Architecture and CISO - Cyber Security Informer

From Pest Control to Cybersecurity: What CISOs Can Learn from Pestie

SecureWorld News

JANUARY 21, 2025

As I was spraying Pestiea DIY pest spray subscription servicearound my home this weekend (sun's out, spray gun's out), I was thinking about the correlation of this home perimeter defense to what CISOs and their teams do to keep their organizations secure. CISO takeaway: Effective cybersecurity isn't a generic solution.

CISO

CISO Cybersecurity Cyber threats Education

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Well see CISOs increasingly demand answers about why models flag certain malicious activity and how that activity is impactful at enterprise scale. With adversaries destroying backups to increase extortion payouts, recovery will grow harder and slower, emphasizing the need for stronger security controls and architecture. The hard part?

Cyber threats

Cyber threats CISO IoT Phishing

Cybersecurity Mesh Architecture checklist for CISOs

Security Boulevard

FEBRUARY 20, 2023

The post Cybersecurity Mesh Architecture checklist for CISOs appeared first on Security Boulevard. CSMA improves a company's security posture without adding specialized products that operate in silos. Unify your products so they work as a security ecosystem.

Architecture

Architecture CISO Cybersecurity

CISOs Say Application Security is Broken

Security Boulevard

JUNE 13, 2021

Nearly three-quarters of CISOs aren’t confident that code in cloud-native architectures is free of vulnerabilities before it goes into production, according to research from Dynatrace. The post CISOs Say Application Security is Broken appeared first on Security Boulevard.

CISO

CISO Architecture Cybersecurity

Top 9 Trends In Cybersecurity Careers for 2025

eSecurity Planet

OCTOBER 18, 2024

Knowledge of cloud systems architecture and how it interacts with various devices is invaluable. Chief Information Security Officer (CISO) As Chief Information Security Officer, you’ve arrived at the C-Suite. The job is stressful, and there’s a lot of churn: CISOs last about 18-26 months, unlike other C-suite occupants (4.9

Cybersecurity

Cybersecurity Artificial Intelligence Penetration Testing CISO

Forrester: CISO Budgets Not Immune to Cuts

Security Boulevard

AUGUST 30, 2022

Still, a new report from Forrester Research warned that CISOs mustn’t. The post Forrester: CISO Budgets Not Immune to Cuts appeared first on Security Boulevard.

CISO

CISO Architecture Technology Cybersecurity

On the Cybersecurity Jobs Shortage

Schneier on Security

SEPTEMBER 20, 2023

The numbers never made sense to me, and Ben Rothke has dug in and explained the reality : …there is not a shortage of security generalists, middle managers, and people who claim to be competent CISOs. Nor is there a shortage of thought leaders, advisors, or self-proclaimed cyber subject matter experts.

Cybersecurity

Cybersecurity CISO Engineering Architecture

MY TAKE: As network perimeters shift and ecosystems blend, the role of MSSPs solidifies

The Last Watchdog

JULY 19, 2023

I had the chance to discuss this with Shinichi Yokohama, NTT Global CISO and John Petrie, Counselor to the NTT Global CISO, at RSA Conference 2023. Towards zero-trust So how should CISOs steer their organizations? the architecture must come first, and then they can decide which product choices they would prefer.”

CISO

CISO Architecture Cloud Migration Network Security

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

The Last Watchdog

DECEMBER 18, 2024

FIPS-203 enables legal PQC deployment, prompting CISOs to overhaul encryption strategies. Tipirneni Ratan Tipirneni , CEO, Tigera To maximize GenAI’s value, enterprises will customize models using proprietary data and Retrieval-Augmented Generation (RAG) architectures tailored to their specific needs.

Risk

Risk Threat Detection Technology Phishing

5 ways to tell you are not CISO material

CSO Magazine

MARCH 28, 2023

As the role of the CISO continues to grow in importance and gain more responsibility, many cybersecurity practitioners may wonder if they have what it takes to be successful in the role. Technical expertise and experience are obviously huge assets. They know how to make quick decisions and drive change in the organization.

CISO

CISO Architecture Technology Cybersecurity

GUEST ESSAY: Cisco-Splunk merger will boost Snowflake – here’s how security teams can benefit.

