CISO, Penetration Testing and Technology

Top 9 Trends In Cybersecurity Careers for 2025

eSecurity Planet

OCTOBER 18, 2024

Technologies that were figments of the imagination a dozen years ago, if they were conceived of at all, quickly become mainstream — think generative artificial intelligence (GenAI) or blockchain. It’s obviously a step to penetration testing, but it’s also helpful for architect, engineer, and analyst jobs.

Cybersecurity

Cybersecurity Artificial Intelligence Penetration Testing CISO

News alert: Aembit appoints former Snowflake security director Mario Duarte as its new CISO

The Last Watchdog

OCTOBER 2, 2024

2, 2024, CyberNewswire — Aembit , the non-human IAM company, today announced the appointment of Mario Duarte as chief information security officer (CISO). Duarte’s journey in cybersecurity began with a passion for penetration testing, sparked by the 1980s cult classic film WarGames. Silver Spring, MD, Oct.

CISO

CISO Penetration Testing Retail Accountability

GUEST ESSAY: Recalibrating critical infrastructure security in the wake of evolving threats

The Last Watchdog

APRIL 30, 2024

For all the discussion around the sophisticated technology, strategies, and tactics hackers use to infiltrate networks, sometimes the simplest attack method can do the most damage. Vetting process Normally, the vetting process for a technology provider falls strictly under the purview of IT.

Penetration Testing

Penetration Testing CISO Unstructured Data Technology

A CISO's Guide to a Good Night's Sleep

SecureWorld News

SEPTEMBER 30, 2020

It is a common feeling in the cybersecurity community that CISOs do not sleep well at night. CISOs worry about the latest incident, end of life technology in their environment, breaches in the news, insecure users and vendors, penetration testing results, budget and resources, and the latest vulnerability report (to name a few).

CISO

CISO Penetration Testing Technology Antivirus

GUEST ESSAY: 7 tips for protecting investor data when it comes to alternative asset trading

The Last Watchdog

JULY 11, 2023

Conduct regular penetration testing. Regular and thorough penetration testing is crucial for identifying vulnerabilities within trading systems. About the essayist: Brian Nadzan, is CTO/CISO of Templum , a provider of technology and infrastructure solutions for the private markets.

Penetration Testing

Penetration Testing Antivirus Threat Detection Encryption

CISO Stories Podcast: So You Want to be a Cyber Spy?

Security Boulevard

JUNE 17, 2021

Ira Winkler, CISO at Skyline Technology Solutions, recounts his amazing journey from wannabe astronaut to NSA intelligence analyst, social engineer, systems hacker and author, and some of the crazy things that happened along the way - check it out. The post CISO Stories Podcast: So You Want to be a Cyber Spy?

CISO

CISO Social Engineering Engineering Technology

Let’s Talk Cybersecurity on the Agent of Influence Podcast

NetSpi Executives

MARCH 25, 2025

In a world that pushes the limits with technology comes an increase in the relentless persistence of cyberattacks and we need to be prepared. Meet the Agent of Influence Host, Nabil Hannan Nabil Hannan hosts the Agent of Influence podcast and is the Field CISO at NetSPI. Interested in becoming a guest on Agent of Influence?

Cybersecurity

Cybersecurity CISO Penetration Testing Financial Services

Cross-post: Office of the CISO 2024 Year in Review: AI Trust and Security

Anton on Security

JANUARY 28, 2025

Gen AI Security Fundamentals Gen AI demystified: Understanding gen AI types and theirrisks In todays rapidly evolving technological landscape, gen AI presents both opportunities and security challenges for business leaders. A recap of our key blogs, papers and podcasts on AI security in 2024follows.

CISO

CISO Risk Government Artificial Intelligence

NetSPI Lands $410 Million in Funding – And Other Notable Cybersecurity Deals

eSecurity Planet

OCTOBER 17, 2022

NetSPI, a top penetration testing and vulnerability management company, recently announced a $410 million funding round, a huge amount in a year in which $100+ million rounds have become a rarity. Founded over 20 years ago, the company’s vision is “technology powered, human delivered.” Arctic Wolf.

Cybersecurity

Cybersecurity Penetration Testing CISO Marketing

What companies need to know about ‘SecOps’ — the path to making ‘digital transformation’ secure

The Last Watchdog

AUGUST 21, 2018

Cornell is the chief technology officer at the application security firm Denim Group. It identifies all of the teams responsible for different applications and helps organizations manage the variety of testing activities used to secure those applications – SAST, DAST, IAST, open source management, penetration testing, and so on”.

