CISO and Risk - Cyber Security Informer

Survey: Most CISOs feel their business is at risk for cyberattack

Tech Republic Security

MAY 15, 2023

A new report from Proofpoint provides global insight into CISOs' challenges, expectations and priorities for 2023. The post Survey: Most CISOs feel their business is at risk for cyberattack appeared first on TechRepublic.

CISO

CISO Risk Big data Ransomware

MY TAKE: COVID-19 cements the leadership role CISOs must take to secure company networks

The Last Watchdog

MAY 13, 2020

cybersecurity policy needs to match societal values CISOs must preserve and protect their companies in a fast-changing business environment at a time when their organizations are under heavy bombardment. I had the chance to discuss this state of affairs with Vishal Salvi, CISO of Infosys. Salvi “The CISO role has fundamentally changed.

CISO

CISO Cybersecurity Digital transformation Risk

Proofpoint’s CISO 2024 Report: Top Challenges Include Human Error & Risk

Tech Republic Security

MAY 30, 2024

This new report also indicates an increasing attack surface as putting pressure on CISOs. One positive note is CISOs' improving relationships with board members.

CISO

CISO Risk Artificial Intelligence Ransomware

CISOs in Australia Urged to Take a Closer Look at Data Breach Risks

Tech Republic Security

MAY 24, 2024

A leading cyber lawyer in Australia has warned CISOs and other IT leaders their organisations and careers could be at stake if they do not understand data risk and data governance practices.

CISO

CISO Data breaches Risk Government

Black Hat insights: JupiterOne’s whodunnit puts CISOs on the trail of solving a devastating breach

The Last Watchdog

AUGUST 6, 2023

Related: A call to regulate facial recognition That said, a few dozen CISOs attending Black Hat USA 2023 will get to experience, hands-on, what it must have been like to be in the crucible of milestone hacks like Capital One, SolarWinds and Colonial Pipeline. San Diego or New York City , feel free to skip ahead.

CISO

CISO Data breaches Technology Software

Why Predator is the ultimate CISO movie

Javvad Malik

OCTOBER 29, 2020

The movie starts on the outskirts of a jungle and the CISO (Arnie) with his team land in their helicopters. This is a perfect metaphor for how a CISO operates in day to day situations. This is a reminder to all security pros that they need to continually keep their skills up to date or risk becoming a dinosaur. Well read on.

CISO

CISO InfoSec Banking Ransomware

Best Practices Q&A: Guidance about what directors need to hear from CISOs — from a board member

The Last Watchdog

APRIL 8, 2024

CISOs can sometimes be their own worst enemy, especially when it comes to communicating with the board of directors. She serves on the board of several technology companies and also happens to be steeped in cyber risk governance. LW: Why do so many CISOs still not get it that FUD and doom-and-gloom don’t work?

CISO

CISO Risk Cybersecurity Insurance

CISO Cite Human Error as Top IT Security Risk

Security Boulevard

MAY 24, 2024

But that’s not the only takeaway from this year’s Voice of the CISO report. The post CISO Cite Human Error as Top IT Security Risk appeared first on Security Boulevard. It’s the wetware. It’s always the wetware.

CISO

CISO Risk Ransomware Malware

5 Tips to be an awesome CISO

Javvad Malik

NOVEMBER 22, 2021

I’m not a CISO, I never have been and hope I never will be. It seems like a lot of hard work and stress, and if you’re the CISO at a company when you suffer a breach it’s difficult to blame the intern without a mob of security professionals criticising you. Risk Appetite. Make everything about risk appetite.

CISO

CISO Risk Firewall Cybersecurity

Report finds women are declining CISO/CSO roles

Tech Republic Security

SEPTEMBER 30, 2022

Professional risk factors into career decisions, and successful women need to encourage other women to accept the risks, says Accenture. The post Report finds women are declining CISO/CSO roles appeared first on TechRepublic.

CSO

CSO CISO Risk Cybersecurity

IT Professionals in ASEAN Confronting Rising Cyber Security Risks

Tech Republic Security

DECEMBER 4, 2023

Recorded Future CISO Jason Steer said software digital supply chains are one of the top risks being faced. The ASEAN region is seeing more cyber attacks as digitisation advances.

