2021, Architecture and CISO - Cyber Security Informer

On the Cybersecurity Jobs Shortage

Schneier on Security

SEPTEMBER 20, 2023

million in 2021, according to Cybersecurity Ventures. The numbers never made sense to me, and Ben Rothke has dug in and explained the reality : …there is not a shortage of security generalists, middle managers, and people who claim to be competent CISOs. The number of unfilled jobs leveled off in 2022, and remains at 3.5

Cybersecurity

Cybersecurity Engineering CISO Architecture

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

Experts warn that organizations must act decisively to protect against this growing threat by implementing Zero Trust architectures, patching vulnerabilities, and strengthening identity security. Prioritize fixing vulnerabilities exploited by Ghost, such as ProxyShell (CVE-2021-34473, CVE-2021-34523, CVE-2021-31207).

Ransomware

Ransomware IoT Encryption Social Engineering

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

Security Boulevard

DECEMBER 30, 2024

In this post, we look at the enforcement actions the SEC has taken and what public company CISOs should do to stay in compliance. million for inadequate disclosure and poor management of significant cybersecurity incidents from 2021. Exposure management can help meet the SEC requirements So what can a CISO do about this?

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

The Security Startup Ecosystem and the Trends Cisco is Watching

Cisco Security

JULY 21, 2021

Today, the Cisco Investments team released their 2021 CISO Survival Guide to Emerging Trends in the Startup Ecosystem. There is a wealth of insightful information for CISOs in this report. Because Zero Trust and XDR are integrated architectural outcomes, the majority of CISOs are anchoring their SASE strategies here.

CISO

CISO Phishing Architecture Marketing

The Rise of Resilience – Security in 2021 and Beyond

Cisco Security

MAY 20, 2021

According to Mick Jenkins, CISO at Brunel University London , “The streamlined platform approach has been quite easy for our security analysts to work with, and we’ve already seen evidence of shortened threat detection times.”. Changing threat landscapes and network architectures have been especially prominent in 2020 and 2021.

Firewall

Firewall Technology CISO Architecture

Alleged Oracle Cloud Breach Triggers Industry Scrutiny, Supply Chain Concerns

SecureWorld News

MARCH 27, 2025

CloudSEK also identified the likely exploit vector as CVE-2021-35587, a known critical vulnerability in Oracle Access Manager. Chad Cragle, CISO at Deepwatch, posed a key question: "If there was no breach, how did a threat actor allegedly upload a file to the Oracle Cloud subdomain?

CISO

CISO Data breaches Encryption Passwords

Meet the 2021 SC Awards judges

SC Magazine

MAY 1, 2021

For 2021, the judges took on a record number of submissions, identifying which products, people and companies stood out during a tumultuous year. Click here to see the full list of 2021 SC Award finalists. David Poe is the vice president of data architecture and shared solutions for United Way Worldwide.

Computers and Electronics

Computers and Electronics Technology Information Security Education

Five considerations for cloud migration, from the House of Representatives CISO

SC Magazine

MAY 18, 2021

“It’s about how you can do your business mission” in a different environment, with its own requirements for protecting data, Vickers said during his talk at the RSA Show’s Cloud Security Alliance CISO Summit. Click here for more coverage of the 2021 RSA Conference. Technical review. Some CSPs have dedicated links.

Cloud Migration

Cloud Migration CISO Firewall Risk

Unmasking the Cracks of Today’s Cyber Defence

Jane Frankland

OCTOBER 31, 2023

In this blog, I’ll be exploring some of the main cracks in current cybersecurity defence approaches specifically around Secure Operation Centres (SOCs) and the value that CISOs and ITDMs are currently getting from their internal teams and third-party providers. Remember 2021? You know about tech complexities and optimisation.

CISO

CISO Threat Detection Cyber threats Cybercrime

GUEST ESSAY: How SIEMS, UEBAs fall short in today’s turbulent threat landscape

The Last Watchdog

JULY 30, 2018

And the cost of damage directly related to cybercrime is adding up, expected to reach $6 trillion by 2021. This has left many CISOs questioning if today’s incumbent cybersecurity solutions are enough. This has left many CISOs to questions whether or not today’s cybersecurity categories are still relevant. New approach needed.

