Blog, CISO and Cyber Risk - Cyber Security Informer

Shifting from Business Continuity to Continuous Business in Cyber

Jane Frankland

OCTOBER 25, 2024

A scenario where you could face any looming cyber crisis knowing that you’d emerge unscathed. As ITDMs, CISOs and cyber risk owners this is our dream scenario, and he got me thinking. That’s what this thought leadership blog is about. It’s your responsibility and liability.

Cyber Risk

Cyber Risk CISO Cyber threats Risk

Secure Communications: Relevant or a Nice to Have?

Jane Frankland

FEBRUARY 7, 2025

When data breaches escalate, cyber-attacks grow more sophisticated, nation states ramp up their digital warfare, and regulations tighten the noose, staying ahead isnt just an optionits your only line of defence. This is where the real opportunity lies, and what Im exploring in this blog.

Cyber Risk

Cyber Risk CISO Risk Encryption

What Rebels Teach us About Stronger Cyber Defence

Jane Frankland

APRIL 25, 2025

We need cybersecurity leadersCISOs, cyber risk owners, and IT decision makerswho are willing to challenge the norm, think critically, and make ethical decisions to protect our organisations, and world. The Risks of Blind Compliance in Technology Consider the analogy of a frog in a slowly boiling pot of water.

Technology

Technology Cyber threats Risk Cybersecurity

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

Security Boulevard

DECEMBER 30, 2024

In this post, we look at the enforcement actions the SEC has taken and what public company CISOs should do to stay in compliance. But theyre just one example of the additional attention governments around the world are giving to cyber risk. View cyber risk as business risk. Be proactive.

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

News alert: Qualys unveils ‘Enterprise TruRisk Platform’ to help businesses eliminate cyber risks

The Last Watchdog

NOVEMBER 20, 2023

The Qualys Enterprise TruRisk Platform centers around helping customers holistically measure, effectively communicate, and proactively eliminate cyber risk, with a hyper focus on the impact of cyber risk on business risk.

Cyber Risk

Cyber Risk Risk CISO Insurance

Cyber Risk Quantification: Three Key Use Cases

Security Boulevard

NOVEMBER 1, 2022

CISOs continue to face an uphill battle, and one of their biggest headaches is where to focus cyber investments. Solving distinctly separate challenges like cyber insurance, compliance and regulations, and visibility for the board is an overwhelming task, but what if you could solve these issues with a single solution?

Cyber Risk

Cyber Risk Risk Cyber Insurance Insurance

Seven Ways DSPM Helps CISOs Buy Down Cyber Risk

Security Boulevard

APRIL 23, 2024

In today’s digital economy, cyber risk is a top concern of everyone from the Board and CEO to the CFO and ultimately the CISO. The post Seven Ways DSPM Helps CISOs Buy Down Cyber Risk appeared first on Security Boulevard.

Cyber Risk

Cyber Risk CISO Risk Data breaches

Valentine’s Day for CISOs: How to Woo Your CEO

Security Boulevard

FEBRUARY 14, 2022

CISO is a high-stakes position, and possibly the most important business relationship/direct report a CEO can have. At Axio, our platform enables companies to perform cyber risk quantification (CRQ), which analyzes the unique risks to.

CISO

CISO Cyber Risk Risk Cyber Attacks

Time is Not on Your Side: Why Every CISO needs a Cyber Risk Quantification Strategy before It’s Too Late

Security Boulevard

SEPTEMBER 23, 2021

Cyber Risk Quantification needs to be the strategy driving your cybersecurity roadmap and priorities starting now. Read article > The post Time is Not on Your Side: Why Every CISO needs a Cyber Risk Quantification Strategy before It’s Too Late appeared first on Axio.

Cyber Risk

Cyber Risk CISO Risk Ransomware

Cyber Risk Management: A Beginner’s Guide

Security Boulevard

MARCH 28, 2024

However, underlying these regulations is a significant emphasis on organizations fully integrating cyber risk management into their operations. Understandably, this has resulted in […] The post Cyber Risk Management: A Beginner’s Guide appeared first on Security Boulevard.

Cyber Risk

Cyber Risk Risk Cybersecurity CISO

Female Cybersecurity Leaders (CISOs) Wanted

Jane Frankland

OCTOBER 13, 2021

I went through some of them this week at the Cyber Security Virtual Conference: Celebrating Women in Cyber, and with PWC Canada when they engaged me to open their one day event – SheProtects: Future CISO Program. She sees risk everywhere, is accountable for it, and is mostly at odds with the business. No one wants that!