The Last Watchdog

OCTOBER 23, 2023

Splunk’s inability to migrate to a modern cloud-native architecture makes it difficult to take advantage of these cost-saving benefits or implement advanced data science use cases critical for threat detection. Influxes of data ingestion and the flat architecture of data lakes have led to difficulties in extracting value from repositories.

Architecture

Architecture Threat Detection Engineering Data collection

Battling Burnout: A Growing Concern for CISOs and Security Professionals

SecureWorld News

JUNE 20, 2024

As defenders of digital assets, Chief Information Security Officers (CISOs) and cybersecurity professionals face immense pressure, often leading to burnout. Key findings from the report include: 90% of CISOs are concerned about stress, fatigue, or burnout affecting their team's well-being.

CISO

CISO Cybersecurity Technology Digital transformation

The Surveillance Invasion: IoT and Smart Devices Stealing Corporate Secrets

Security Boulevard

MAY 2, 2024

Chris Clements, VP of Solutions Architecture at CISO Global “Hey Alexa, are you stealing my company’s data?” We have come to […] The post The Surveillance Invasion: IoT and Smart Devices Stealing Corporate Secrets appeared first on CISO Global.

Surveillance

Surveillance IoT CISO Data collection

ConnectWise Quietly Patches Flaw That Helps Phishers

Krebs on Security

DECEMBER 1, 2022

.” However, LastPass maintains that its “customer passwords remain safely encrypted due to LastPass’s Zero Knowledge architecture.” But that same architecture theoretically means that hackers who might break into LastPass’s networks can’t access that information either. Update, 7:25 p.m.

Phishing

Phishing Architecture Passwords Accountability

What’s It Like for a New CISO?

Lenny Zeltser

FEBRUARY 13, 2020

As of this writing, I’ve spent six months in the role of Chief Information Security Officer (CISO) at Axonius , a rapidly growing technology company. Our IT infrastructure is consistent zero-trust architecture principles , so it made sense to treat identity as the focal point of many security decisions.

CISO

CISO Information Security Architecture Technology

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

Security Boulevard

DECEMBER 30, 2024

In this post, we look at the enforcement actions the SEC has taken and what public company CISOs should do to stay in compliance. Exposure management can help meet the SEC requirements So what can a CISO do about this? This pushed C-level executives and boards to adopt measures for compliance and transparency. and where are we at risk?

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

Why do CISOs Keep Quitting on Florida?

SecureWorld News

AUGUST 25, 2021

Chief Information Security Officers (CISO) have the luxury of being an incredibly hot commodity, so they can pretty much pick and choose where they work, as they are almost guaranteed to have a job waiting for them somewhere. Cybersecurity officials struggle in Florida. DeSantis appointed former state Rep. Cybersecurity should be our No.

CISO

CISO Cybersecurity Government Technology

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

Experts warn that organizations must act decisively to protect against this growing threat by implementing Zero Trust architectures, patching vulnerabilities, and strengthening identity security. This highlights the importance of least-privilege access models and Just-in-Time (JIT) access controls to limit attack surfaces.

Ransomware

Ransomware IoT Encryption Social Engineering

Top 5 Cyber Predictions for 2024: A CISO Perspective

Security Boulevard

JANUARY 2, 2024

The fall of VPNs and firewalls The cyberthreats and trends of 2023 send a clear message to organizations: they must evolve their security strategies to the times and embrace a zero trust architecture. The post Top 5 Cyber Predictions for 2024: A CISO Perspective appeared first on Security Boulevard.

CISO

CISO Social Engineering Architecture Ransomware

Alleged Oracle Cloud Breach Triggers Industry Scrutiny, Supply Chain Concerns

SecureWorld News

MARCH 27, 2025

Chad Cragle, CISO at Deepwatch, posed a key question: "If there was no breach, how did a threat actor allegedly upload a file to the Oracle Cloud subdomain? Heath Renfrow, CISO and Co-founder at Fenix24, pointed to a common blind spot: "The exploitation of legacy systems and unpatched vulnerabilities.

CISO

CISO Data breaches Encryption Passwords

The Security Startup Ecosystem and the Trends Cisco is Watching

Cisco Security

JULY 21, 2021

Today, the Cisco Investments team released their 2021 CISO Survival Guide to Emerging Trends in the Startup Ecosystem. There is a wealth of insightful information for CISOs in this report. Because Zero Trust and XDR are integrated architectural outcomes, the majority of CISOs are anchoring their SASE strategies here.