CISO

CISO Cyber Attacks Data collection Cybersecurity

Analytics Insight Announces ‘The 10 Most Influential CISOs to Watch in 2021’

CyberSecurity Insiders

OCTOBER 7, 2021

. & HYDERABAD, India–( BUSINESS WIRE )–Analytics Insight has named ‘ The 10 Most Influential CISOs to Watch in 2021 ’ in its October magazine issue. The magazine issue recognizes ten futuristic CISOs who are reimagining the business world and adopting new ways of working. He holds a Ph.D

CISO

CISO Computers and Electronics Information Security Technology

7 Cloud Security Predictions for 2022 to Help Organizations Protect Their Data

CyberSecurity Insiders

JANUARY 19, 2022

By mid-2021, 51 percent of all organizations had reported a successful data breach, and 61 percent had paid a ransomware attacker to restore frozen data and systems. Seven Cloud Security Predictions CISOs Can Use in 2022. In 2021, 73 percent of cyberattacks involved external cloud assets, up from only 27 percent the prior year.

CISO

CISO Data breaches Artificial Intelligence Digital transformation

Holes in Linux Kernel Could Pose Problems for Red Hat, Ubuntu, Other Distros

eSecurity Planet

JULY 23, 2021

The two flaws – CVE-2021-33909 and CVE-2021-33910, respectively – were disclosed by vulnerability management vendor Qualys in a pair of blogs that outlined the threat to Linux OSes from such companies Red Hat, Ubuntu, Debian and Fedora. Further reading: Top Vulnerability Management Tools for 2021. Red Hat, Others Confirm Flaws.

Accountability

Accountability Big data CISO Architecture

2022 Cybersecurity predictions

CyberSecurity Insiders

NOVEMBER 16, 2021

5G began its disruptive charge in 2021, and this will continue to accelerate in 2022. While in past years, InfoSec was previously the focus and CISOs were the norm – we’re moving to a new cybersecurity world order that expands the role of the CISO to a CSO (Chief Security Officer).

Cybersecurity

Cybersecurity Energy and Utilities Manufacturing Healthcare

Transforming to a Predictive Cyber Defense

McAfee

JUNE 21, 2021

While the vast majority of our customers made the overnight switch—many still need to adopt a cloud-native architecture. A CISO or CSO should be able to look at a single screen and understand in minutes how well protected they are against potential threats. Gartner Identifies Top Security and Risk Management Trends for 2021 (Gartner).

CISO

CISO Cybersecurity CSO Risk

3 AppSec Predictions For 2021

ForAllSecure

JANUARY 6, 2021

For example: A legacy organization may have appsec tools under the CISO budget, and then throw the tool over the fence to engineering for actual day-to-day use. A modern product security team will be involved in the design and architecture to ensure that incident response capabilities are baked in. billion by 2023.

Engineering

Engineering Data privacy CISO Architecture

3 AppSec Predictions For 2021

ForAllSecure

JANUARY 6, 2021

For example: A legacy organization may have appsec tools under the CISO budget, and then throw the tool over the fence to engineering for actual day-to-day use. A modern product security team will be involved in the design and architecture to ensure that incident response capabilities are baked in. billion by 2023.

Engineering

Engineering Data privacy CISO Architecture

Spotlight on Cybersecurity Leaders: Walter Williams

SecureWorld News

APRIL 19, 2023

Walter Williams has more than 20 years of experience in Information Security, and currently resides as the CISO for Monotype. He is the author of "Creating an Information Security Program from Scratch" (2021, CRC Press) and "Security for Service Oriented Architecture" (2014, CRC Press).

Cybersecurity

Cybersecurity Information Security CISO Architecture

AT&T Cybersecurity’s managed SASE service wins CyberSecurity Breakthrough award

CyberSecurity Insiders

NOVEMBER 8, 2021

Most recently AT&T Cybersecurity was recognized by the CyberSecurity Breakthrough Awards, winning the 2021 “Secure Access Service Edge Solution of the Year” award for the AT&T SASE with Fortinet Managed Security Service offering.

Cybersecurity

Cybersecurity Digital transformation Architecture Technology

Cybersecurity Risks of 5G – And How to Control Them

eSecurity Planet

SEPTEMBER 1, 2021

SAP National Security Services (NS2) CISO Ted Wagner told eSecurityPlanet that network slicing “adds complexity, which may lend itself to insecure implementation. To be successful, an attacker must gain access to the 5G Service Based Architecture. 5G Systems Architecture. Policy and Standards. To Be Continued.

Risk

Risk Cybersecurity IoT Wireless

Versa Networks, Apiiro Show VCs Still Focused on Cybersecurity

eSecurity Planet

NOVEMBER 4, 2022

Keep in mind that the typical CISO manages about 75 security tools and applications. SASE is a network architecture that combines SD-WAN with cloud-native security functions such as secure web gateways , cloud access security brokers , firewalls and zero-trust network access , while supporting the dynamic secure access needs of organizations.