Risk

Risk CISO Cyber Attacks Software

GUEST ESSAY: Could CISOs be on the verge of disproving the ‘security-as-a-cost-center’ fallacy?

The Last Watchdog

MARCH 13, 2023

So how will this affect chief information security officers (CISOs) and security programs? Given the perennial skills and staffing shortage in security, it’s unlikely that CISOs will be asked to make deep budget or staffing cuts, yet they may not come out of this period unscathed. Related: Attack surface management takes center stage.

CISO

CISO Insurance Cybersecurity Risk

CISOs Concerned Over Growing Demands of Role

Security Boulevard

OCTOBER 18, 2024

There are growing concerns among chief information security officers (CISOs) about the evolving demands of their role, with 84% advocating for a split into separate technical and business-focused positions. The post CISOs Concerned Over Growing Demands of Role appeared first on Security Boulevard.

CISO

CISO Information Security Cybersecurity Risk

GUEST ESSAY: 5 tips for ‘de-risking’ work scenarios that require accessing personal data

The Last Watchdog

JANUARY 10, 2022

It’s possible to de-risk work scenarios involving personal data by carrying out a classic risk assessment of an organization’s internal and external infrastructure. This de-risks personal data that does not fit in a separate security contour. Related: The dangers of normalizing encryption for government use. Encryption.

Risk

Risk Encryption Data privacy CISO

CISOs and Senior Leadership at Odds Over Security

Security Boulevard

JUNE 4, 2024

Only half of cybersecurity leaders feel their C-suite understands cybersecurity risks, a Trend Micro survey found. Four in five have been told to downplay a potential risk’s severity. The post CISOs and Senior Leadership at Odds Over Security appeared first on Security Boulevard.

CISO

CISO Risk Cybersecurity Accountability

CISO, You are NOT my Hero! Here’s Why.

Jane Frankland

FEBRUARY 27, 2024

Recently, a friend posted a wonderful piece attributed to their hero, the CISO. In business today, the role of a CISO is crucial. With the consistency and severity of cyber attacks and data breaches worsening, compliance becoming a minefield, organisations are turning to (and paying) CISOs for protection and guidance.

CISO

CISO Risk Data breaches Education

Australian CEOs Struggling to Face Cyber Risk Realities

Tech Republic Security

NOVEMBER 1, 2023

Research has found 91% of CEOs view IT security as a technical function that's the CIO or CISO's problem, meaning IT leaders have more work to do to engage senior executives and boards.

Cyber Risk

Cyber Risk CISO Risk Data breaches

CISOs discuss cybersecurity in the COVID-19 environment

Tech Republic Security

JULY 17, 2020

A digital panel discussion sponsored by MIT's Sloan CIO Digital Learning Series covered a range of topics from protecting remote workers to phishing to how to manage risk.

CISO

CISO Cybersecurity Phishing Risk

RSAC Fireside Chat: Tightened budgets impose discipline on CISOs, resets security investments

The Last Watchdog

JUNE 20, 2024

CISOs have been on something of a wild roller coaster ride the past few years. Given carte blanche, many CISOs purchased a hodge podge of unproven point solutions, adding to complexity. Today, with purse strings tightened – and cyber risks and compliance pressures mounting — CISOs must recalibrate.

CISO

CISO Marketing Cyber Risk Cybersecurity

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Businesses must adopt tools and automation capable of invoking immediate action, even at the risk of false positives. Raising security baselines across industries is essential, with risk mitigationnot acceptancebecoming the standard. Security teams will need to address the unique risks posed using LLMs in mission critical environments.

Cyber threats

Cyber threats CISO IoT Phishing

What the Charges Against the SolarWinds CISO Mean for Security in 2024

Security Boulevard

JANUARY 29, 2024

The indictment of the SolarWinds CISO by the SEC served as a harsh wake-up call to the corporate world. The post What the Charges Against the SolarWinds CISO Mean for Security in 2024 appeared first on Security Boulevard.

