CISO, Information Security and Insurance

GUEST ESSAY: Could CISOs be on the verge of disproving the ‘security-as-a-cost-center’ fallacy?

The Last Watchdog

MARCH 13, 2023

So how will this affect chief information security officers (CISOs) and security programs? Given the perennial skills and staffing shortage in security, it’s unlikely that CISOs will be asked to make deep budget or staffing cuts, yet they may not come out of this period unscathed.

CISO

CISO Insurance Cybersecurity Risk

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

The SEC says First American derives nearly 92 percent of its revenue from its title insurance segment, earning $7.1 Title insurance protects homebuyers from the prospect of someone contesting their legitimacy as the new homeowner. Title insurance is not mandated by law, but most lenders require it as part of any mortgage transaction.

Insurance

Insurance Risk Financial Services CISO

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Krebs on Security

JULY 21, 2023

A review of the executives pages published by the 2022 list of Fortune 100 companies found only four — BestBuy , Cigna , Coca-Cola , and Walmart — that listed a Chief Security Officer (CSO) or Chief Information Security Officer (CISO) in their highest corporate ranks. Image: IANS Research.

CSO

CSO CISO Insurance Risk

Download eBook: Top virtual CISOs share 7 tips for vCISO service providers

The Hacker News

OCTOBER 24, 2022

Virtual Chief Information Security Officer (vCISO) services (also known as 'Fractional CISO' or 'CISO-as-a-Service') are growing in popularity, especially as growing cyber threats, tightening regulatory demands and strict cyber insurance requirements are driving small to medium-sized enterprises demand for strategic cybersecurity and compliance guidance (..)

CISO

CISO Cyber Insurance Insurance Cyber threats

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

Balonis Frank Balonis , CISO, Kiteworks By 2025, 75% of the global population will be protected under privacy laws, including U.S. Taylor Howard Taylor , CISO, Radware The EU’s AI First regulation aims to protect individuals from AI-based profiling and decision-making.

Cybersecurity

Cybersecurity CISO Risk Government

A Chief Security Concern for Executive Teams

Krebs on Security

DECEMBER 18, 2018

KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Nobody’s saying these companies don’t have CISOs and/or CSOs and CTOs in their employ.

CSO

CSO CISO Marketing Banking

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

SC Magazine

FEBRUARY 8, 2021

Every time a driver buckles up or an airbag is deployed we see the powerful influence of the insurance companies who insisted those measures become mandatory. Now, those insurers are poised to drive cybersecurity investment by insisting that organizations meet certain criteria to qualify for coverage. A maturing model.

Insurance

Insurance Cybersecurity Cyber Insurance Government

Cyber Insurers Are Not Your Friend – Why a Warranty May Be a Better Option

Security Boulevard

SEPTEMBER 6, 2024

Gary Perkins, Chief Information Security Officer In this landscape, organizations need a multi-faceted approach that includes prevention, detection, and response capabilities. A warranty tied to a comprehensive security solution supports this approach, providing both technological protection and financial assurance.

Cyber Insurance

Cyber Insurance Insurance CISO Information Security

Healthcare Now Third-Most Targeted Industry for Ransomware

SecureWorld News

NOVEMBER 14, 2024

"We need to remember, like every industry, there is huge gap between the dozen or so large Fortune 100 health insurance payers, and the 1 million hospitals and doctors offices. We just have to accept the risks and rely on insurance to recover.'" Louis, Missouri. Let me tell you why it's an impact to rabbit community.'

Healthcare

Healthcare Ransomware Identity Theft Data breaches

How Information Security Breaks The Classic IT Model

Security Boulevard

JUNE 26, 2022

How Information Security Breaks The Classic IT Model. That $3.29, even with cyber insurance, is still a significant hit to the organization’s bottom line. The CISO should be the ultimate authority when reducing cybersecurity operations, personnel, and budgets. The number of endpoints required to have EDR/XDR security.

Information Security

Information Security Technology Marketing Data breaches

Many Public Salesforce Sites are Leaking Private Data

Krebs on Security

APRIL 27, 2023

This misconfigured Salesforce Community site from the state of Vermont was leaking pandemic assistance loan application data, including names, SSNs, email address and bank account information. “To address the issue further, I reached out to several CISOs on LinkedIn and Twitter. Akiri said he notified the Washington D.C.