Cybersecurity

Cybersecurity Marketing Risk Architecture

The FuzzCon 2021 Real Talks Panel

ForAllSecure

SEPTEMBER 29, 2021

In August 2021, Dr James Ransome -- Veteran CISO, CSO, CPSO and Author -- hosted a fireside chat at FuzzCon 2021. When culture and mindset is designed with this architecture in mind, incremental change can be initiated and with momentum. Does it give me credibility with my peers? Organizational.

CSO

CSO Risk CISO Architecture

Cisco Secure Endpoint Shines in the 2022 MITRE® Engenuity ATT&CK Evaluation

Cisco Security

APRIL 19, 2022

Cisco Secure Endpoint and MITRE ATT&CK: Why it matters to CISOs right now. Meeting security head-on requires adopting a comprehensive cloud-based endpoint protection solution for your secure remote worker, SASE, XDR, and Zero Trust architecture. First Place in Radacti’s 2021 Endpoint Security Market Quadrant.

Software

Software CISO Architecture Healthcare

Top MDR Services for 2021

eSecurity Planet

MAY 5, 2021

Here is our list of the top MDR services for 2021. Key differentiators: Cloud-native architecture for use with cloud systems. Then in 2021 it acquired the Israeli Kubernetes security company Alcide.IO Expel was rated the leader in MDR in the Forrester Wave Managed Detection and Response Q1 2021 report. Top MDR services.

Threat Detection

Threat Detection Technology Artificial Intelligence Engineering

My 2020 Predictions Revisited: What Worked, What Didn't

Duo's Security Blog

JANUARY 8, 2021

However, a Google search turned up such proclamations for 2018, 2019, 2020, and even 2021. User and entity behavior analytics (UEBA) made significant strides as one way of determining trust in a zero-trust architecture. I’m tempted to say 2020 was the year of zero trust. Well, it was. But then it wasn’t.

Digital transformation

Digital transformation Phishing Passwords Authentication

SASE, ZTNA and XDR market trends must work together for simplified security

Cisco Security

MARCH 29, 2021

And the team at 451 Research shared their thoughts on how these trends are expected to reshape security in 2021 and beyond – click here to read it now. In this context, ZTNA and SASE work together by converging a no-trust access strategy with an architecture that represents the evolving IT environment.

Marketing

Marketing Architecture Digital transformation Technology

Democratizing Threat Hunting: How to Make it Happen for Everyone

Cisco Security

FEBRUARY 16, 2021

However, when you are assigning architectural controls to mitigate that risk, it lacks validation. Recommended reading (and listening): Access the full Cisco 2021 Security Outcomes Study. Threat hunting is part the next evolution of risk management.”. In fact, this report will change how we think about running infosec programs.”.

Risk

Risk InfoSec Technology CISO

Building confidence in employee identity protection is core to zero trust security

Thales Cloud Protection & Licensing

OCTOBER 21, 2021

Thu, 10/21/2021 - 06:14. The Verizon 2021 Data Breach Investigations Report (DBIR) indicates just that - 61% of data breaches involved some sort of credentials. Organizations where the CISO has greater ownership of identity and access management have progressed toward fully implementing identity-related security outcomes.

CISO

CISO Cloud Migration IoT Digital transformation

Seven Massachusetts Cities Join Forces to Bolster Cybersecurity Posture

SecureWorld News

MAY 16, 2023

The cities of Middleton, Danvers, Wenham, Manchester-by-the-Sea, Essex, Hamilton, and Topsfield formed the North Shore IT Collaborative in 2021 with the goal of their collective power being stronger than what they can manage alone. By banding together, these entities can accomplish much more than going it alone.

Cybersecurity

Cybersecurity Insurance Cyber Risk CISO

Pro-Russian LockBit 3.0 Claims Responsibility for Attack on Japan Port

SecureWorld News

JULY 6, 2023

Its cargo throughput in 2021 reached 177.79 Joseph Carson, Chief Security Scientist and Advisory CISO at Delinea, said: "Ransomware attacks have a far-reaching effect, particularly when a major part of the global supply chain is targeted. Its suppliers, including Denso Corp., Aisin Corp., and Toyota Industries Corp.,

Ransomware

Ransomware Cybercrime Password Management Risk

AT&T Business Summit is virtual Oct. 27-28 and free!

