Architecture, CISO and Information Security

On the Cybersecurity Jobs Shortage

Schneier on Security

SEPTEMBER 20, 2023

The numbers never made sense to me, and Ben Rothke has dug in and explained the reality : …there is not a shortage of security generalists, middle managers, and people who claim to be competent CISOs. Nor is there a shortage of thought leaders, advisors, or self-proclaimed cyber subject matter experts.

Cybersecurity

Cybersecurity CISO Engineering Architecture

Top 9 Trends In Cybersecurity Careers for 2025

eSecurity Planet

OCTOBER 18, 2024

Knowledge of cloud systems architecture and how it interacts with various devices is invaluable. Blockchain: Developed primarily for cryptocurrency applications and maligned for manipulating those markets, blockchain can be a valuable security tool, as its universe of connected nodes is almost impossible to corrupt or destroy.

Cybersecurity

Cybersecurity Artificial Intelligence Penetration Testing CISO

Battling Burnout: A Growing Concern for CISOs and Security Professionals

SecureWorld News

JUNE 20, 2024

As defenders of digital assets, Chief Information Security Officers (CISOs) and cybersecurity professionals face immense pressure, often leading to burnout. Key findings from the report include: 90% of CISOs are concerned about stress, fatigue, or burnout affecting their team's well-being.

CISO

CISO Cybersecurity Technology Digital transformation

ConnectWise Quietly Patches Flaw That Helps Phishers

Krebs on Security

DECEMBER 1, 2022

“Our team quickly triaged the report and determined the risk to partners to be minimal,” said Patrick Beggs , ConnectWise’s chief information security officer. ” However, LastPass maintains that its “customer passwords remain safely encrypted due to LastPass’s Zero Knowledge architecture.”

Phishing

Phishing Architecture Passwords Accountability

What’s It Like for a New CISO?

Lenny Zeltser

FEBRUARY 13, 2020

As of this writing, I’ve spent six months in the role of Chief Information Security Officer (CISO) at Axonius , a rapidly growing technology company. Our IT infrastructure is consistent zero-trust architecture principles , so it made sense to treat identity as the focal point of many security decisions.

CISO

CISO Information Security Architecture Technology

Why do CISOs Keep Quitting on Florida?

SecureWorld News

AUGUST 25, 2021

Chief Information Security Officers (CISO) have the luxury of being an incredibly hot commodity, so they can pretty much pick and choose where they work, as they are almost guaranteed to have a job waiting for them somewhere. Cybersecurity officials struggle in Florida. DeSantis appointed former state Rep.

CISO

CISO Cybersecurity Government Technology

How Zero Trust helps CIOs and CTOs in Corporate Environments

CyberSecurity Insiders

JUNE 11, 2023

Zero Trust is a cybersecurity framework that can greatly support Chief Information Security Officers (CISOs) and Chief Technology Officers (CTOs) in their roles of securing organizational systems and data. This approach significantly reduces the risk of lateral movement and unauthorized access within the network.

CISO

CISO Technology Architecture Risk

People Skills Outweigh Technical Prowess in the Best Security Leaders

SecureWorld News

OCTOBER 5, 2023

Michael Gregg, the CISO for the State of North Dakota, speaks across the country, including keynoting at SecureWorld Detroit on Sep. It's no wonder after he speaks he has a line of folks waiting to learn more from him, or just to shake his hand and say thanks for his information sharing. 19 and at SecureWorld Dallas on Oct.

CISO

CISO Risk Government Cybersecurity

Five considerations for cloud migration, from the House of Representatives CISO

SC Magazine

MAY 18, 2021

Companies transitioning to the cloud have to think of cybersecurity as more than firewalls, access controls and incident response, and define goals of security that go beyond confidentiality, integrity and availability, said Randy Vickers, chief information security officer for the U.S. House of Representatives.

Cloud Migration

Cloud Migration CISO Firewall Risk

Nurturing Our Cyber Talent

IT Security Guru

SEPTEMBER 25, 2023

The IT Security Guru caught up with Tarnveer Singh a CISO and finalist in the Security Serious Unsung Heroes Awards 2023 for his thoughts on how to get more professionals involved in the cybersecurity industry: There are many ways we can inspire new cybersecurity professionals to join our industry.