CISO

CISO Cybersecurity Risk Marketing

Budget Approved: 13 Cybersecurity KPIs That CISOs Can Present to the Board

Security Boulevard

FEBRUARY 26, 2025

When reporting to the board, a CISO must translate risk into identifiable terms to present key findings and ensure that all cybersecurity initiatives are aligned with business objectives. Cyber risk mitigation expenditures help translate risk into potential additional profit.

CISO

CISO Cybersecurity Cyber Risk Risk

Security Roundup January 2025

BH Consulting

JANUARY 30, 2025

Cyber risk remains top of mind for business leaders A regular January fixture, the World Economic Forums Global Risk Report 2025 features two technology-related threats among the top five risks for the year ahead and beyond. The report ranks risks by severity over two-year and 10-year timeframes.

Cyber Risk

Cyber Risk Computers and Electronics Risk CISO

Top 5 Cyber Predictions for 2024: A CISO Perspective

Security Boulevard

JANUARY 2, 2024

The SEC cyber regulations will also drive strategic shifts in security teams. The mandates for timely reporting of material incidents and annual reporting on cyber risk management will be a catalyst for more cross-functional collaboration in 2024. How will organizations prepare and comply with the reporting process?

CISO

CISO Social Engineering Architecture Ransomware

Women in Cybersecurity & IWD: Why I’m Done!

Jane Frankland

MARCH 8, 2025

In this blog Im once again looking at why were stuck, the systemic cracks in our approach to diversity, and what it will take to build a thriving and inclusive cybersecurity future. Most decision-makers focus solely on mitigating relentless cyber risks, seeing gender inclusion as secondary or irrelevant to “urgent” challenges.

Cybersecurity

Cybersecurity Penetration Testing Accountability Cyber Risk

Understanding SEC Cyber Disclosure Rules and CISO Liability

Centraleyes

NOVEMBER 8, 2023

The SEC’s proposed cybersecurity disclosure rule , known as the Proposed Rule for Public Companies (PRPC), has ushered in a wave of concerns and challenges, particularly for CISOs. This tight timeline raises questions about the rules’ practicality and potential impact on CISOs’ liability.

CISO

CISO Cyber Risk Risk Cybersecurity

Cybersecurity Dashboards: Enhancing Security Monitoring and Decision-Making

Centraleyes

APRIL 3, 2025

Designed by Freepik Key Features that Transform Decision-Making Data-Driven Resilience Through Layered Visualization Effective cyber risk dashboards excel at presenting multiple data types in digestible formats: Trend Analysis: Time-series plots help identify patterns and emerging risks over time.

Cybersecurity

Cybersecurity Risk CISO Cyber Risk

The Cyber Insurance Landscape Has Grown More Complicated

SecureWorld News

APRIL 17, 2023

By the way, Sean Scranton will be presenting on "Covering Your Cyber Assets" at the SecureWorld Philadelphia conference on April 19-20. Can companies live without cyber insurance? that may be included as part of the cyber insurance coverage terms. Theresa Le, Chief Claims Officer, Cowbell: "Cyber insurance is highly recommended.

Cyber Insurance

Cyber Insurance Insurance Risk CISO

Episode 230: Are Vaccine Passports Cyber Secure?

The Security Ledger

NOVEMBER 11, 2021

In this episode of the podcast (#230) Siddarth Adukia, a regional Director at NCC Group, joins host Paul Roberts to talk about the (cyber) risks and (public health) rewards of vaccine passport systems: how they work, how they can be compromised and what to do about it. The post Episode 230: Are Vaccine Passports Cyber Secure?

Cyber Risk

Cyber Risk CISO Risk Technology

GUEST ESSAY: The shock waves of mental illness have begun exacerbating cybersecurity exposures

The Last Watchdog

NOVEMBER 29, 2021

The vulnerabilities and challenges associated with declining worker mental health is causing cybersecurity risks to increase, especially from insider threats. Mental health cyber risks. A key takeaway is that the increase in cybersecurity threats is now not just a CISO’s responsibility.

Cybersecurity

Cybersecurity Social Engineering Risk Cyber Risk

Tackling Cyber Threats: Is AI Cybersecurity Our Only Hope?