CyberSecurity Insiders

SEPTEMBER 27, 2021

Join us from October 27-28, 2021 by registering. Be prepared to hear from the same great visionaries, gain access to global decision-makers, and dive into the technology that is shaping the future. We hope that you join us as we take this journey together. Event is FREE! Speakers: Todd Waskelis and Dan Solero.

Digital transformation

Digital transformation Ransomware Technology Cybersecurity

A roadmap for developing a secure enterprise cloud operating model

SC Magazine

JUNE 4, 2021

Implement reference architectures based on the security patterns. CISOs need to lead from the front and take an active role in the evangelization and implementation of cloud security controls under the auspices of a secure enterprise cloud operating model. Design core cloud security patterns that comply with the policy and standards.

Penetration Testing

Penetration Testing Technology DNS CISO

To Achieve Zero Trust Security, Trust The Human Element

Thales Cloud Protection & Licensing

MAY 6, 2021

Thu, 05/06/2021 - 08:41. I would strongly advise anyone who is contemplating a move to Zero Trust models or architecture to read and consider the many valuable points made in the current documents, such as NIST Special Publication 800-207. To Achieve Zero Trust Security, Trust The Human Element.

Social Engineering

Social Engineering Authentication Passwords Technology

Behind the Scenes: A Conversation with Virsec’s CTO of the Year

Security Boulevard

JUNE 10, 2021

Several weeks ago, we were thrilled to learn that our Founder and Chief Technology Officer, Satya Gupta, was named CTO of the Year in the 2021 Global InfoSec Awards. . Beyond that, he drives the basis of our creations and holds 48 patents in complex firmware architecture with products deployed to hundreds of thousands of users.

Marketing

Marketing InfoSec CISO Architecture

State auditor’s office clashes with file transfer service provider after breach

SC Magazine

FEBRUARY 2, 2021

25, 2021, that Accellion confirmed to SAO that SAO files were subject to this attack and provided the information needed for SAO to begin to identify which data files were impacted and individuals whose personal information is in those files.” 12 bug notification, and it was “not until the week of Jan.

Government

Government Media CISO Encryption

Zero Trust Is a Journey and Businesses Have Many Rivers to Cross

Thales Cloud Protection & Licensing

MARCH 31, 2021

Wed, 03/31/2021 - 06:51. Moving to a Zero Trust architecture would help with this model if setup in a single sign-on, VPN-less architecture. This leads the CISO/CIO either into rush decisions or conversely into an analysis-paralysis phase, leading to unfavourable outcomes or no outcomes at all!

Digital transformation

Digital transformation VPN Technology Architecture

5 Application Security Standards You Should Know

Security Boulevard

DECEMBER 21, 2021

A July 2021 report from F5 Labs gives insight into how malicious actors use vulnerabilities in applications as part of their attacks and the impact it has on businesses, noting: 56% of the largest incidents in the last 5 years were linked to a web application security issue. Apply secure design principles in application architectures.

Software

Software Architecture Risk Penetration Testing

Breaking: Apple Sues 'Abusive State-Actor' NSO Group

SecureWorld News

NOVEMBER 23, 2021

And Apple's Head of Security Engineering and Architecture was extremely blunt when he announced the lawsuit on Twitter. November 23, 2021. Related with Rebecca Rakoski: Suing the CISO Podcast ]. link] — Ivan Krsti? NSO Group Publicly Denounced by Privacy Advocates. SecureWorld News covered the recent U.S.

Spyware

Spyware Surveillance Engineering Software

NetApp ONTAP Becomes First Enterprise Storage Platform to Receive Validation from NSA for Security and Encryption

CyberSecurity Insiders

DECEMBER 15, 2021

IT consulting firm, Accenture, recently shared the results of its State of Cybersecurity Resilience 2021 report, which found that there were on average 270 attacks per company over this year, a 31 percent increase from 2020.

Encryption

Encryption Energy and Utilities Digital transformation Software

Verdict is in: Forward-thinking security controls prepared Jersey Courts for COVID

SC Magazine

MAY 18, 2021

For many companies, “if security was done during the pandemic, it was probably too late,” explained McCarthy’s colleague Sajed Naseem, CISO of New Jersey Courts. Click here for more coverage of the 2021 RSA Conference. Click here for more coverage of the 2021 RSA Conference.

VPN

VPN Encryption Authentication CISO

Hunters Secures $68 Million in Series C Funding to Become a Leading Security Operations Platform

CyberSecurity Insiders

JANUARY 25, 2022

2021 was a huge year for Hunters as the company grew ARR by more than 4x, and we are excited for them to build on this momentum in the coming year.”. Hunters was recognized as the SC Media 2021 Trust Award Finalist for Best Threat Detection Technology and winner of the CISO Choice Awards: Security Analytics and Security Operations.