Digital transformation

Digital transformation Penetration Testing IoT Risk

Ask These 5 AI Cybersecurity Questions for a More Secure Approach to Adversarial Machine Learning

NetSpi Executives

FEBRUARY 21, 2024

Like many technologies that came before it, AI is advancing faster than security standards can keep up with. For a comprehensive view of security in ML models, access our white paper, “ The CISO’s Guide to Securing AI/ML Models.” The most successful technology innovations start with security from the ground up.

Artificial Intelligence

Artificial Intelligence Cybersecurity Penetration Testing Architecture

How the Great Supply Chain Disruption Affects IT Security

Duo's Security Blog

DECEMBER 2, 2021

With closer technology dependencies between organizations and suppliers, security teams need to be able to react swiftly to these changes. As one CISO said to me, “With immediate suppliers you can learn how to trust; beyond them you need to learn how to pray.” Already CISOs often chat offline.

CISO

CISO Penetration Testing Risk Authentication

Protecting your Customers and Brand in 2022: Are you doing enough?

Jane Frankland

APRIL 28, 2022

Nowadays, organisations need digital leaders such as CIOs, CISOs, and CTOs who are strategists, visionaries, and know how to manage, effectively. Digital leaders need to solve this issue fast and technology has a valuable part to play in this. They found 1 in 6 CISOs were turning to alcohol or medication to cope with stress.

CISO

CISO Mobile Technology Risk

What is Vulnerability Scanning & How Does It Work?

eSecurity Planet

FEBRUARY 8, 2023

Despite their differences, both vulnerability scans and penetration tests are part of the wider vulnerability management framework or process. They are two different tools, each essential in their own way and critical for chief information security officers (CISOs) to keep their infrastructure safe.

Penetration Testing

Penetration Testing Software IoT Policy Compliance

IATA Cyber Regulations

Centraleyes

DECEMBER 11, 2024

Recent amendments have focused on addressing vulnerabilities linked to digital transformation in aviation, such as the use of cloud technologies and IoT devices. Ongoing Monitoring and Compliance: Regular audits, penetration testing, and compliance checks are vital to demonstrate adherence to the regulations.

Risk

Risk Cybersecurity Penetration Testing Digital transformation

Simplifying Compliance in the Complex U.S. FinServ Regulatory Landscape

Thales Cloud Protection & Licensing

JANUARY 16, 2025

More than any other FinServ regulation, it includes unique components, such as the requirement for a Chief Information Security Officer (CISO) and an annual compliance certification. Multi-Factor Authentication: Asserting the identity of people or systems. Application Security: Ensuring software is resilient to cyber threats.

Financial Services

Financial Services Encryption Insurance Government

Cross-post: Office of the CISO 2024 Year in Review: AI Trust and Security

Security Boulevard

JANUARY 28, 2025

Gen AI Security Fundamentals Gen AI demystified: Understanding gen AI types and theirrisks In todays rapidly evolving technological landscape, gen AI presents both opportunities and security challenges for business leaders. A recap of our key blogs, papers and podcasts on AI security in 2024follows.

CISO

CISO Risk Government Artificial Intelligence

Red Team vs Blue Team vs Purple Team: Differences Explained

eSecurity Planet

FEBRUARY 21, 2023

Blue team members might be led by a chief information security officer (CISO) or director of security operations, making this team the largest among the three. These members may be led by a director of penetration testing or a senior security consultant and be organized in sub-teams based on the type of testing they are performing.

Social Engineering

Social Engineering Penetration Testing Engineering Risk

University, Professional Certification or Direct Experience?

Security Affairs

SEPTEMBER 8, 2019

a researcher, a professional penetration tester, a reverse engineer, a CISO, etc.) During my PhD program I worked for US Government (@ National Institute of Standards and Technology, Security Division) where I did intensive researches in Malware evasion techniques and penetration testing of electronic voting systems.

Computers and Electronics

Computers and Electronics Penetration Testing Education Cybersecurity

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

The Last Watchdog

AUGUST 19, 2021

This is the type of incident that could have been identified as a risk by a properly scoped penetration test and detected with the use of internal network monitoring tools. Clearly, there was a failure somewhere, either human error or faulty technology or both. Joshua Arsenio, Director, Security Compass Advisory.