CISO

CISO Security Awareness Risk Government

AI Integration, Budget Pressures Challenge CISOs

Security Boulevard

AUGUST 12, 2024

Chief information security officers (CISOs) are struggling to manage cybersecurity effectively due to a lack of strategic support from other C-suite executives, according to a LevelBlue survey of 1,050 C-suite and senior executives. The post AI Integration, Budget Pressures Challenge CISOs appeared first on Security Boulevard.

CISO

CISO Information Security Cybersecurity Security Awareness

Why CISOs Are Stepping Away and What the Future Holds

SecureWorld News

DECEMBER 9, 2024

The Chief Information Security Officer (CISO) has become one of the most critical roles in modern organizations. Tasked with safeguarding data and infrastructure, CISOs face mounting pressures as cyber threats escalate, regulatory demands grow, and the role expands to encompass strategic business responsibilities.

CISO

CISO Cyber threats Risk Cybersecurity

News alert: Security Risk Advisors launchs VECTR Enterprise Edition for ‘purple team’ benchmarking

The Last Watchdog

AUGUST 2, 2024

1, 2024, CyberNewsWire — Security Risk Advisors (SRA) announces the launch of VECTR Enterprise Edition , a premium version of its widely-used VECTR platform for purple teams and adversary management program reporting and benchmarking. About VECTR : VECTR™ is developed and maintained by Security Risk Advisors.

Risk

Risk Penetration Testing CISO System Administration

Today’s CISO Insights – How to Tackle the Quantum Threat

CyberSecurity Insiders

MAY 3, 2023

This is why CISOs everywhere should be concerned. CISOs should begin to familiarize themselves with these and evaluate their potential suitability for adoption. Once that ecosystem is understood and its supporting cryptology has been identified, CISOs should develop a plan that considers quantum-resistant technology.

CISO

CISO Identity Theft Encryption Social Engineering

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Krebs on Security

JULY 21, 2023

A review of the executives pages published by the 2022 list of Fortune 100 companies found only four — BestBuy , Cigna , Coca-Cola , and Walmart — that listed a Chief Security Officer (CSO) or Chief Information Security Officer (CISO) in their highest corporate ranks. Nor is the average pay hugely different among all these roles.

CSO

CSO CISO Insurance Risk

Different Types of CISOs, Diverse Missions

Security Boulevard

NOVEMBER 30, 2023

There are a range of distinct roles/missions that hold the CISO title. The post Different Types of CISOs, Diverse Missions appeared first on Security Boulevard. Their ultimate goals are similar, but how they are positioned to do that varies.

CISO

CISO Security Awareness Risk Government

A Chief Security Concern for Executive Teams

Krebs on Security

DECEMBER 18, 2018

KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Nobody’s saying these companies don’t have CISOs and/or CSOs and CTOs in their employ.

CSO

CSO CISO Marketing Banking

Charges Against CISOs Create Worries, Hope in Security Industry: Survey

Security Boulevard

DECEMBER 12, 2024

A survey of IT security pros by cybersecurity firm BlackFog found that 70% of them said federal cases like that against SolarWinds' CISO hurt their opinion about the position, but some said they expected the boards of directors would take the issues of security more seriously.

CISO

CISO Cybersecurity Risk Government

Best Practices Q&A: The importance of articulating how cybersecurity can be a business enabler

The Last Watchdog

APRIL 1, 2024

Forrester’s report lays out a roadmap for CIOs, CISOs and privacy directors to drive this transformation – by weaving informed privacy and security practices into every facet of their business; this runs the gamut from physical and information assets to customer experiences and investment strategies. LW: Cultural change is acutely difficult.

Cybersecurity

Cybersecurity CISO B2B Risk

Cloud Security Risk Prioritization is Broken. Here’s How to Fix It.

Security Boulevard

SEPTEMBER 23, 2024

Understanding business risk empowers CISOs to provide a comprehensive picture of the business’ cloud security posture, which will help teams detect, prioritize and remediate threats to stop cloud and app-related breaches. The post Cloud Security Risk Prioritization is Broken. Here’s How to Fix It.