Marketing

Marketing CISO Engineering Media

RSA 2020 Recap: New image, new approach, new integrated solutions

McAfee

MARCH 9, 2020

Rajiv Gupta, SVP of McAfee’s Cloud Business Unit, and Tony Taylor, CISO of Land O’Lakes, took to the CSA keynote stage to talk about Land O’Lakes’ journey to the cloud. We hope to see you again in 2021! They’re counting on quantum to do that in the future.” Grobman explained during his RSA keynote. Journey to the cloud.

Technology

Technology CISO Architecture Cyber threats

Lapsus$ Attack on Okta: How to Evaluate the Impact to your Organization

Security Boulevard

MARCH 24, 2022

The first known extortion attempt by Lapsus$ included the Brazil Health Ministry in December of 2021. According to a blog penned by the Okta CISO, here’s what happened: On January 20 2022, a third-party customer support engineer working for Okta had their account compromised by Lapsus$. What happened in the Okta attack?

Accountability

Accountability Passwords Authentication Social Engineering

The Road to Zero Trust

Thales Cloud Protection & Licensing

APRIL 21, 2021

Thu, 04/22/2021 - 06:36. One of the biggest challenges is likely to be, how you actually make the transition to a Zero Trust model whilst still having to maintain investment from your previous IT security tools and architectures, which were likely built around more perimeter-based models. The Road to Zero Trust.

Risk

Risk Technology Mobile Digital transformation

On the Cybersecurity Jobs Shortage

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

Webinars

Trending Sources

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

Webinars

The Security Startup Ecosystem and the Trends Cisco is Watching

The Rise of Resilience – Security in 2021 and Beyond

Alleged Oracle Cloud Breach Triggers Industry Scrutiny, Supply Chain Concerns

Meet the 2021 SC Awards judges

Five considerations for cloud migration, from the House of Representatives CISO

Unmasking the Cracks of Today’s Cyber Defence

GUEST ESSAY: How SIEMS, UEBAs fall short in today’s turbulent threat landscape

Analytics Insight Announces ‘The 10 Most Influential CISOs to Watch in 2021’

7 Cloud Security Predictions for 2022 to Help Organizations Protect Their Data

Holes in Linux Kernel Could Pose Problems for Red Hat, Ubuntu, Other Distros

2022 Cybersecurity predictions

Transforming to a Predictive Cyber Defense

3 AppSec Predictions For 2021

3 AppSec Predictions For 2021

Spotlight on Cybersecurity Leaders: Walter Williams

AT&T Cybersecurity’s managed SASE service wins CyberSecurity Breakthrough award

Cybersecurity Risks of 5G – And How to Control Them

Versa Networks, Apiiro Show VCs Still Focused on Cybersecurity

The FuzzCon 2021 Real Talks Panel

Cisco Secure Endpoint Shines in the 2022 MITRE® Engenuity ATT&CK Evaluation

Top MDR Services for 2021

My 2020 Predictions Revisited: What Worked, What Didn't

SASE, ZTNA and XDR market trends must work together for simplified security

Democratizing Threat Hunting: How to Make it Happen for Everyone

Building confidence in employee identity protection is core to zero trust security

Seven Massachusetts Cities Join Forces to Bolster Cybersecurity Posture

Pro-Russian LockBit 3.0 Claims Responsibility for Attack on Japan Port

AT&T Business Summit is virtual Oct. 27-28 and free!

A roadmap for developing a secure enterprise cloud operating model

To Achieve Zero Trust Security, Trust The Human Element

Behind the Scenes: A Conversation with Virsec’s CTO of the Year

State auditor’s office clashes with file transfer service provider after breach

Zero Trust Is a Journey and Businesses Have Many Rivers to Cross

5 Application Security Standards You Should Know

Breaking: Apple Sues 'Abusive State-Actor' NSO Group

NetApp ONTAP Becomes First Enterprise Storage Platform to Receive Validation from NSA for Security and Encryption

Verdict is in: Forward-thinking security controls prepared Jersey Courts for COVID

Hunters Secures $68 Million in Series C Funding to Become a Leading Security Operations Platform

RSA 2020 Recap: New image, new approach, new integrated solutions

Lapsus$ Attack on Okta: How to Evaluate the Impact to your Organization

The Road to Zero Trust

Stay Connected