Mobile

Mobile Data breaches Authentication Accountability

NYDOH Cybersecurity Regulations: What Healthcare Providers Need to Know in 2025

Centraleyes

DECEMBER 19, 2024

The new NY regulations, however, go further by requiring hospitals to implement: Tailored cybersecurity programs, Designation of a Chief Information Security Officer (CISO), Penetration testing, Mandatory breach reporting within 72 hours.

Healthcare

Healthcare Cybersecurity Penetration Testing CISO

Breach of healthcare debt collection firm exposes 1.9M patients – cyber experts weigh in

CyberSecurity Insiders

JULY 19, 2022

If companies want to stand up to data-related extortion then data-in-use encryption is the technology of choice for unmatched immunity. 3) During these dynamic times, routine technological audits need to occur on a more frequent basis than they did before, to prevent vulnerabilities from being exploited.”

Healthcare

Healthcare Ransomware Encryption Penetration Testing

Top VC Firms in Cybersecurity of 2022

eSecurity Planet

APRIL 26, 2022

As a leading VC, BVP offers budding companies plenty to consider, with a set of roadmaps and tools for today’s technologies and market complexities. Notable cybersecurity exits for the company include AVG Technologies, Cognitive Security, OpenDNS, and Carbon Black. Also read : Addressing Remote Desktop Attacks and Security.

Cybersecurity

Cybersecurity Technology Marketing Healthcare

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Centraleyes

MARCH 13, 2025

Enhanced Governance Requirements Entities must appoint a qualified Chief Information Security Officer (CISO) with a direct reporting line to the board of directors. Schedule periodic penetration testing and vulnerability assessments to identify weaknesses before attackers do. These changes took effect in 2024.

Cybersecurity

Cybersecurity Financial Services Risk Encryption

Key Strategies for Tackling External Attack Surface Visibility

NetSpi Executives

MARCH 11, 2025

Meet the Contributors This roundup includes insights from these NetSPI Partners: Thomas Cumberland, Tier 3 Senior Analyst at Cyber Sainik Michael Yates, CISO at All Lines Tech Sean Mahoney, Vice President at Netswitch Technology Management Kendra Vicars, Risk and Compliance Manager at Legato Security 1.

Risk

Risk CISO Technology Firewall

Common security practices don’t fully protect today’s enterprise SaaS platforms

SC Magazine

MARCH 24, 2021

Even the most proactive enterprise CISO doesn’t have clear guidance on how to effectively move forward. What should enterprise CISOs do? But like cloud services and nearly all other types of technology, SaaS has a shared responsibility model between the vendor and the client. But each of these have major limitations.

CISO

CISO IoT Penetration Testing Manufacturing

Cisco Partner Story: Security Resilience is a Journey, Not a Destination

Cisco Security

MAY 10, 2022

We have a first-hand understanding of what the Cisco security portfolio can do to support global technology activities. Those employees and our leadership knew we had the responsibility to deliver to governments, counties, hospitals, and schools, who were all dependent upon us for their technology used to provide their critical services.

CISO

CISO Penetration Testing Education Cybersecurity

4 Key Themes from Black Hat USA 2024

NetSpi Executives

AUGUST 16, 2024

In cybersecurity, few events hold as much anticipation as Black Hat USA, where industry experts come together to discuss the latest trends and technologies. ” Field CISO Nabil Hannan also noticed the buzz around AI. The only way to do this is through greater automation and leveraging technology.” ” 2. .”

Penetration Testing

Penetration Testing CISO Technology Artificial Intelligence

Camera tricks: Privacy concerns raised after massive surveillance cam breach

SC Magazine

MARCH 10, 2021

Making matters worse, the cameras employ facial recognition technology, which leads to questions as to whether an attacker could actually identify individuals caught on camera and then pursue them as targets for social engineering schemes or something even more nefarious. Of course, for some institutions, this is not practical.

Surveillance

Surveillance IoT Accountability Passwords

Businesses Secretly Pentest Partners as Supply Chain Fears Grow

eSecurity Planet

SEPTEMBER 29, 2022

Howard Taylor, CISO of Radware, goes so far as to call it the “death of trust.” As a result, some are now taking extra precautions such as hiring specialized companies to conduct penetration testing audits on externally facing partner resources. And they may not even be aware that they have them.

Insurance

Insurance Internet Internet Software

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

eSecurity Planet

MAY 2, 2024

> 54% of all data breaches come from ransomware attacks in manufacturing, healthcare, government, financial, retail, and technology industries. It’s always tempting to blame budgets, but most CISOs feel confident about their budgets and have already deployed significant resources. 60% of all breaches come from the USA.