Jane Frankland

MAY 8, 2024

This is what I’ll be delving into in this blog, where I’ll be exploring how these two fields are intersecting and what that means for our digital landscape. This not only frees up valuable time for security professionals to focus on more complex tasks but also reduces the risk of human error.

Cyber threats

Cyber threats Cybersecurity Artificial Intelligence CISO

7 Things Every CISO Needs to Know About PKI

Security Boulevard

OCTOBER 7, 2022

7 Things Every CISO Needs to Know About PKI. With PKI, CISOs and other information security specialists can implement hardware, software, policies, and procedures to better establish, manage, distribute, implement, and protect digital certificates and key policies. Ensure clean, low-risk audit results. Alexa Cardenas.

CISO

CISO Risk Cyber Attacks Technology

Cybersecurity Snapshot: New Guides Offer Best Practices for Preventing Shadow AI and for Deploying Secure Software Updates

Security Boulevard

OCTOBER 25, 2024

And get the latest on the top “no-nos” for software security; the EU’s new cyber law; and CISOs’ communications with boards. 1 - CSA: How to prevent “shadow AI” As organizations scale up their AI adoption, they must closely track their AI assets to secure them and mitigate their cyber risk.

Software

Software Cybersecurity CISO Manufacturing

The Upcoming UK Telecoms Security Act Part Two: Changing Mindset from Stick to Carrot

Cisco Security

DECEMBER 13, 2022

In our last blog , we gave a rundown of what the Telecommunications (Security) Act (TSA) is, why it’s been introduced, who it affects, when it starts, and how firms can prepare. ny of the themes introduced in the code of practice can be aligned with the themes in a zero trust security model, which are also a focus for CISOs.

Telecommunications

Telecommunications Authentication Risk Cyber Risk

Challenges and Opportunities of the Cyber Liability Insurance Market

Duo's Security Blog

JUNE 9, 2022

As an advisory CISO and part of Cisco’s strategy group, an essential part of my role is talking to CISOs from every kind of organization. From these conversations, it is clear cyber liability insurance is steadily rising to the top of the agenda, due to the sheer amount and scale of cyber-attacks hitting firms.

Insurance

Insurance Marketing CISO Cyber Insurance

SPOTLIGHT: Women in Cybersecurity

McAfee

NOVEMBER 3, 2020

“At this year’s Conference 46 percent of all keynote speakers were women,” according to Sandra Toms, VP and curator, RSA Conference, in a blog she posted on the last day of this year’s event. Forrester also predicts that the number of women CISOs at Fortune 500 companies will rise to 20 percent in 2019 , compared with 13 percent in 2017.

Cybersecurity

Cybersecurity Architecture Cloud Migration Retail

Cybersecurity Snapshot: What Looms on Cyberland’s Horizon? Here’s What Tenable Experts Predict for 2025

Security Boulevard

DECEMBER 27, 2024

For more information about data and AI security posture management ( DSPM and AI-SPM ), check out these Tenable resources: Data and AI Security Posture Management (video) Harden Your Cloud Security Posture by Protecting Your Cloud Data and AI Resources (blog) Know Your Exposure: Is Your Cloud Data Secure in the Age of AI? (on-demand

Cybersecurity

Cybersecurity CISO CSO Data breaches

Spotlight Podcast: Public Sector levels up to tackle Cyber Threats

The Security Ledger

APRIL 9, 2020

In this Spotlight edition of the podcast, sponsored* by RSA Security, we go deep on public sector cyber risk with two interviews from the most recent RSA Conference: Kelvin Coleman, the Executive Director of the National Cyber Security Alliance (NCSA) and Sean McHenry, the CISO of the Utah State Board of Education.

Cyber threats

Cyber threats CISO Education Cyber Risk

Microsoft on Multi-Cloud: It’s the New Imperative But Cyberattacks Present Challenges

Security Boulevard

FEBRUARY 25, 2022

Further, they must take stock of evolving cyber risks in this multicloud, multi-platform world, and identify where blind spots may exist across a broad new set of users, devices, and destinations.”. -- Microsoft, February 23, 2022. 1 concern and investment priority for security professionals. Machine Identity in a multi-cloud world.

Cyber Risk

Cyber Risk CISO Technology Software

Cybersecurity Snapshot: Tenable Report Warns About Toxic Cloud Exposures, as PwC Study Urges C-Suite Collaboration for Stronger Cyber Resilience

Security Boulevard

OCTOBER 18, 2024

Check out invaluable cloud security insights and recommendations from the “Tenable Cloud Risk Report 2024.” Plus, a PwC study says increased collaboration between CISOs and fellow CxOs boosts cyber resilience. Meanwhile, a report finds the top cyber skills gaps are in cloud security and AI.