CISO

CISO Phishing Architecture Marketing

Let’s Talk Cybersecurity on the Agent of Influence Podcast

NetSpi Executives

MARCH 25, 2025

Become the Influence A NetSPI podcast, Agent of Influence features experts in the cybersecurity field as they engage in conversation with Nabil Hannan, NetSPI Field CISO and podcast host, about the life and challenges as a leader in cybersecurity. Join Nabil Hannan, NetSPI Field CISO, on the Agent of Influence podcast.

Cybersecurity

Cybersecurity CISO Penetration Testing Financial Services

Cybersecurity Insights with Contrast CISO David Lindner | 12/06/24

Security Boulevard

DECEMBER 6, 2024

Insight #1: The NIST CVE backlog is hogtying CISOs The NIST CVE backlog is a digital plague crippling a critical control layer in an organization's cybersecurity architecture. CISOs and security leaders are left scrambling, their defenses undermined by the very agency tasked with providing threat intelligence.

CISO

CISO Cybersecurity Architecture Firewall

BSides Knoxville 2023 – Hudson Bush – Enterprise Security Architecture Isn’t Just For Enterprises Anymore

Security Boulevard

JULY 12, 2023

Permalink The post BSides Knoxville 2023 – Hudson Bush – Enterprise Security Architecture Isn’t Just For Enterprises Anymore appeared first on Security Boulevard. Our thanks to BSides Knoxville for publishing their presenter’s outstanding BSides Knoxville 2023 content on the organizations’ YouTube channel.

Architecture

Architecture CISO Education Risk

GUEST ESSAY: 5 tips for ‘de-risking’ work scenarios that require accessing personal data

The Last Watchdog

JANUARY 10, 2022

Planning required processes and security components when initially building your architecture. About the essayist: Alexey Kessenikh is CISO at Soveren , which supplies automated detection and remediation solutions to manage personal data protection and compliance risks. Helping ensure data privacy. Unique IDs.

Risk

Risk Encryption Data privacy CISO

People Skills Outweigh Technical Prowess in the Best Security Leaders

SecureWorld News

OCTOBER 5, 2023

Michael Gregg, the CISO for the State of North Dakota, speaks across the country, including keynoting at SecureWorld Detroit on Sep. A recent blog by Frank Domizio titled " The CISO Role: Beyond Technology " explores exactly what I am talking about. That's a soft skill that even the most adept CISOs are still trying to master.

CISO

CISO Risk Government Cybersecurity

How Zero Trust helps CIOs and CTOs in Corporate Environments

CyberSecurity Insiders

JUNE 11, 2023

Zero Trust is a cybersecurity framework that can greatly support Chief Information Security Officers (CISOs) and Chief Technology Officers (CTOs) in their roles of securing organizational systems and data. Simplified Compliance: Compliance with industry regulations and data protection laws is a significant concern for CISOs and CTOs.

CISO

CISO Technology Architecture Cybersecurity

The Power of Relationships: Executive Buy-In and Security Culture for Bolstering Resilience

Cisco Security

FEBRUARY 6, 2023

” This is the question every CISO asks about every new program. It’s hard to imagine a more vital undertaking for CISOs. And as with all initiatives, CISOs always want to know where to begin. Experienced CISOs know that these factors can make or break security initiatives. “Where do we start?”

CISO

CISO Architecture Mobile Cybersecurity

Five considerations for cloud migration, from the House of Representatives CISO

SC Magazine

MAY 18, 2021

“It’s about how you can do your business mission” in a different environment, with its own requirements for protecting data, Vickers said during his talk at the RSA Show’s Cloud Security Alliance CISO Summit. Whenever a company establishes a connection to a CSP, it has to consider whether to change its architecture.

Cloud Migration

Cloud Migration CISO Firewall Risk

CISO workshop slides

Notice Bored

AUGUST 5, 2022

A glossy, nicely-constructed and detailed PowerPoint slide deck by Microsoft Security caught my beady this morning.

CISO

CISO Risk Artificial Intelligence Marketing

New SEI CERT chief and first ever federal CISO: old cybersecurity models have ‘been overcome’

SC Magazine

APRIL 30, 2021

That includes the architectures, the computing platforms, the algorithms and the people and the process as well. We would build our architectures with that perimeter defense model where we’re going to have a firewall and we’re going to deny everything except for those things that we want to let through. And that’s been overcome.