Cybersecurity

Cybersecurity DDOS Penetration Testing Passwords

A roadmap for developing a secure enterprise cloud operating model

SC Magazine

JUNE 4, 2021

Just in the last two years, many such simple and avoidable mistakes in securing the application and data hosted in the public cloud have led to massive data and network breaches at large financial and technology firms such as Accenture, Booz Allen Hamilton, Capital One, Facebook, MGM, Microsoft, and Verizon.

Penetration Testing

Penetration Testing Technology DNS CISO

Sunsetting legacy Cybersecurity Process for Better Optimization and Security Modernization

Security Boulevard

SEPTEMBER 19, 2022

The cost of sunsetting security products, legacy applications, and legacy technology imposes a financial strain on every organization. Before considering sunsetting technology products, most SecOps and DevOps teams focus on evaluating and updating, if possible, legacy processes, including developing a legacy-system modernization workflow.

Cybersecurity

Cybersecurity Architecture Risk Insurance

AI in Cybersecurity: How to Cut Through the Overhype and Maximize the Potential

CyberSecurity Insiders

DECEMBER 4, 2021

However, the engineers were optimistic about the direction they were heading and the technologies they would be creating as they relate to ML and DL. Offensive cybersecurity application : ML is being applied to help with phases of penetration testing, specifically in reconnaissance, scanning and fuzzing/exploit development.

Cybersecurity

Cybersecurity Education Artificial Intelligence Engineering

Inside CAASM: Q&A with NetSPI Leadership

NetSpi Executives

JUNE 13, 2024

Aaron Shilts, CEO at NetSPI, is joined by Tom Parker, founder and CEO at Hubble (and new NetSPI Chief Technology Officer!) to discuss integrating the cutting-edge CAASM technology with NetSPI’s proactive security solutions all under one platform. That’s very exciting for me. Accessing that data was difficult. It’s a force multiplier.

Technology

Technology Marketing CISO Penetration Testing

2025 Cybersecurity Trends That Redefine Resilience, Innovation, and Trust

NetSpi Executives

DECEMBER 3, 2024

This will drive a greater shift towards fewer, more comprehensive solutions that reduce management complexity and enhance team productivity. With cyber threats growing more complex and frequent, CISOs are under immense pressure to ensure that their teams can respond rapidly and decisively.

Cybersecurity

Cybersecurity CISO Social Engineering Accountability

Beyond Compliance: Building a Culture of Continuous Security Improvement

SecureWorld News

SEPTEMBER 5, 2024

There are several different essential tools and technologies that play an essential role in effective monitoring and threat detection. Ongoing Penetration Testing: Conducting ongoing penetration testin g is essential for identifying weaknesses that attackers could exploit.

Threat Detection

Threat Detection Phishing Penetration Testing Cyber threats

NetSPI [Un]Wrapped: Our Top Hits from 2023

NetSpi Executives

DECEMBER 28, 2023

This eBook shares how major companies are using distributed ledger technology (DLT) today and the importance of security planning for blockchain operations. How to Use Attack Surface Management for Continuous Pentesting Point in time testing is so 2023. Here are the top three technical articles our audience loved in 2023.

Education

Education Penetration Testing CISO Cybersecurity

Vulnerability Management Policy Template

eSecurity Planet

MAY 12, 2023

Testing must be performed to verify that resources have been installed, configured, integrated, and secured without error or gap in security. Active Vulnerability Detection Vulnerability scans and penetration testing will be performed [quarterly] and after significant changes to resources to test for unknown vulnerabilities.

Penetration Testing

Penetration Testing Risk Firmware Software

Hackers Tap into Oldsmar Water Facility

Security Boulevard

FEBRUARY 11, 2021

By Curtis Simpson, CISO. Because back in July 2020, the NSA and CISA warned of the perfect storm facing critical operations reliant upon operational technology (otherwise known as OT). Shodan) and penetration testing toolkits (e.g. Prior to Armis, he was the CISO at Sysco, a Fortune 54 corporation. Curtis Simpson.

Energy and Utilities

Energy and Utilities CISO Risk Penetration Testing

Ask These 5 AI Cybersecurity Questions for a More Secure Approach to Adversarial Machine Learning

NetSpi Executives

FEBRUARY 21, 2024

Like many technologies that came before it, AI is advancing faster than security standards can keep up with. For a comprehensive view of security in ML models, access our white paper, “ The CISO’s Guide to Securing AI/ML Models.” The most successful technology innovations start with security from the ground up.