CISO

CISO Identity Theft Cybercrime Cybersecurity

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

The Last Watchdog

JANUARY 8, 2023

However, security – the often overlooked and undervalued visitor – is struggling to communicate across the table. When it comes down to it, C-level goals and CISO initiatives are not all that misaligned. About the essayist: Chris Reffkin is chief information security officer at cybersecurity software and services provider Fortra.

Risk

Risk Cybersecurity Technology CISO

New SEI CERT chief and first ever federal CISO: old cybersecurity models have ‘been overcome’

SC Magazine

APRIL 30, 2021

Gregory Touhill, former federal chief information security officer and deputy assistant Homeland Security secretary for cyber security operations, seen here at a House Foreign Affairs Committee hearing in 2015 in Washington, DC. chief information security officer. Photo by Mark Wilson/Getty Images).

CISO

CISO Cybersecurity Artificial Intelligence Government

CISO workshop slides

Notice Bored

AUGUST 5, 2022

A glossy, nicely-constructed and detailed PowerPoint slide deck by Microsoft Security caught my beady this morning.

CISO

CISO Risk Artificial Intelligence Marketing

5 Benefits of Hiring a Virtual Chief Information Security Officer (vCISO)

Security Boulevard

SEPTEMBER 9, 2022

But hiring a full-time chief information security officer (CISO) is not always possible for organizations – nor is it always needed. Read on to learn why you might want to consider a virtual CISO (vCISO), and the benefits that come with that decision. Is a vCISO Right for Your Organization?

Information Security

Information Security CISO Risk Cybersecurity

GUEST ESSAY: The case for complying with ISO 27001 — the gold standard of security frameworks

The Last Watchdog

FEBRUARY 26, 2023

At the developer level, they will fundamentally reshape how programmers do their work day in and day out – including employing more project management tools and secure system architecture frameworks to track and mitigate risks at any stage in the SDLC.

Cyber threats

Cyber threats Software Risk CISO

“Left of Boom” Cybersecurity: Proactive Cybersecurity in a Time of Increasing Threats and Attacks

Cisco Security

OCTOBER 18, 2021

The primary job of the Chief Information Security Officer (CISO) is to exercise continuous diligence in reducing risk, within the risk appetite and risk tolerance of the organization, so that the likelihood of a boom is low, and the corresponding magnitude of harm is limited. Cisco Secure Social Channels. Frameworks.

Cybersecurity

Cybersecurity CISO Insurance Risk

SPOTLIGHT: Women in Cybersecurity

McAfee

NOVEMBER 3, 2020

Forrester also predicts that the number of women CISOs at Fortune 500 companies will rise to 20 percent in 2019 , compared with 13 percent in 2017. This is consistent with new research from Boardroom Insiders which states that 20 percent of Fortune 500 global chief information officers (CIOs) are now women — the largest percentage ever.

Cybersecurity

Cybersecurity Architecture Cloud Migration Retail

Startup Traceable turns to CISO investors for next phase of growth

SC Magazine

FEBRUARY 11, 2021

The new partnership with Silicon Valley CISO Investments will include an additional $250,000, but perhaps more importantly, support and guidance from the more than 55 practicing chief information security officers that make up SVCI.

CISO

CISO Marketing Media Software

Firms with exposed IoT have a higher concentration of other security problems

SC Magazine

JANUARY 29, 2021

For example, companies with exposed IoT are more than 50% more likely to have email security issues, according to a new report and blog post from the Cyentia Institute and RiskRecon. But what does that correlation mean for chief information security officers? So, how can CISOs operationalize that kind of information?

IoT

IoT Internet Internet CISO

Spotlight on Cybersecurity Leaders: Walter Williams

SecureWorld News

APRIL 19, 2023

Walter Williams has more than 20 years of experience in Information Security, and currently resides as the CISO for Monotype. He is the author of "Creating an Information Security Program from Scratch" (2021, CRC Press) and "Security for Service Oriented Architecture" (2014, CRC Press).

