national security.

Read More >>

How to Reassure the C-Suite During a Cybersecurity Crisis

Jamie Singer comments on the importance of a communications playbook to ensure message consistency across channels following a cybersecurity incident in this article for ITPro Today.

Read More >>

Online Scams: 3 Rules to Prevent Being Conned

Senior Managing Director Mike Driscoll sat down with CBS News to discuss key tips for avoiding cybersecurity scams.

Watch Now >>

What is the EU’s Cyber Resilience Act (CRA)?

In this article for ITPro, Head of Cybersecurity for EMEA and APAC David Dunn comments on how the EU’s Cyber Resilience Act (CRA) will help organizations proactively identify and address potential vulnerabilities.

Read More >>

Thought Leadership

CHAPTER | Reducing Cyber and Data Risk Through Incident Readiness and a Culture of Compliance

In the fourth edition of The Guide to Corporate Compliance for Latin Lawyer, Jordan Rae Kelly, Antonio Gesteira, and Adriana Prado authored a chapter that discusses the increasing pressure faced by organizations in Latin America, and why business leaders must take targeted action to strengthen their protections against a constantly evolving cyber threat landscape.

Read More >>

ARTICLE | The SEC's Revised Cybersecurity Rules Have Global Reach

On July 26, 2023, the Securities and Exchange Commission (SEC) adopted amendments to its 2018 rules on cybersecurity risk, management, strategy, governance and incidence disclosure by public companies. In this article, Jordan Rae Kelly and Adriana Villasenor provide insight into the global implications of the new rules, with contributions from Kyung Kim.

Read More >>

In this article for Corporate Compliance Insights, Jordan Rae Kelly and Adriana Villasenor outline the ways in which the new Security and Exchange Commission (SEC) cybersecurity rules extend globally, and how international organizations should start preparing for their impact.

Read More >>

ARTICLE | Mitigating AI Cybersecurity Risks From the Top Down

In this Expert Analysis for Law360, FTI Cybersecurity experts Tracy Wilkison and Erin Burke, along with Eric Vandevelde from Gibson Dunn & Crutcher LLP, discuss the cybersecurity threats and other risks associated with artificial intelligence and the importance of secure implementation of these technologies.

Read More >>

ARTICLE | Advertising Analytics and Pixel Tracking in Health Care

Brian Boetig, Andrew Shaxted, and Jamie Singer discuss the increased cybersecurity threats and regulatory risks for the health care industry associated with advertising analytics trackers and pixels in this article for the American Health Law Association.

Read More >>

ARTICLE | It Isn't Over Until It's Over: Best Practices for Mitigating Ongoing Risk in the Aftermath of a Cybersecurity Incident

When it comes to incident response, significant attention and resources are devoted to best practices that are necessary before and during an incident. However, mistakes in the aftermath are often overlooked. In this article for Law360, Kyung Kim and Partners from Goodwin Procter to explore common mistakes to avoid following a cybersecurity incident.

Read More >>

ARTICLE | Breaking Down Washington State's My Health, My Data Act

Washington state's The My Health, My Data Act (MHMDA) aims to prevent regulated entities from sharing protected health information without proper consumer permission or an established necessity. In this article, Brian Boetig and Ryan Smyth share how organizations can prepare for the regulation.

Read More >>

View All Insights

Recent Events

Aug 2-4
AMERICAS

8 Congresso Compliance Across Americas

Carlos Araujo, Jr.

Juliana Palma

Renato Akamine

Aug 7-10
AMERICAS

Black Hat 2023

Matt McManus

Pat Bolger

Erin Burke

Lexie Van Den Heuvel

Aug 10-13
AMERICAS

Def Con 31

Matt McManus

Pat Bolger

Erin Burke

Lexie Van Den Heuvel

Aug 15
AMERICAS

Co-Action Specialty Insurance Board of Directors Meeting

Brad Carpenter

Aug 16
AMERICAS

Bloomberg Law Webinar

SEC's New Cybersecurity Governance Rule: How Companies Can Prepare Their Board for Change

Jordan Rae Kelly

Aug 23
AMERICAS

FBI NY Citizens Academy Alumni Association Rooftop Fundraiser

Mike Driscoll

Aug 31
AMERICAS

Georgetown Masters in Finance in New York

Mike Driscoll

Upcoming Events

Sept 7
EMEA

CISO Happy Hour

Simon Onyons

Sept 12-13
EMEA

Central Banking Training on Innovations and Resilience

Simon Onyons

Sept 12-14
AMERICAS

Mind the Sec

Carlos Araujo, Jr.

Sept 13
APAC

Austcham - FTI CEO Risk Forum: Session 1

Protecting Your Organization Against Cyber Offensive AI

Eva Kwok

Sept 14
AMERICAS

CBA 2023 Bankers Summit

Mitigation Fraud Strategies & Elder Abuse

Enrique Alvarez

Sept 18-20
EMEA

IPEM Paris

Thomas Hutin

Sept 18-21
AMERICAS

SIBOS 2023

Adriana Villasenor

Sept 20
AMERICAS

JP Morgan Payments Innovation Forum

Catch Me If You Can: Cybersecurity Threats and Bad Actors

Anthony J. Ferrante

Sept 22
AMERICAS

Greenberg Traurig's 2023 Summit for Corporate Governance

A Board Simulation: Bringing the Team Together to Address a Corporate Crisis

Jordan Rae Kelly

Sept 26
AMERICAS

AUSA Reunion

Brian Boetig

Tracy Wilkison

Enrique Alvarez

Gain insights and stay informed on FTI Cybersecurity: Visit the FTI Consulting email Preference Center to view or edit your subscriptions.

Preference Center

Experts with Impact

FTI Consulting is an independent global business advisory firm dedicated to helping organizations manage change, mitigate risk and resolve disputes: financial, legal, operational, political & regulatory, reputational and transactional. FTI Consulting professionals, located in all major business centers throughout the world, work closely with clients to anticipate, illuminate and overcome complex business challenges and opportunities. For more information, visit www.fticonsulting.com.

Manage My Email Preferences | Unsubscribe