Krebs on Security

DECEMBER 18, 2018

KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Nobody’s saying these companies don’t have CISOs and/or CSOs and CTOs in their employ.

CSO 251

CSO CISO Marketing Banking 251

CyberSecurity Insiders

MAY 3, 2023

This is why CISOs everywhere should be concerned. CISOs should begin to familiarize themselves with these and evaluate their potential suitability for adoption. Once that ecosystem is understood and its supporting cryptology has been identified, CISOs should develop a plan that considers quantum-resistant technology.

CISO 133

CISO Identity Theft Encryption Social Engineering 133

Malwarebytes

NOVEMBER 1, 2023

The Securities and Exchange Commission (SEC) has announced charges against software company SolarWinds Corporation and its chief information security officer (CISO), Timothy G. Brown, for “fraud and internal control failures relating to allegedly known cybersecurity risks and vulnerabilities.”

CISO 137

CISO Risk Software Cybersecurity 137

CyberSecurity Insiders

SEPTEMBER 13, 2022

Chief Financial Officers aka CFOs are ignoring billions of dollars loss incurred through cyber risks and threats, says a survey. Contrarily, 66% of Chief Information Security Officers (CISOs) felt that their IT infrastructure was super vulnerable to cyber attacks, as they were ill prepared to encounter them- all due to budget constraints.

Cyber Risk 131

Cyber Risk Risk Cyber Insurance Insurance 131

CSO Magazine

MARCH 16, 2023

AI and machine learning (ML) capabilities present a huge opportunity for digital transformation but open yet another threat surface that CISOs and risk professionals will have to keep tabs on. Fundamental to managing AI risks will be threat modeling and testing for weaknesses in AI deployments.

CISO 106

CISO Digital transformation Risk Cybersecurity 106

IT Security Guru

MARCH 28, 2023

As cyber threats increase in frequency and complexity, organizations recognize the importance of having a Chief Information Security Officer (CISO) to protect their sensitive data and infrastructure. Commit to Learning and Participation As a CISO, you probably have an endless to do list of vital chores that can keep you preoccupied.

CISO 108

CISO Information Security Cyber Risk Cyber threats 108

CyberSecurity Insiders

JANUARY 12, 2022

In this blog, we’ll look at the root causes of concern for today's CISO and share some practical strategies to deter cybercriminals. The CISO role can be an unenviable one. Is the cyber deck stacked against today's CISO? If you own the risks, who owns the elimination? What about risk management?

CISO 126

CISO Cybercrime Risk Healthcare 126

Cisco Security

AUGUST 3, 2021

I’m delighted to announce the latest member of our growing CISO Advisor team, Pam Lindemeon. Pam is an exceptional leader; dedicated to advancing women in the IT industry, and I’m so glad she’s now joined Cisco to work closely with our community of CISOs and offer advice and guidance based on her incredible experience. Pam Lindemeon.

CISO 126

CISO Technology Information Security Cybersecurity 126

CyberSecurity Insiders

JUNE 22, 2023

This extensive list of virtual CISO (vCISO) providers, collated by Cynomi , means that small- and medium-sized businesses (SMBs) can easily tap the expertise of qualified cybersecurity professionals to protect their digital assets and ensure compliance. In this climate, strong cybersecurity measures are crucial.

CISO 108

CISO Cybersecurity Technology Information Security 108

Security Boulevard

FEBRUARY 25, 2022

Microsoft on Multi-Cloud: It’s the New Imperative But Cyberattacks Present Challenges. Further, they must take stock of evolving cyber risks in this multicloud, multi-platform world, and identify where blind spots may exist across a broad new set of users, devices, and destinations.”. -- Microsoft, February 23, 2022. brooke.crothers.

Cyber Risk 131

Cyber Risk CISO Technology Software 131

SC Magazine

JUNE 10, 2021

Dawn Cappelli is VP and CISO at Rockwell Automation. Cappelli started at Rockwell as director of insider risk. Instead, an effective CISO works with the teams across the company and is viewed as a business partner. A CISO needs to bring business value to the company. CISOs usually “grow up” in IT security.

CISO 108

CISO Risk Manufacturing Software 108

Dark Reading

MAY 18, 2023

Risk from artificial intelligence vectors presents a growing concern among security professionals in 2023.

Artificial Intelligence 113

Artificial Intelligence CISO Risk 113

SC Magazine

APRIL 1, 2021

Katz ultimately accomplished both by adhering to the same philosophy: “Information security is a business risk management issue.” Listen to episode 6 of CISO Stories, Your Job is to Make CyberSecurity Simple! Click here to access all available episodes of CISO Stories.