Cybersecurity

Cybersecurity Information Security CISO Architecture

Analytics Insight Announces ‘The 10 Most Influential CISOs to Watch in 2021’

CyberSecurity Insiders

OCTOBER 7, 2021

. & HYDERABAD, India–( BUSINESS WIRE )–Analytics Insight has named ‘ The 10 Most Influential CISOs to Watch in 2021 ’ in its October magazine issue. The issue is focusing on trailblazing leaders who are remodelling their security strategy and staying abreast with the latest trends. He holds a Ph.D He holds a Ph.D

CISO

CISO Computers and Electronics Information Security Technology

AT&T Cybersecurity’s managed SASE service wins CyberSecurity Breakthrough award

CyberSecurity Insiders

NOVEMBER 8, 2021

As organizations strive for excellence in digital transformation and face the realities of an accelerated push to remote work, they’ve been called to rethink their networking and cybersecurity architecture. SASE helps future-proof cybersecurity architecture by decoupling security control from the data center.

Cybersecurity

Cybersecurity Digital transformation Architecture Technology

Meet the 2021 SC Awards judges

SC Magazine

MAY 1, 2021

Prior to Mastercard, Abdullah was the chief information security officer at Xerox, where she established and led a corporate-wide information risk management program. She also served as the deputy chief information officer of the White House. She is also the host of the Mastering Cyber podcast.

Computers and Electronics

Computers and Electronics Technology Information Security Education

Executive Spotlight: Q&A with Chief Information Officer, Scott Howitt

McAfee

AUGUST 23, 2021

When I was a CIO, I learned that I really didn’t know much about information security, and it was hindering me in the CIO role. My next job was a director of information security at a financial services company, and I never looked back. Understanding user and device behavior and being able to spot anomalies is the future.

CISO

CISO Identity Theft Technology Information Security

The Rise of Data Sovereignty and a Privacy Era

SecureWorld News

JUNE 24, 2024

The potential loss of reputation from a privacy breach is a clarion call for business executives and CISOs. T – Technology Essential to secure the digital enterprise across the Infrastructure, Application and Services dimensions of a layered security architecture. This greatly increases the attack surface for enterprises.

IoT

IoT InfoSec Artificial Intelligence Risk

Top-Paying Tech Jobs Highlight New Roles, Cybersecurity Tie-ins

SecureWorld News

MAY 31, 2024

Cloud Solution Architect: While not purely cybersecurity, this role is heavily focused on cloud security in addition to architecture. Solutions Architect: Solutions architects, while broader, often work on secure solution design and implementation.

Artificial Intelligence

Artificial Intelligence Cybersecurity Engineering Technology

Holes in Linux Kernel Could Pose Problems for Red Hat, Ubuntu, Other Distros

eSecurity Planet

JULY 23, 2021

The Linux file system interface is implemented as a layered architecture, separating the user interface layer from the file system implementation and from the drivers that manipulate the storage devices,” Bharat Jogi, senior manager of vulnerabilities and signatures for Qualys, wrote in a blog post. ‘Noisy’ Vulnerabilities.

Accountability

Accountability Big data CISO Architecture

What do customers really want (and need) from security?

Cisco Security

JUNE 29, 2022

Learn more about security resilience for the hybrid work era. In addition to unparalleled infrastructure and expertise, our open, cloud-native architecture allows you to integrate with a wide range of third-party security and technology solutions for more seamless threat defense.

Technology

Technology CISO Architecture Internet

WEF Outlines Path to Cyber Resilience for Manufacturing Sector

SecureWorld News

MAY 29, 2024

The risk is too great, and key business partnerships are required," said Amy Bogac , former CISO at The Clorox Company. "If If you are a CFO, COO, or supply chain leader, please engage with your security partner like your (professional) life depends on it." Director, Cyber Security, Acumatica, Inc., trillion annually. "

Manufacturing

Manufacturing CISO Cyber threats Artificial Intelligence

Federal Agencies Face Hurdles in Zero-Trust Implementation

Centraleyes

FEBRUARY 20, 2025

The push for zero trust architecture is intensifying, but federal agencies are encountering significant challenges in making it a reality. Speaking at CyberScoops Zero Trust Summit, Department of Energy Chief Information Security Officer (CISO) Paul Selby acknowledged a critical issue: federal agencies cannot implement zero trust alone.