Banking

Banking Government Information Security Authentication

Years overdue, the profile of the CISO begins to rise as cyber grabs attention in boardrooms

SC Magazine

FEBRUARY 4, 2021

Executives from security company Kaspersky speak at a global partner conference about information security is a key business success factor – a reality that is starting to shine a brighter spotlight on security chiefs. Ian Gavan/Getty Images for Kaspersky Lab ). Our profile is certainly getting higher.

CISO

CISO Digital transformation Insurance Risk

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

Duo's Security Blog

OCTOBER 18, 2021

One area where campuses have been collaborating recently are changes around cyber liability insurance for higher education, an opportunity for campus cybersecurity teams to combine forces with their risk management team. In a recent Duo blog post, we gave an overview of cyber liability insurance.

Insurance

Insurance Education Risk Cyber Insurance

Why do CISOs Keep Quitting on Florida?

SecureWorld News

AUGUST 25, 2021

Chief Information Security Officers (CISO) have the luxury of being an incredibly hot commodity, so they can pretty much pick and choose where they work, as they are almost guaranteed to have a job waiting for them somewhere. In hopes of defending against attacks like these, Gov. Cybersecurity officials struggle in Florida.

CISO

CISO Cybersecurity Government Information Security

Security Affairs newsletter Round 494 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 20, 2024

CISA adds Fortinet products and Ivanti CSA bugs to its Known Exploited Vulnerabilities catalog Nation-state actor exploited three Ivanti CSA zero-days Dutch police dismantled dual dark web market ‘Bohemia/Cannabia’ macOS HM Surf flaw in TCC allows bypass Safari privacy settings Iran-linked actors target critical infrastructure organizations (..)

Data breaches

Data breaches Cybercrime Cyber Insurance Marketing

CFOs ignoring billions of dollars loss incurred through Cyber Risks

CyberSecurity Insiders

SEPTEMBER 13, 2022

Contrarily, 66% of Chief Information Security Officers (CISOs) felt that their IT infrastructure was super vulnerable to cyber attacks, as they were ill prepared to encounter them- all due to budget constraints. So, how CFOs should respond to such situations?

Cyber Risk

Cyber Risk Risk Cyber Insurance Insurance

InfoSec Leaders Weigh in on New SEC Rules Making CISO Hotseat Hotter

SecureWorld News

JULY 31, 2023

Sam Masiello , CISO, The Anschutz Corporation: "I would expect that many CISOs today are feeling as if their job just got harder and now has a brighter spotlight shining specifically on them. Many CISOs are already burnt out, and there is shortage of qualified CISOs globally. CISOs are expected to be a unicorn already.

CISO

CISO InfoSec Risk Cybersecurity

Suing the CISO: SolarWinds Fires Back

SecureWorld News

AUGUST 5, 2021

However, this is not just another nameless, faceless piece of litigation; this one specifically names the company's Chief Information Security Officer. A group of investors filed the suit which specifically calls out SolarWinds, its former CEO, and also Tim Brown, who is VP of Security and CISO.

CISO

CISO Passwords Software Cybersecurity

CISO Interview Series: Investing in Frameworks, Humans, and Your Technical Skills

Security Boulevard

OCTOBER 24, 2021

The journey for someone to the role of Chief Information Security Officer (CISO) isn’t often straightforward. She then worked her way through software sales, insurance, and even horses before becoming the CISO of a health insurance provider […]… Read More. Take Sandy Dunn, for example.

CISO

CISO Insurance Information Security Software

Cyber Security and Segregation of Duties

Security Boulevard

NOVEMBER 3, 2022

What Cybersecurity Needs To Know About Segregation Of DutiesCybersecurity has moved to the top of the list of priorities of CISOs and not just because of the astronomical cost of cyber insurance. billion on information security and risk management products and […].

Cyber Insurance

Cyber Insurance Insurance CISO Information Security

Simplifying Compliance in the Complex U.S. FinServ Regulatory Landscape

Thales Cloud Protection & Licensing

JANUARY 16, 2025

Some of the most important are Gramm-Leach-Bliley Act ( GLBA ), the National Association of Insurance Commissioners ( NAIC ) Data Security Model Law, the New York Department of Financial Services ( NYDFS ) Cybersecurity Regulation, and the National Credit Union Administration ( NCUA ) cybersecurity guidance.