Risk 97

Risk CISO Information Security Banking 97

SC Magazine

JUNE 8, 2021

All of the insights are presented in three areas: 1) strategic imperatives to establish vision and direction, 2) new hiring practices to change hiring outcomes, and 3) tips to creating a culture of inclusion to increase equality, justice, and employee retention. To find out more, visit www.cyberleadersunite.com.

CISO 104

CISO Cybersecurity Information Security Banking 104

Trend Micro

JULY 28, 2024

For CISOs, the pressure is on to roll out AI security policies and technologies that can mitigate very real and present risks. It’s clear that generative AI is a permanent addition to the enterprise IT toolbox.

CISO 116

CISO Cybersecurity Technology Risk 116

The Last Watchdog

JUNE 2, 2022

Third-Party Risk Management ( TPRM ) has been around since the mid-1990s – and has become something of an auditing nightmare. Related: A call to share risk assessments. This is because third-party risk has become a huge problem for enterprises in the digital age. Cyber risks profiling. based CyberGRX. Cyber hygiene boost.

Cyber Risk 266

Cyber Risk Risk Digital transformation Insurance 266

CSO Magazine

APRIL 20, 2023

Cyber insurance provider At-Bay has announced the launch of a new InsurSec solution to help small-to-mid sized businesses (SMBs) improve their security and risk management postures through their insurance policy. To read this article in full, please click here

Cyber Insurance 105

Cyber Insurance Insurance Risk CISO 105

The Last Watchdog

JUNE 22, 2023

This extensive list of virtual CISO (vCISO) providers, collated by Cynomi , means that small- and medium-sized businesses (SMBs) can easily tap the expertise of qualified cybersecurity professionals to protect their digital assets and ensure compliance. In this climate, strong cybersecurity measures are crucial.

CISO 100

CISO Cybersecurity Media Marketing 100

Security Boulevard

OCTOBER 17, 2022

With software supply chain attacks ramping up — and presenting a very real new risk category for security teams and CISOs — software bills of materials (SBOMs) are getting the nod from both government and industry experts as a "no brainer.".

Software 122

Software CISO Government Risk 122

Security Boulevard

JUNE 14, 2023

Information security (InfoSec) risk management with third parties, including outsourcing, requires persistence and consistency due to the primary business risk it presents. The post Assessing Third-Party InfoSec Risk Management appeared first on Security Boulevard.

InfoSec 96

InfoSec Risk Information Security CISO 96

Cisco Security

DECEMBER 7, 2021

Over the next few months, we’ll be publishing a supporting blog series, hearing from several of our advisory CISO team members, providing their commentary and recommendations around each of these five most-effective practices. Figure 2: Effect of staffing models on perceived threat detection and incident response capabilities.

Threat Detection 106

Threat Detection Technology Cybersecurity CISO 106

Krebs on Security

DECEMBER 1, 2022

“Our team quickly triaged the report and determined the risk to partners to be minimal,” said Patrick Beggs , ConnectWise’s chief information security officer. “Nevertheless, the mitigation was simple and presented no risk to partner experience, so we put it into the then-stable 22.8 Update, 7:25 p.m.

Phishing 283

Phishing Architecture Passwords Accountability 283

Notice Bored

AUGUST 5, 2022

Zero-trust - whatever that means to the presenter and audience; Cloud - meaning Azure, specifically; DevOps and DevSecOps - whatever those terms mean ; MS threat intelligence including artificial intelligence/machine learning rapid responses to novel malware (a cool idea, provided it works reliably).

CISO 63

CISO Risk Artificial Intelligence Marketing 63

Cisco Security

FEBRUARY 19, 2021

This affected all levels of the cybersecurity landscape, and it has had a particularly broad impact for those in the C-Suite, specifically, the Chief Information Security Officer (CISO). So, what is an already over-stressed CISO to do? The present moment shows us that we need different and innovative approaches to cybersecurity.

CISO 90

CISO Technology Digital transformation Cybersecurity 90

eSecurity Planet

SEPTEMBER 1, 2021

Consumers and organizations are enthused about the operational benefits of more robust mobile connectivity, but the shift to 5G networks doesn’t come without risks. Here we’ll discuss the most significant risks posed by 5G, how U.S. Table of Contents What Are the Cybersecurity Risks of 5G? How is 5G Different?