Risk

Risk CISO Security Awareness Cybersecurity

Cybersecurity Insights with Contrast CISO David Lindner | 4/19/24

Security Boulevard

APRIL 19, 2024

If you’re not using basic measures like password managers, two-factor authentication (2FA) and cybersecurity training, you’re risking more than you might realize. The post Cybersecurity Insights with Contrast CISO David Lindner | 4/19/24 appeared first on Security Boulevard.

CISO

CISO Cybersecurity Password Management Passwords

GUEST ESSAY: Why the arrests of cyber criminals in 2021 will incentize attackers in 2022

The Last Watchdog

DECEMBER 16, 2021

After all, a malicious actor only needs a few minutes of time with a privileged account to take over the entire directory, and there are volumes of exploitable identity risks at every organization. The ascendency of CISOs. In 2022 we expect to see organizations increasingly moving identity management systems into the CISO organization.

CISO

CISO Ransomware Risk Authentication

Cybersecurity Insights with Contrast CISO David Lindner | 8/30/24

Security Boulevard

AUGUST 30, 2024

This poses a significant risk to businesses, as these individuals can gain access to sensitive information and intellectual property. The post Cybersecurity Insights with Contrast CISO David Lindner | 8/30/24 appeared first on Security Boulevard.

CISO

CISO Cybersecurity Authentication Security Awareness

Cybersecurity Insights with Contrast CISO David Lindner | 9/15

Security Boulevard

SEPTEMBER 15, 2023

Insight #1 Software Bills of Materials (SBOMs) are nothing more than a data point for determining risk. The post Cybersecurity Insights with Contrast CISO David Lindner | 9/15 appeared first on Security Boulevard. They shouldn’t be treated as gospel.

CISO

CISO Cybersecurity Software Risk

GUEST ESSAY: Why CISOs absolutely must take authentication secrets much more seriously

The Last Watchdog

MARCH 1, 2023

The linked white paper explains the three stages of this process: •Assessing secrets leakage risks •Establishing modern secrets management workflows •Creating a roadmap to improvement in fragile area This model emphasizes that secrets management is more than just how an organization stores and shares secrets.

Authentication

Authentication CISO Passwords Software

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

Under First American’s documented vulnerability remediation policies, the data leak was classified as a security weakness with a “level 3” severity, which placed it in the “medium risk” category and required remediation within 45 days. “The [employee] did not request a waiver or risk acceptance from the CISO.”

Insurance

Insurance Risk Financial Services CISO

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

The Last Watchdog

JANUARY 8, 2023

Smarter security to me broadly refers to relentlessly focusing on fundamentals while maturing the program, making sure your risk posture aligns with your business strategy. When it comes down to it, C-level goals and CISO initiatives are not all that misaligned. This leads to revenue gains and positive customer outcomes.

Risk

Risk Cybersecurity Technology CISO

The CISO: Guardian of Data while Navigating Risk Strategic Insights for the Boardroom and Shaping Future Business

Thales Cloud Protection & Licensing

DECEMBER 4, 2024

The CISO: Guardian of Data while Navigating Risk Strategic Insights for the Boardroom and Shaping Future Business madhav Thu, 12/05/2024 - 06:03 CISOs have one of the most vital roles in organizations today. As a CISO, you must elevate your organization’s data security posture. It is also one of the most challenging.

CISO

CISO Risk Data breaches Unstructured Data

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

Security Boulevard

JANUARY 18, 2024

Cybersecurity risks increase every year and bludgeon victims who fail to prepare properly. For those interested in a better understanding of the oncoming risks, this is the information you are looking for. It can feel like crossing a major highway while blindfolded. Many never see the catastrophe about to happen, until it occurs.

Risk

Risk Cybersecurity CISO Technology

New Office of the CISO Paper: Organizing Security for Digital Transformation

Anton on Security

SEPTEMBER 13, 2024

Ideally, we think this conversation should start with defining security goals framed in business outcomes like capabilities, velocity, quality, cost, and risk.”