CISO

CISO Cybersecurity Artificial Intelligence Government

Ransomware Resiliency for Storage & Backup: Trends, Threats & Tips

CyberSecurity Insiders

AUGUST 28, 2022

A few years ago, very few CISOs thought that storage & backups were important. This has driven CISOs to look again at potential holes in their safety nets, by reviewing their storage, backup and recovery strategies. “In CISOs must learn the ropes and must stop pushing it off as someone else’s responsibility. “I

Backups

Backups Ransomware CISO Risk

Unmasking the Cracks of Today’s Cyber Defence

Jane Frankland

OCTOBER 31, 2023

In this blog, I’ll be exploring some of the main cracks in current cybersecurity defence approaches specifically around Secure Operation Centres (SOCs) and the value that CISOs and ITDMs are currently getting from their internal teams and third-party providers. You know economic downturns incentivise cybercriminals.

CISO

CISO Threat Detection Cyber threats Cybercrime

How to drive a successful, proactive tech refresh

Cisco Security

JANUARY 12, 2022

And one can safely assume that very few CISOs are so flush with team members that they are hunting for something for them to do! Figure 1: Effect of IT architecture traits on tech refresh performance. For a more effective refresh strategy, organizations should adopt a modern, consolidated, cloud-based architecture.

Architecture

Architecture Technology CISO Marketing

Nurturing Our Cyber Talent

IT Security Guru

SEPTEMBER 25, 2023

The IT Security Guru caught up with Tarnveer Singh a CISO and finalist in the Security Serious Unsung Heroes Awards 2023 for his thoughts on how to get more professionals involved in the cybersecurity industry: There are many ways we can inspire new cybersecurity professionals to join our industry. We must reduce barriers to entry.

CISO

CISO Identity Theft Cybercrime Cybersecurity

New SDP 2.0 specification facilitates zero-trust maturity

CSO Magazine

APRIL 26, 2022

SDP ties closely to the pursuit of implementing a zero-trust architecture, and what follows are the key aspects of SDP 2.0 in zero-trust environments that CISOs and other security leaders need to know. To read this article in full, please click here

CISO

CISO Architecture Software

BSides Knoxville 2023 – Patterson Cake – 10 Things I Wish Every CISO Knew Before An Incident: A View From The IR Trenches

Security Boulevard

JULY 14, 2023

Permalink The post BSides Knoxville 2023 – Patterson Cake – 10 Things I Wish Every CISO Knew Before An Incident: A View From The IR Trenches appeared first on Security Boulevard. Our thanks to BSides Knoxville for publishing their presenter’s outstanding BSides Knoxville 2023 content on the organizations’ YouTube channel.

CISO

CISO Architecture Education Risk

A Reactive Cybersecurity Strategy Is No Strategy at All

CyberSecurity Insiders

MAY 18, 2022

A foundational approach to cybersecurity empowers CISOs to see abnormalities and block threats before they do damage. By increasing visibility into DNS traffic, CISOs can detect, block, and respond to incidents more quickly as well as use this data to institute new controls and increase overall resiliency.

DNS

DNS Cybersecurity CISO Social Engineering

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

The Last Watchdog

JANUARY 8, 2023

When it comes down to it, C-level goals and CISO initiatives are not all that misaligned. The need for reset and oversight is so great that a new class of technology is emerging to give organizations a better grip on the digital sprawl that’s come to define modern-day enterprise architecture.

Risk

Risk Cybersecurity Technology CISO

GUEST ESSAY: How SIEMS, UEBAs fall short in today’s turbulent threat landscape

The Last Watchdog

JULY 30, 2018

This has left many CISOs questioning if today’s incumbent cybersecurity solutions are enough. This has left many CISOs to questions whether or not today’s cybersecurity categories are still relevant. It requires a massive architecture overhaul. CISO need to change the conversation. Categorizing solutions.

CISO

CISO Cyber Attacks Data collection Cybersecurity

The Bridge to Zero Trust

CyberSecurity Insiders

FEBRUARY 28, 2023

John Masserini, of Tag Cyber, will explore practical approaches to advancing zero trust along with his fellow panelists: Kevin Dana, VP of Information Technology for World Wide Technology; Marcos Christodonte II, Global CISO for CDW; and Allen Jeter, Director of IT for Chainalysis.