Risk 129

Risk Cybersecurity IoT Wireless 129

CSO Magazine

APRIL 11, 2022

Cryptocurrency and NFTs are on many organizations' agenda as they discuss the ramifications of Web3 and the opportunities it presents. At the same time, the market for non-fungible tokens (NFTs) skyrockets, with new artists becoming millionaires and more established names like Snoop Dogg, Martha Stewart and Grimes capitalizing on the trend.

Cryptocurrency 83

Cryptocurrency CISO Risk Marketing 83

NopSec

APRIL 1, 2015

Most of our customers’ security analysts are called on a monthly basis (or more often) to deliver a presentation of the vulnerability management risks the organization is facing and the actions the security department is taking to remediate those risks. At NopSec, customers request and we execute. You are welcome!

CISO 40

CISO Risk Media Malware 40

Security Boulevard

SEPTEMBER 29, 2023

Many thanks to Israel’s Tel Aviv University for publishing their presenter’s tremendous Cyber Week 2023 security content on the Tel Aviv University’s TAUVOD YouTube channel.

Cybersecurity 85

Cybersecurity Architecture CISO Education 85

SecureWorld News

APRIL 6, 2023

So it's fitting that a recent SecureWorld webcast, sponsored by Spirion, tackles the topic of "Does ChatGPT Belong on Your Cyber Risk Register? In this presentation, data protection attorneys offer their perspectives on this new threat and how organizations can best reflect it in their registers, as well as answer a few questions.

Cyber Risk 84

Cyber Risk Risk Phishing Malware 84

The Last Watchdog

FEBRUARY 21, 2022

The risks are real, and the impact of cybersecurity events continues to grow. A cyber catastrophe may seem inevitable, but there are basic practices and actionable steps any healthcare organization can take to begin reducing the clear and present risk of being impacted by a cybersecurity event. Evaluate data inventory.

Healthcare 214

Healthcare Cyber Attacks Education Social Engineering 214

Joseph Steinberg

APRIL 7, 2021

This list is not in any particular order, nor is it even remotely comprehensive (I am personally aware of well over 100 privately-held Israeli cybersecurity companies) – it is, however, illustrative of some of the areas of risk and of innovation that are presently on my mind.

Cybersecurity 246

Cybersecurity Small Business IoT Computers and Electronics 246

Security Boulevard

JUNE 28, 2022

RiskLens CEO Nick Sanna and Risk Transformation Adviser Rob Eslinger appeared at the recent event of the Professional Risk Managers’ International Association, “Cyber Risk in a Turbulent World,” and encouraged risk managers to rise up against the status quo of cyber risk management.

Cyber Risk 52

Cyber Risk Risk CISO Government 52

The Last Watchdog

FEBRUARY 15, 2021

Mistakes online by one family member can lead to compromises in a household’s network, placing computers, personal data, and perhaps even work-related content at risk. Adults increasingly are working from home, and usually on networks they share with their children. Cyber criminals have increased attacks as they see these opportunities.

Education 203

Education CISO Security Awareness Cybersecurity 203

SC Magazine

APRIL 27, 2021

Today’s columnist, Jadee Hanson of Code42, says KPMG found that 44% of organizations will change their products, services and business models in the next few years – and that CIOs and CISOs must work together to meet this challenge. During the height of the pandemic last year, the CISO took on new prominence within organizations.

CISO 61

CISO Risk Digital transformation Technology 61

Security Boulevard

OCTOBER 29, 2021

Adding on the element risk can make things even more confusing for those unversed in cybersecurity, leaving CISOs and security teams unable to effectively communicate risk exposures and security gaps in qualitative terms. It is not enough to present ground-level qualitative data to the board and prove compliance.

Risk 64

Risk CISO Information Security Cybersecurity 64

IT Security Guru

OCTOBER 14, 2021

The pre-COVID-19 CISO. The global COVID-19 pandemic has been a tumultuous time for Chief information security officers (CISOs) who on any given day have a long and complicated list of responsibilities. An explosion of cyber risks and a complicated and constantly changing threat landscape.

CISO 65

CISO Social Engineering Marketing Cyber Risk 65

Jane Frankland

OCTOBER 25, 2024

As ITDMs, CISOs and cyber risk owners this is our dream scenario, and he got me thinking. It’s a subtle shift in focus, and requires a fundamental change in how we, as ITDMs, CISOs and cyber risk owners view and action resilience—not as a one-time project, but as an ongoing programme that provides strategic advantage.

Cyber Risk 130

Cyber Risk CISO Cyber threats Risk 130