Cybersecurity

Cybersecurity CISO CSO Risk

Testing to Ensure Your Security Posture Never Slouches

McAfee

JUNE 17, 2021

Imagine if you had one place where you found a comprehensive real time security posture that tells you exactly where the looming current cyber risks are and the impact? Let’s consider a recent and relevant cyber threat. Risk and Posture. Assessing risk is about determining the likelihood of an event.

Penetration Testing

Penetration Testing CISO Risk Cyber Insurance

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

Duo's Security Blog

OCTOBER 18, 2021

In a recent Duo blog post, we gave an overview of cyber liability insurance. BeCyberSmart,” with this post we’ll dig deeper on cyber liability insurance, MFA, and other cybersecurity trends impacting MFA usage in higher education to help campuses manage this aspect of cyber risk for their communities. “We

Insurance

Insurance Education Risk Cyber Insurance

What Is Exposure Management and Why Does It Matter?

Security Boulevard

MARCH 17, 2025

In our first blog in this new series, we get you started with an overview of the differences between the two and explore how cyber exposure management can benefit your organization. Traditional vulnerability management has always been about identifying and fixing vulnerabilities hopefully as quickly as they arise.

Risk

Risk Mobile Technology IoT

Unlock the Future of GRC: Top Innovations Transforming the Industry

Centraleyes

NOVEMBER 7, 2024

As cyber threats evolve, so too must the GRC tools and strategies used to combat them. Organizations increasingly turn to automated, integrated, and AI-powered solutions to enhance their cyber risk management capabilities. This shift requires continuous upskilling and a more integrated approach to risk and compliance.

CISO

CISO Risk Cyber Risk Technology

Episode 214: Darkside Down: What The Colonial Attack Means For The Future of Ransomware

The Security Ledger

MAY 15, 2021

Intel 471 CISO Brandon Hoffman joins us to to discuss Darkside, the ransomware group that attacked the Colonial Pipeline, why the crew may have bitten off more than it can chew and what the attack says about the state of America's Critical Infrastructure. ” -Brandon Hoffman, CISO Intel 471. Read the whole entry. »

Ransomware

Ransomware CISO Government Cyber Risk

Thousands of Data Center Management Apps Exposed to Internet

eSecurity Planet

FEBRUARY 2, 2022

Tens of thousands of applications that are critical to the operations of data centers around the globe are exposed to the internet, with many secured with default factory passwords, posing a significant cyber risk to enterprises worldwide. This is laziness at its worst.”.

Internet

Internet Internet Passwords Software

Deciphering the Omnibus for Medical Device Security

NetSpi Executives

OCTOBER 17, 2023

At NetSPI, our goal is to equip our clients to maintain the security of their systems and avoid potential breaches.

Healthcare

Healthcare Manufacturing Cyber Risk Risk

Security Roundup September 2024

BH Consulting

SEPTEMBER 24, 2024

We’ve published a 10-step blog to help get ready for the regulation. MORE Mythical beasts and where to find them: mapping the global spyware landscape MORE Six truths of quantifying cyber risk, as told by Google CISO Phil Venables. MORE The United Nations’ latest ranking of countries’ cybersecurity efforts.

Energy and Utilities

Energy and Utilities Penetration Testing Banking Spyware

The Ransom So Nice, You Pay It Twice

SecureWorld News

FEBRUARY 4, 2021

At SecureWorld's regional cybersecurity conferences , we've heard more than a few CISOs say something like this: "You need to have a conversation with your board in advance. Cyber risk mitigations to implement right away. What are the risk mitigations organizations should embrace as quickly as possible?

Ransomware

Ransomware Risk Cyber Risk CISO

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Centraleyes

MARCH 13, 2025

Enhanced Governance Requirements Entities must appoint a qualified Chief Information Security Officer (CISO) with a direct reporting line to the board of directors. New Risk Assessment Standards New updates mandate independent third-party risk assessments. These changes took effect in 2024. Here are the highlights: 1.

Cybersecurity

Cybersecurity Financial Services Risk Encryption

The Road to XDR

McAfee

JANUARY 5, 2021

In my CISO conversations it is well noted that security operation centers (SOC) are struggling. Not only does McAfee take XDR to the next level, but it also helps you better mitigate cyber risk by enabling you to prioritize and focus on what most matters. The post The Road to XDR appeared first on McAfee Blogs.