Architecture

Architecture Authentication Technology CISO

The Polar Bear in Your Kitchen: A Cybersecurity Analogy

Security Boulevard

AUGUST 15, 2024

Chris Clements, VP of Solutions Architecture at CISO Global High-Tech Pest Control = Threat Detection & Response Imagine for a moment that your home has a rodent problem. The […] The post The Polar Bear in Your Kitchen: A Cybersecurity Analogy appeared first on CISO Global.

Cybersecurity

Cybersecurity CISO Architecture Threat Detection

GUEST ESSAY: The case for complying with ISO 27001 — the gold standard of security frameworks

The Last Watchdog

FEBRUARY 26, 2023

At the developer level, they will fundamentally reshape how programmers do their work day in and day out – including employing more project management tools and secure system architecture frameworks to track and mitigate risks at any stage in the SDLC.

Cyber threats

Cyber threats Software Risk CISO

Is End-User Cybersecurity Training Useless? Spoiler Alert: It’s Not!

Security Boulevard

OCTOBER 18, 2024

Chris Clements, VP of Solutions Architecture Because of the frequency of phishing attacks landing in user mailboxes and the severity of the consequences of a user falling for a lure, any improvement at all can make the difference between an organization suffering a breach. appeared first on CISO Global. Spoiler Alert: It’s Not!

Cybersecurity

Cybersecurity CISO Architecture Phishing

From Pest Control to Cybersecurity: What CISOs Can Learn from Pestie

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

Trending Sources

Cybersecurity Mesh Architecture checklist for CISOs

CISOs Say Application Security is Broken

Top 9 Trends In Cybersecurity Careers for 2025

Forrester: CISO Budgets Not Immune to Cuts

On the Cybersecurity Jobs Shortage

MY TAKE: As network perimeters shift and ecosystems blend, the role of MSSPs solidifies

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

5 ways to tell you are not CISO material

GUEST ESSAY: Cisco-Splunk merger will boost Snowflake – here’s how security teams can benefit.

Battling Burnout: A Growing Concern for CISOs and Security Professionals

The Surveillance Invasion: IoT and Smart Devices Stealing Corporate Secrets

ConnectWise Quietly Patches Flaw That Helps Phishers

What’s It Like for a New CISO?

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

Why do CISOs Keep Quitting on Florida?

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

Top 5 Cyber Predictions for 2024: A CISO Perspective

Alleged Oracle Cloud Breach Triggers Industry Scrutiny, Supply Chain Concerns

The Security Startup Ecosystem and the Trends Cisco is Watching

Let’s Talk Cybersecurity on the Agent of Influence Podcast

Cybersecurity Insights with Contrast CISO David Lindner | 12/06/24

BSides Knoxville 2023 – Hudson Bush – Enterprise Security Architecture Isn’t Just For Enterprises Anymore

GUEST ESSAY: 5 tips for ‘de-risking’ work scenarios that require accessing personal data

People Skills Outweigh Technical Prowess in the Best Security Leaders

How Zero Trust helps CIOs and CTOs in Corporate Environments

The Power of Relationships: Executive Buy-In and Security Culture for Bolstering Resilience

Five considerations for cloud migration, from the House of Representatives CISO

CISO workshop slides

New SEI CERT chief and first ever federal CISO: old cybersecurity models have ‘been overcome’

Ransomware Resiliency for Storage & Backup: Trends, Threats & Tips

Unmasking the Cracks of Today’s Cyber Defence

How to drive a successful, proactive tech refresh

Nurturing Our Cyber Talent

New SDP 2.0 specification facilitates zero-trust maturity

BSides Knoxville 2023 – Patterson Cake – 10 Things I Wish Every CISO Knew Before An Incident: A View From The IR Trenches

A Reactive Cybersecurity Strategy Is No Strategy at All

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

GUEST ESSAY: How SIEMS, UEBAs fall short in today’s turbulent threat landscape

The Bridge to Zero Trust

The Polar Bear in Your Kitchen: A Cybersecurity Analogy

GUEST ESSAY: The case for complying with ISO 27001 — the gold standard of security frameworks

Is End-User Cybersecurity Training Useless? Spoiler Alert: It’s Not!

Stay Connected