Financial Services

Financial Services Encryption Insurance Government

Cider Security Publishes New Research Identifying the Top 10 CI/CD Security Risks

CyberSecurity Insiders

MARCH 16, 2022

The research was compiled by Cider Security along with experts from Netflix, Atlassian, Mozilla, Lemonade Insurance, Rapid7, Databricks, and the former CISOs of Twitter and LivePerson. For more information, visit www.cidersecurity.io/. . Press Contact. Raanan Loew. raanan@headline.media. IL:+972 54 467 6317.

Risk

Risk CISO Engineering Insurance

“Left of Boom” Cybersecurity: Proactive Cybersecurity in a Time of Increasing Threats and Attacks

Cisco Security

OCTOBER 18, 2021

The primary job of the Chief Information Security Officer (CISO) is to exercise continuous diligence in reducing risk, within the risk appetite and risk tolerance of the organization, so that the likelihood of a boom is low, and the corresponding magnitude of harm is limited. Cisco Secure Social Channels. Frameworks.

Cybersecurity

Cybersecurity CISO Insurance Risk

Are CISOs of Security Vendors in Your Community?

Lenny Zeltser

JUNE 21, 2024

Unfortunately, some events and communities exclude CISOs who work for security vendors. CISOs of All Types Industry veteran Andrew Hay once posted a tongue-in-cheek "CISO hierarchy of industry respect." At the top were security leaders of Fortune 500 companies. Lower, the CISOs at hardware vendors.

CISO

CISO Marketing Financial Services Insurance

Insurance Occurrence Assurance?

Andrew Hay

JULY 26, 2018

Though the breaches are concerning, the real story is that the financial institution suing its insurance provider for refusing to fully cover the losses. This, unfortunately, is the nature of insurance. Cyber security insurance cannot and should not, however, be viewed as your primary means of defending against an attack.

Insurance

Insurance Computers and Electronics Banking Cybercrime

Spotlight on Cybersecurity Leaders: Kip Boyle

SecureWorld News

NOVEMBER 2, 2022

Kip Boyle is the virtual Chief Information Security Officer (vCISO) for several companies. In the private sector, he was a CISO for an insurance company, credit card processor, bank, credit union, and IT Managed Service Provider. Kip will present a session on "Cyber Insurance for IT Professionals. "

Cybersecurity

Cybersecurity Cyber Insurance Insurance Cyber Risk

Tim Callahan: ‘CISOs must voluntarily be part of the solution’

SC Magazine

MARCH 30, 2021

A conversation with Tim Callahan, chief information security officer at Aflac. One of a series of security leadership profiles prepared by Cybersecurity Collaborative in conjunction with SC Media. Tim Callahan is chief information security officer at Aflac. What makes a successful security leader?

CISO

CISO Information Security Cybersecurity Risk

Secure Once, Comply Many

SecureWorld News

OCTOBER 11, 2023

For the last eight-plus years, I've been working as a fractional Chief Information Security Officer (CISO). Before that, I worked as a full-time CISO for an insurance company for seven years. I've redacted the sources, but our customers are offering SaaS and selling to large insurance companies.

Insurance

Insurance Passwords CISO Cybersecurity

The Hidden Cost of Ransomware: Wholesale Password Theft

Krebs on Security

JANUARY 6, 2020

.” Security news site Bleeping Computer reported on the T-Systems Ryuk ransomware attack on Dec. Cloud-based health insurance management portals. In our Dec. Multiple personal and business banking portals; -Microsoft Office365 accounts. Direct deposit and Medicaid billing portals. Numerous online payment processing services.

Passwords

Passwords Ransomware Password Management Malware

Importance of Cybersecurity Profession Highlights SecureWorld Chicago

SecureWorld News

JUNE 13, 2023

Well, information security, cybersecurity happens to be a critical part of the business, being able to achieve strategic objectives. Buerger recently joined Kraft Heinz as its Business Information Security Officer after serving as CISO at a smaller company.

Cybersecurity

Cybersecurity CISO InfoSec Risk

HackerOne awarded over $300 million bug hunters

Security Affairs

OCTOBER 30, 2023

If you want to remain proactive about new threats, you need to learn from the experts in the trenches: hackers,” said Chris Evans, HackerOne CISO and Chief Hacking Officer. “The Hacker-Powered Security Report makes clear that hackers are actively growing their skillsets to meet emerging threats.