Architecture

Architecture Cyber Risk CISO Cybersecurity

Spotlight Podcast: Securing the Enterprise?s New Normal

The Security Ledger

MAY 26, 2020

. » Related Stories Episode 184: Project BioMed – The Fight to Repair Medical Devices Spotlight Podcast: Public Sector levels up to tackle Cyber Threats Episode 179: CISO Eye on the Virus Guy – Assessing COVID’s Cyber Risks.

Cyber Risk

Cyber Risk CISO IoT Risk

Security Roundup February 2024

BH Consulting

FEBRUARY 15, 2024

Creeping cyber risk grabbing global headlines The World Economic Forum’s latest Global Cybersecurity Outlook 2024 gives senior leaders a high-level overview of cybersecurity trends. Cyber attacks featured in the top five risks for the year ahead, along with factors like extreme weather and the cost of living crisis.

Passwords

Passwords Surveillance Risk Data breaches

Vulnerability Management vs. Risk Management: Defining the Fundamentals

NopSec

MAY 4, 2022

With all this speed and the increasing reliance on communications and data-sharing both internally and externally comes the danger of inadequate accounting for and management of cyber risks. The effective approach that unites the two ideas is called “ risk-based vulnerability management.”

Risk

Risk Marketing Cyber Risk CISO

Shifting from Business Continuity to Continuous Business in Cyber

Secure Communications: Relevant or a Nice to Have?

Webinars

Trending Sources

What Rebels Teach us About Stronger Cyber Defence

Webinars

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

News alert: Qualys unveils ‘Enterprise TruRisk Platform’ to help businesses eliminate cyber risks

Cyber Risk Quantification: Three Key Use Cases

Seven Ways DSPM Helps CISOs Buy Down Cyber Risk

Valentine’s Day for CISOs: How to Woo Your CEO

Time is Not on Your Side: Why Every CISO needs a Cyber Risk Quantification Strategy before It’s Too Late

Cyber Risk Management: A Beginner’s Guide

Female Cybersecurity Leaders (CISOs) Wanted

Budget Approved: 13 Cybersecurity KPIs That CISOs Can Present to the Board

Security Roundup January 2025

Top 5 Cyber Predictions for 2024: A CISO Perspective

Women in Cybersecurity & IWD: Why I’m Done!

Understanding SEC Cyber Disclosure Rules and CISO Liability

Cybersecurity Dashboards: Enhancing Security Monitoring and Decision-Making

The Cyber Insurance Landscape Has Grown More Complicated

Episode 230: Are Vaccine Passports Cyber Secure?

GUEST ESSAY: The shock waves of mental illness have begun exacerbating cybersecurity exposures

Tackling Cyber Threats: Is AI Cybersecurity Our Only Hope?

7 Things Every CISO Needs to Know About PKI

Cybersecurity Snapshot: New Guides Offer Best Practices for Preventing Shadow AI and for Deploying Secure Software Updates

The Upcoming UK Telecoms Security Act Part Two: Changing Mindset from Stick to Carrot

Challenges and Opportunities of the Cyber Liability Insurance Market

SPOTLIGHT: Women in Cybersecurity

Cybersecurity Snapshot: What Looms on Cyberland’s Horizon? Here’s What Tenable Experts Predict for 2025

Spotlight Podcast: Public Sector levels up to tackle Cyber Threats

Microsoft on Multi-Cloud: It’s the New Imperative But Cyberattacks Present Challenges

Cybersecurity Snapshot: Tenable Report Warns About Toxic Cloud Exposures, as PwC Study Urges C-Suite Collaboration for Stronger Cyber Resilience

Testing to Ensure Your Security Posture Never Slouches

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

What Is Exposure Management and Why Does It Matter?

Unlock the Future of GRC: Top Innovations Transforming the Industry

Episode 214: Darkside Down: What The Colonial Attack Means For The Future of Ransomware

Thousands of Data Center Management Apps Exposed to Internet

Deciphering the Omnibus for Medical Device Security

Security Roundup September 2024

The Ransom So Nice, You Pay It Twice

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

The Road to XDR

Spotlight Podcast: Securing the Enterprise?s New Normal

Security Roundup February 2024

Vulnerability Management vs. Risk Management: Defining the Fundamentals

Stay Connected