Marketing

Marketing CISO Architecture Technology

Quantum Computing: A Looming Threat to Organizations and Nation States

SecureWorld News

SEPTEMBER 7, 2023

As for the panel presentation at SecureWorld Denver , it features Edgar Acosta, Experienced Cybersecurity Professional (former CISO at DCP Midstream ); Craig Hurter, Sr. Director of Information Security, State of Colorado Governor's Office of Information Technology; and Toby Zimmerer, Sr.

Encryption

Encryption Technology Risk Architecture

As Internet-Connected Medical Devices Multiply, So Do Challenges

Cisco Security

JUNE 15, 2022

That doesn’t mean the risk is zero, noted Christos Sarris , a longtime information security analyst. He shared an anecdote in Cisco Secure’s recent e-book, “ Building Security Resilience ,” about finding malware on an intensive care unit device that compromised a pump used to deliver precise doses of medicine.

Internet

Internet Internet Manufacturing IoT

Bridge the Gap Between the Security You Have and the Security You Need

McAfee

NOVEMBER 12, 2020

They not only have to co-exist with the existing security infrastructure, but they must be integrated to avoid leaving security gaps attackers can exploit. Is it any wonder, then, that CISOs continue to struggle? The era of monolithic and often disconnected, security solutions has passed.

Architecture

Architecture Marketing CISO Technology

Zero Trust Is a Journey and Businesses Have Many Rivers to Cross

Thales Cloud Protection & Licensing

MARCH 31, 2021

We asked leading information security professionals what the biggest challenges organizations face during their journey to Zero Trust security. Michael Ball, Virtual Chief Information Security Officer, TeamCISO. Stephane Nappo, Vice President Global Chief Information Security Officer.

Digital transformation

Digital transformation VPN Technology Architecture

Cybersecurity Culture: How Princeton University's Security Team Created It

SecureWorld News

MAY 19, 2020

When David Sherry became Chief Information Security Officer at Princeton University, he says cybersecurity was done well. "I I don't want you to think security at Princeton was some sort of vast wasteland. In many ways, leading a security mission out of a university is like securing a city.

Cybersecurity

Cybersecurity CISO Risk Education

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

SC Magazine

FEBRUARY 8, 2021

He referenced an insurer’s role in designing pressure relief valves for the steam engines powering Philadelphia in the 1800s: “They said if you wanted to have insurance, you have to have this piece of architecture on your system.” In so doing, “they drove security or solutions to avoid large insurance claims.”.

Insurance

Insurance Cybersecurity Cyber Insurance Government

A roadmap for developing a secure enterprise cloud operating model

SC Magazine

JUNE 4, 2021

Design core cloud security patterns that comply with the policy and standards. Design core cloud security to detect violations of fundamental security design principles. Implement reference architectures based on the security patterns. Raj Badhwar, chief information security officer, Voya Financial.

Penetration Testing

Penetration Testing Technology DNS CISO

To Achieve Zero Trust Security, Trust The Human Element

Thales Cloud Protection & Licensing

MAY 6, 2021

We have asked leading information security professionals to offer us their valuable advice on how organizations and people can achieve a Zero Trust mentality. Angus Macrae, Head of Cyber Security. Here is what they told us. Jenny Radcliffe, People Hacker & Social Engineer.

Social Engineering

Social Engineering Authentication Passwords Technology

Behind the Scenes: A Conversation with Virsec’s CTO of the Year

Security Boulevard

JUNE 10, 2021

For the last nine years, the Cyber Defense Magazine Global InfoSec Awards have recognized companies in the information security space who demonstrate a unique and compelling value proposition for their executives, products, or services.

Marketing

Marketing InfoSec CISO Architecture

The secrets to start a cybersecurity career

Responsible Cyber

JULY 14, 2024

Information Technology Systems: Thorough understanding of IT systems, network architecture, and data management. Examples of Job Roles: Security Engineer:Responsibilities: Designing secure network solutions, implementing security measures, monitoring for vulnerabilities, and responding to incidents.

Cybersecurity

Cybersecurity Education Penetration Testing Engineering

17 Resources You Can’t Miss When Starting Your Career in Application Security

NetSpi Executives

JULY 11, 2024

Coding A lot of the foundational concepts, vulnerabilities, and recommendations are going to be at the code, design, and architectural levels. And for a specific company, their list might look different because of the different architectural, design, and coding standards they have in their organization.