Cyber Insurance

Cyber Insurance Hacking Insurance CISO

Analytics Insight Announces ‘The 10 Most Influential CISOs to Watch in 2021’

CyberSecurity Insiders

OCTOBER 7, 2021

. & HYDERABAD, India–( BUSINESS WIRE )–Analytics Insight has named ‘ The 10 Most Influential CISOs to Watch in 2021 ’ in its October magazine issue. The issue is focusing on trailblazing leaders who are remodelling their security strategy and staying abreast with the latest trends. He holds a Ph.D He holds a Ph.D

CISO

CISO Computers and Electronics Information Security Technology

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

Security Boulevard

JANUARY 18, 2024

The case against the UBER Chief Information Security Officer (CISO) concluded with a conviction last year and the case against the CISO of SolarWinds, announced in 2023, is ongoing. Specifically holding CISOs accountable for fraudulent reporting is new and one of the most heated topics going into 2024. In 2024: 1.

Risk

Risk Cybersecurity CISO Technology

Boards Challenged to Embrace Cybersecurity Oversight

Security Boulevard

MARCH 13, 2025

Many regulatory bodies, insurance providers, business partners, and customers take cybersecurity very seriously and now hold the CEO and Board accountable. The newfound importance has rapidly elevated the career trajectory of security leaders into the ranks of the C-suite. Times change.

Cybersecurity

Cybersecurity CISO Cyber Risk Risk

12 Pieces Examining Trends in Cybersecurity for 2023

SecureWorld News

DECEMBER 29, 2022

It will be crucial for everyone to stay informed and prepared.". Top 10 Challenges Facing CISOs in 2023 – "While 2022 was certainly no walk in the park, strong cybersecurity investments and institutional support suggest a light at the end of the tunnel.

Cybersecurity

Cybersecurity CISO Artificial Intelligence Cyber Insurance

Spotlight Podcast: QOMPLX CISO Andy Jaquith on COVID, Ransomware and Resilience

The Security Ledger

JULY 22, 2020

In this Spotlight podcast* we’re joined by Andrew Jaquith, the CISO at QOMPLX to talk about how the COVID pandemic is highlighting longstanding problems with cyber risk management and cyber resilience. We also talk about how better instrumenting of information security can help companies get a grip on fast-evolving cyber risks like.

CISO

CISO Cyber Risk Ransomware Risk

Spotlight on Cybersecurity Leaders: Dr. Fred Kwong

SecureWorld News

MAY 29, 2024

Dr. Fred Kwong is VP and CISO at DeVry University and is based in Chicago, IL. He has been in the information security and technology field for the past 20 years working in education, financial, telecommunication, healthcare, and insurance sectors.

Cybersecurity

Cybersecurity CSO Technology Telecommunications

The Rise of Data Sovereignty and a Privacy Era

SecureWorld News

JUNE 24, 2024

Additionally, there sectoral privacy regulations in the United States, such as the Health Insurance Portability and Accountability Act (HIPAA), and state level regulations like the California Consumer Privacy Act (CCPA). The potential loss of reputation from a privacy breach is a clarion call for business executives and CISOs.

IoT

IoT InfoSec Artificial Intelligence Risk

Security Experts Assess 2.0 Draft of NIST Cybersecurity Framework

SecureWorld News

AUGUST 23, 2023

Michael Gregg, CISO, State of North Dakota: " One of the things that most excites me about the new framework is the addition of the 'govern' function. 26 on " Lessons from a CISO: Increasing Your Cybersecurity Footprint Despite Worn Soles. Yacone is speaking on " API Security: A CISO Perspective " at SecureWorld Denver on Sept.

Cybersecurity

Cybersecurity CISO Government Risk

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Centraleyes

MARCH 13, 2025

Case in Point : In 2019, First American Title Insurance Company experienced a significant data exposure incident, revealing sensitive customer documents due to a vulnerability in their document-sharing application. million fine was imposed on a major financial institution for failing to implement adequate security controls.

