RadarFirst Blog

Andrew Migliore

The CISO’s Guide to Mitigating Enterprise Risk with Privacy by Design

In the good old days, CISOs were all about security. They served as guardians at the gate and protectors of the perimeter. As technology evolved, so did the CISO’s role. One of the most significant impacts on today’s CISOs, however, has nothing to do with mobile devices, malware, or the Internet of Things (IoT).

Read more

To Manage Enterprise Privacy Risks, CISOs Have to Measure It

Chinese philosopher Sun Tzu once said, “Know thy enemy.” When it comes to managing risk, CISOs must know what threatens the privacy and security of their organization’s sensitive data. That means having the ability to identify and measure all the risks lurking throughout the enterprise—no easy feat.

Read more

To Be Great Enterprise Risk Managers, CISOs Need to be Great Collaborators

CISOs face pressure on all sides. From their tenuous position in the company org chart, they’re tasked with managing external and internal risk to their company’s sensitive data. And when a privacy or security incident does strike, often they’re the ones who take the blame

Read more

Busting 3 Dangerous Myths about SaaS Solutions

When evaluating different solutions for incident response management, many factors come into play. Understandably, budget tops the list, closely followed by security, functionality, ease of use, and more. Underlying many of these concerns is the delivery method—should you choose software-as-a-service (SaaS) or an on-premise solution?

Read more

Lions and Tigers and SOC 2—Oh My! Tips for Navigating the SOC 2 Process

At RADAR, we understand how critical it is to keep sensitive information secure. Our clients use RADAR to manage privacy incidents involving Personally Identifiable Information (PII) and Protected Health Information (PHI), and we support this work by following best practices and industry standards for application, network, and infrastructure security.

Read more

Questions to Ask when Considering SaaS vs On-Premise Solutions for Privacy Incident Response

In my career, I’ve led development teams creating both software as a service (SaaS) and installable on-premise solutions, so I am familiar with debates about the realities and myths of SaaS vs. on-premise. Whenever this debate resurfaces, I address the concerns raised as I would any operational initiative: by asking questions and challenging assumptions.

Read more