Engineering

Engineering Architecture Education Software

Get an Untrusted Security Advisor! Have Fun, Reduce Fail!

Security Boulevard

OCTOBER 18, 2024

Many organizations are looking for trusted advisors , and this applies to our beloved domain of cyber/information security. If you look at LinkedIn, many consultants present themselves as trusted advisors to CISOs or their teams. How would you approach securing something? tell me what to do!). So let’s create new ideas.

Architecture

Architecture Risk CISO Cybersecurity

Using Proactive Intelligence Against Adversary Infrastructure

Security Boulevard

FEBRUARY 7, 2024

But in the wake of the attack, manychief information security officers (CISOs) realized that PDNS was the answer to early detection and resiliency against similar attacks simply because log4j was surprisingly easy to detect at a DNS level.

DNS

DNS Architecture Marketing Cyber threats

How Smart Organizations Mitigate Cyber Risks in a World of Unknown Unknowns

CyberSecurity Insiders

JUNE 25, 2021

By Shay Siksik, VP Customer Operations and CISO, XM Cyber. Shay Siksik has been a cybersecurity evangelist for more than a decade, always with a passion for customer service, process improvement, and information security. There are things we know: 2 + 2 = 4, for example. We call this common knowledge.

Cyber Risk

Cyber Risk Risk Penetration Testing Cybersecurity

On the Cybersecurity Jobs Shortage

Top 9 Trends In Cybersecurity Careers for 2025

Trending Sources

Battling Burnout: A Growing Concern for CISOs and Security Professionals

ConnectWise Quietly Patches Flaw That Helps Phishers

What’s It Like for a New CISO?

Why do CISOs Keep Quitting on Florida?

How Zero Trust helps CIOs and CTOs in Corporate Environments

People Skills Outweigh Technical Prowess in the Best Security Leaders

Five considerations for cloud migration, from the House of Representatives CISO

Nurturing Our Cyber Talent

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

New SEI CERT chief and first ever federal CISO: old cybersecurity models have ‘been overcome’

CISO workshop slides

5 Benefits of Hiring a Virtual Chief Information Security Officer (vCISO)

GUEST ESSAY: The case for complying with ISO 27001 — the gold standard of security frameworks

“Left of Boom” Cybersecurity: Proactive Cybersecurity in a Time of Increasing Threats and Attacks

SPOTLIGHT: Women in Cybersecurity

Startup Traceable turns to CISO investors for next phase of growth

Firms with exposed IoT have a higher concentration of other security problems

Spotlight on Cybersecurity Leaders: Walter Williams

Analytics Insight Announces ‘The 10 Most Influential CISOs to Watch in 2021’

AT&T Cybersecurity’s managed SASE service wins CyberSecurity Breakthrough award

Meet the 2021 SC Awards judges

Executive Spotlight: Q&A with Chief Information Officer, Scott Howitt

The Rise of Data Sovereignty and a Privacy Era

Top-Paying Tech Jobs Highlight New Roles, Cybersecurity Tie-ins

Holes in Linux Kernel Could Pose Problems for Red Hat, Ubuntu, Other Distros

What do customers really want (and need) from security?

WEF Outlines Path to Cyber Resilience for Manufacturing Sector

Federal Agencies Face Hurdles in Zero-Trust Implementation

Quantum Computing: A Looming Threat to Organizations and Nation States

As Internet-Connected Medical Devices Multiply, So Do Challenges

Bridge the Gap Between the Security You Have and the Security You Need

Zero Trust Is a Journey and Businesses Have Many Rivers to Cross

Cybersecurity Culture: How Princeton University's Security Team Created It

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

A roadmap for developing a secure enterprise cloud operating model

To Achieve Zero Trust Security, Trust The Human Element

Behind the Scenes: A Conversation with Virsec’s CTO of the Year

The secrets to start a cybersecurity career

17 Resources You Can’t Miss When Starting Your Career in Application Security

Get an Untrusted Security Advisor! Have Fun, Reduce Fail!

Using Proactive Intelligence Against Adversary Infrastructure

How Smart Organizations Mitigate Cyber Risks in a World of Unknown Unknowns

Stay Connected