Cybersecurity

Cybersecurity Financial Services Risk Encryption

Security pros rely on peer groups and open communication for help with stress

SC Magazine

MAY 25, 2021

And while family and close friends might be willing to lend a sympathetic ear, they simply “don’t understand anywhere near the world I live in professionally,” explained Corll, a member of CISO membership community Cybersecurity Collaborative. Corll said he closely interacts with about 20 other CISOs through the U.S.-based

InfoSec

InfoSec CISO Media Cybersecurity

What Is Exposure Management and Why Does It Matter?

Security Boulevard

MARCH 17, 2025

Security executives: CISOs, business information security officers (BISOs) and other security executives require accurate risk posture assessment to improve investment decisions, make decisions about insurability, meet regulatory and compliance requirements and drive organizational improvement.

Risk

Risk Mobile Technology IoT

News alert: Fireblocks uncovers vulnerabilities impacting dozens of major wallet providers

The Last Watchdog

AUGUST 9, 2023

Setting a high industry bar for safety protects the ecosystem and is critical to the broader adoption of this technology,” said Jeff Lunglhofer, Chief Information Security Officer at Coinbase. Some of the biggest trading desks have switched to Fireblocks because it’s the only solution that CISOs and Ops Teams both love.

Technology

Technology Retail Insurance CISO

How to build a cyber capable board

Security Boulevard

JUNE 23, 2022

Despite this, a 2019 poll of 1,300 large international organisations by insurance broker wtw found that only 11 per cent of boards have taken direct responsibility for their firms’ cyber security. 2 Talk to your CISO. Your HR, IT and security teams should work together on this?—?discuss many do not report to it directly.

Insurance

Insurance Cyber Risk CISO Cyber Insurance

GUEST ESSAY: Could CISOs be on the verge of disproving the ‘security-as-a-cost-center’ fallacy?

First American Financial Pays Farcical $500K Fine

Trending Sources

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Download eBook: Top virtual CISOs share 7 tips for vCISO service providers

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

A Chief Security Concern for Executive Teams

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

Cyber Insurers Are Not Your Friend – Why a Warranty May Be a Better Option

Healthcare Now Third-Most Targeted Industry for Ransomware

How Information Security Breaks The Classic IT Model

Many Public Salesforce Sites are Leaking Private Data

Years overdue, the profile of the CISO begins to rise as cyber grabs attention in boardrooms

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

Why do CISOs Keep Quitting on Florida?

Security Affairs newsletter Round 494 by Pierluigi Paganini – INTERNATIONAL EDITION

CFOs ignoring billions of dollars loss incurred through Cyber Risks

InfoSec Leaders Weigh in on New SEC Rules Making CISO Hotseat Hotter

Suing the CISO: SolarWinds Fires Back

CISO Interview Series: Investing in Frameworks, Humans, and Your Technical Skills

Cyber Security and Segregation of Duties

Simplifying Compliance in the Complex U.S. FinServ Regulatory Landscape

Cider Security Publishes New Research Identifying the Top 10 CI/CD Security Risks

“Left of Boom” Cybersecurity: Proactive Cybersecurity in a Time of Increasing Threats and Attacks

Are CISOs of Security Vendors in Your Community?

Insurance Occurrence Assurance?

Spotlight on Cybersecurity Leaders: Kip Boyle

Tim Callahan: ‘CISOs must voluntarily be part of the solution’

Secure Once, Comply Many

The Hidden Cost of Ransomware: Wholesale Password Theft

Importance of Cybersecurity Profession Highlights SecureWorld Chicago

HackerOne awarded over $300 million bug hunters

Analytics Insight Announces ‘The 10 Most Influential CISOs to Watch in 2021’

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

Boards Challenged to Embrace Cybersecurity Oversight

12 Pieces Examining Trends in Cybersecurity for 2023

Spotlight Podcast: QOMPLX CISO Andy Jaquith on COVID, Ransomware and Resilience

Spotlight on Cybersecurity Leaders: Dr. Fred Kwong

The Rise of Data Sovereignty and a Privacy Era

Security Experts Assess 2.0 Draft of NIST Cybersecurity Framework

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Security pros rely on peer groups and open communication for help with stress

What Is Exposure Management and Why Does It Matter?

News alert: Fireblocks uncovers vulnerabilities impacting dozens of major wallet providers

How to build a cyber capable board

Stay Connected