Digital transformation

Digital transformation CISO Technology Cybersecurity

The strong link between cyber threat intelligence and digital risk protection

CSO Magazine

APRIL 21, 2023

In fact, these changes have led to a CTI subcategory focused on digital risk protection. DRP is broadly defined as, “telemetry, analysis, processes, and technologies used to identify and mitigate risks associated with digital assets.” CISOs are investing here but challenges remain. I’ve also dug into the CTI lifecycle.

Cyber threats

Cyber threats Risk Digital transformation CISO

Zero Trust and the Failure of Sampling: Two Important Cybersecurity Trends

Joseph Steinberg

JUNE 10, 2022

Many of Gillis’s comments echoed those that I have heard in recent months from CISOs and others within the cybersecurity industry who witness developments from various vantage points quite different from those of a vendor of cybersecurity technologies. Sampling No Longer Works.

Cybersecurity

Cybersecurity Artificial Intelligence CISO Wireless

Sisense Hacked: CISA Warns Customers at Risk

Security Boulevard

APRIL 12, 2024

The post Sisense Hacked: CISA Warns Customers at Risk appeared first on Security Boulevard. A hard-coded credential catastrophe: The analytics firm kept big companies’ secrets in an insecure AWS bucket. Government says victims include the “critical infrastructure sector.”

Risk

Risk Hacking Government Digital transformation

Survey: Most CISOs feel their business is at risk for cyberattack

MY TAKE: COVID-19 cements the leadership role CISOs must take to secure company networks

Trending Sources

Proofpoint’s CISO 2024 Report: Top Challenges Include Human Error & Risk

CISOs in Australia Urged to Take a Closer Look at Data Breach Risks

Black Hat insights: JupiterOne’s whodunnit puts CISOs on the trail of solving a devastating breach

Why Predator is the ultimate CISO movie

Best Practices Q&A: Guidance about what directors need to hear from CISOs — from a board member

CISO Cite Human Error as Top IT Security Risk

5 Tips to be an awesome CISO

Report finds women are declining CISO/CSO roles

IT Professionals in ASEAN Confronting Rising Cyber Security Risks

GUEST ESSAY: Could CISOs be on the verge of disproving the ‘security-as-a-cost-center’ fallacy?

CISOs Concerned Over Growing Demands of Role

GUEST ESSAY: 5 tips for ‘de-risking’ work scenarios that require accessing personal data

CISOs and Senior Leadership at Odds Over Security

CISO, You are NOT my Hero! Here’s Why.

Australian CEOs Struggling to Face Cyber Risk Realities

CISOs discuss cybersecurity in the COVID-19 environment

RSAC Fireside Chat: Tightened budgets impose discipline on CISOs, resets security investments

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

What the Charges Against the SolarWinds CISO Mean for Security in 2024

AI Integration, Budget Pressures Challenge CISOs

Why CISOs Are Stepping Away and What the Future Holds

News alert: Security Risk Advisors launchs VECTR Enterprise Edition for ‘purple team’ benchmarking

Today’s CISO Insights – How to Tackle the Quantum Threat

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Different Types of CISOs, Diverse Missions

A Chief Security Concern for Executive Teams

Charges Against CISOs Create Worries, Hope in Security Industry: Survey

Best Practices Q&A: The importance of articulating how cybersecurity can be a business enabler

Cloud Security Risk Prioritization is Broken. Here’s How to Fix It.

Cybersecurity Insights with Contrast CISO David Lindner | 4/19/24

GUEST ESSAY: Why the arrests of cyber criminals in 2021 will incentize attackers in 2022

Cybersecurity Insights with Contrast CISO David Lindner | 8/30/24

Cybersecurity Insights with Contrast CISO David Lindner | 9/15

GUEST ESSAY: Why CISOs absolutely must take authentication secrets much more seriously

First American Financial Pays Farcical $500K Fine

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

The CISO: Guardian of Data while Navigating Risk Strategic Insights for the Boardroom and Shaping Future Business

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

New Office of the CISO Paper: Organizing Security for Digital Transformation

The strong link between cyber threat intelligence and digital risk protection

Zero Trust and the Failure of Sampling: Two Important Cybersecurity Trends

Sisense Hacked: CISA Warns Customers at Risk

Stay Connected