Penetration Testing

Penetration Testing Artificial Intelligence Cybersecurity Architecture

The secrets to start a cybersecurity career

Responsible Cyber

JULY 14, 2024

This path is ideal for individuals who possess strong leadership capabilities and have a thorough understanding of information technology systems. Information Technology Systems: Thorough understanding of IT systems, network architecture, and data management. One popular route is the Leadership and Operations Route.

Cybersecurity

Cybersecurity Education Penetration Testing Engineering

How purple teams deliver actionable data to security pros

SC Magazine

APRIL 2, 2021

In the wake of a multitude of ransomware attacks, fallout from the SolarWinds breach and the Oldsmar water supply attack, CISOs are looking for effective methods to reduce risk beyond traditional means such as penetration testing. Enter purple teams.

CISO

CISO Penetration Testing Architecture Healthcare

From Spreadsheets to Solutions: How PlexTrac Enhances Security Workflows

Security Boulevard

MARCH 23, 2025

In this special episode of the Shared Security Podcast, join Tom Eston and Dan DeCloss, CTO and founder of PlexTrac, as they discuss the challenges of data overload in vulnerability remediation. Discover how PlexTrac addresses these issues by integrating various data sources, providing customized risk scoring, and enhancing remediation workflows.

Risk

Risk Penetration Testing Social Engineering Data privacy

Top 9 Trends In Cybersecurity Careers for 2025

News alert: Aembit appoints former Snowflake security director Mario Duarte as its new CISO

Trending Sources

GUEST ESSAY: Recalibrating critical infrastructure security in the wake of evolving threats

A CISO's Guide to a Good Night's Sleep

GUEST ESSAY: 7 tips for protecting investor data when it comes to alternative asset trading

CISO Stories Podcast: So You Want to be a Cyber Spy?

Let’s Talk Cybersecurity on the Agent of Influence Podcast

Cross-post: Office of the CISO 2024 Year in Review: AI Trust and Security

NetSPI Lands $410 Million in Funding – And Other Notable Cybersecurity Deals

What companies need to know about ‘SecOps’ — the path to making ‘digital transformation’ secure

Ask These 5 AI Cybersecurity Questions for a More Secure Approach to Adversarial Machine Learning

How the Great Supply Chain Disruption Affects IT Security

Protecting your Customers and Brand in 2022: Are you doing enough?

What is Vulnerability Scanning & How Does It Work?

IATA Cyber Regulations

Simplifying Compliance in the Complex U.S. FinServ Regulatory Landscape

Cross-post: Office of the CISO 2024 Year in Review: AI Trust and Security

Red Team vs Blue Team vs Purple Team: Differences Explained

University, Professional Certification or Direct Experience?

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

NYDOH Cybersecurity Regulations: What Healthcare Providers Need to Know in 2025

Breach of healthcare debt collection firm exposes 1.9M patients – cyber experts weigh in

Top VC Firms in Cybersecurity of 2022

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Key Strategies for Tackling External Attack Surface Visibility

Common security practices don’t fully protect today’s enterprise SaaS platforms

Cisco Partner Story: Security Resilience is a Journey, Not a Destination

4 Key Themes from Black Hat USA 2024

Camera tricks: Privacy concerns raised after massive surveillance cam breach

Businesses Secretly Pentest Partners as Supply Chain Fears Grow

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

A roadmap for developing a secure enterprise cloud operating model

Sunsetting legacy Cybersecurity Process for Better Optimization and Security Modernization

AI in Cybersecurity: How to Cut Through the Overhype and Maximize the Potential

Inside CAASM: Q&A with NetSPI Leadership

2025 Cybersecurity Trends That Redefine Resilience, Innovation, and Trust

Beyond Compliance: Building a Culture of Continuous Security Improvement

NetSPI [Un]Wrapped: Our Top Hits from 2023

Vulnerability Management Policy Template

Hackers Tap into Oldsmar Water Facility

Ask These 5 AI Cybersecurity Questions for a More Secure Approach to Adversarial Machine Learning

The secrets to start a cybersecurity career

How purple teams deliver actionable data to security pros

From Spreadsheets to Solutions: How PlexTrac Enhances Security Workflows

Stay Connected