CISO, Risk and Security Awareness - Cyber Security Informer

The Risk-Conscious, Security-Aware Culture: The Forgotten Critical Security Control

Cisco Security

JULY 12, 2021

Chief Information Security Officers (CISOs) across the Global 2000 and Fortune 1000 are obsessed with protecting the workforce endpoints as critical vulnerabilities in the cybersecurity and risk management posture of their enterprises. Should a risk-conscious, security-aware culture be considered a critical security control?

Security Awareness

Security Awareness Risk CISO Cybersecurity

CISOs Brace for LLM-Powered Attacks: Key Strategies to Stay Ahead

Security Boulevard

FEBRUARY 12, 2025

For chief information security officers (CISOs), understanding and mitigating the security risks associated with LLMs is paramount. The post CISOs Brace for LLM-Powered Attacks: Key Strategies to Stay Ahead appeared first on Security Boulevard.

CISO

CISO Information Security Risk Security Awareness

Your Security Awareness Training Isn’t Working

Security Boulevard

MAY 11, 2021

Humans are the biggest risk to an organization’s cybersecurity posture, and it might be a bigger risk than many realize. According to research from Elevate Security, human behavior had a direct role in 88% of total losses in the largest cybersecurity incidents over the past five years and about two-thirds of major data breaches are.

Security Awareness

Security Awareness Data breaches Risk Cybersecurity

Human Risk Management vs Security Awareness: What’s the Difference?

Security Boulevard

JUNE 30, 2023

The post Human Risk Management vs Security Awareness: What’s the Difference? The post Human Risk Management vs Security Awareness: What’s the Difference? appeared first on Security Boulevard. appeared first on Click Armor.

Security Awareness

Security Awareness Risk CISO

Should the CISO Report to the CIO?

Cisco Security

JULY 1, 2021

The Chief Information Security Officer (CISO) is the organization’s senior executive in charge of the cybersecurity and the information technology risk management posture of the enterprise. federal government in particular, the CISO reports to the Chief Information Officer (CIO). In many organizations, and in the U.S.

CISO

CISO Technology Risk Government

The Biggest Cybersecurity Risk We're Ignoring—And No, It's Not AI

SecureWorld News

FEBRUARY 28, 2025

But amidst all these flashy, futuristic threats, the biggest cybersecurity risk remains the same as it's always beenhumans. What if we thought like a psychologist, not just a CISO? Because we keep treating security as a technical issue when it's really a human behavior issue. it's WAY easier to hack minds than networks.

Cybersecurity

Cybersecurity Risk Social Engineering Phishing

Nine Top of Mind Issues for CISOs Going Into 2023

Cisco Security

JANUARY 10, 2023

As the majority of the global Covid fog finally started lifting in 2022, other events – and their associated risks – started to fill the headspace of C-level execs the world over. In my role, I regularly engage with CISOs in all kinds of sectors, representatives at industry bodies, and experts at analyst houses.

CISO

CISO Insurance Cyber Insurance Phishing

What Maslow’s Hierarchy of Needs Reveals About Cybersecurity Flaws

Jane Frankland

APRIL 18, 2025

Organisations invest heavily in governance, risk, and compliance (GRC) and risk management efforts while neglecting foundational elements like leadership and culture. Risk Management Brings Clarity (Belonging and Love Needs) The middle of the hierarchy addresses our need for connection and clarity. The result?

Cybersecurity

Cybersecurity Technology Risk Security Awareness

Time suck: Security awareness pros are getting sidetracked from core functions

SC Magazine

MARCH 29, 2021

“Awareness programs are great for a number of reasons, but they do not take priority over the daily fire drills that most security teams face,” said Brian Johnson, chief security officer at Armorblox. Just under 40 percent of respondents said they spent only 10% of their time on security awareness.

Security Awareness

Security Awareness InfoSec CISO Media

CISO Stories Podcast: No Insider Cybersecurity Risk? Guess Again!

Security Boulevard

JUNE 9, 2021

The post CISO Stories Podcast: No Insider Cybersecurity Risk? appeared first on Security Boulevard. What happens when an employee decides to leave the organization and start their own business – but with your Intellectual property or customer lists? . Guess Again!

CISO

CISO Risk Cybersecurity Security Awareness

A Chief Security Concern for Executive Teams

Krebs on Security

DECEMBER 18, 2018

KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Nobody’s saying these companies don’t have CISOs and/or CSOs and CTOs in their employ.

CSO

CSO CISO Marketing Banking

Survey Sees Modern CISOs Becoming More Comfortable With Risk

Security Boulevard

JULY 10, 2024

A survey of 1,031 CISOs finds that cybersecurity leaders are paradoxically getting more comfortable with current levels of risks at a time when CEOs may be finally becoming more cautious. The post Survey Sees Modern CISOs Becoming More Comfortable With Risk appeared first on Security Boulevard.

CISO

CISO Risk Cybersecurity Security Awareness

Cybersecurity Insights with Contrast CISO David Lindner | 8/30/24

Security Boulevard

AUGUST 30, 2024

This poses a significant risk to businesses, as these individuals can gain access to sensitive information and intellectual property. The post Cybersecurity Insights with Contrast CISO David Lindner | 8/30/24 appeared first on Security Boulevard.

CISO

CISO Cybersecurity Authentication Security Awareness

AI Integration, Budget Pressures Challenge CISOs

Security Boulevard

AUGUST 12, 2024

Chief information security officers (CISOs) are struggling to manage cybersecurity effectively due to a lack of strategic support from other C-suite executives, according to a LevelBlue survey of 1,050 C-suite and senior executives. The post AI Integration, Budget Pressures Challenge CISOs appeared first on Security Boulevard.

CISO

CISO Information Security Cybersecurity Security Awareness

Introducing our new Senior CISO Advisor, Bruce Brody

Cisco Security

JUNE 16, 2021

I’m delighted to announce the latest member of my CISO Advisors team, Bruce Brody. Bruce joins us with three decades of proven security leadership under his belt. He was the first executive-level CISO at the Departments of Veterans Affairs and Energy, and has had more recent success as CISO at Cubic Corporation and DRS Technologies.

CISO

CISO Security Awareness Risk Cybersecurity

How CISOs Can Impact Security for All

Cisco Security

APRIL 26, 2021

Insights from our new Advisory CISO, Helen Patton. If there’s anyone who’s been put through their paces in the security industry, it’s Helen Patton , our new Advisory Chief Information Security Officer (CISO). Helen has come to Cisco from The Ohio State University, where she served as CISO for approximately eight years.

CISO

CISO Education Technology Media

Different Types of CISOs, Diverse Missions

Security Boulevard

NOVEMBER 30, 2023

There are a range of distinct roles/missions that hold the CISO title. The post Different Types of CISOs, Diverse Missions appeared first on Security Boulevard. Their ultimate goals are similar, but how they are positioned to do that varies.

CISO

CISO Security Awareness Risk Government

World Backup Day: A Clarion Call for Cyber Resilience

SecureWorld News

MARCH 31, 2025

Heath Renfrow, Co-Founder and CISO of Fenix14, urges organizations to go further with a more robust strategy: "We advocate for our 5-4-3-2-1 backup methodology. To add more security, they should also be automated and encrypted to provide data privacy." Encryption and automation reduce the risk of human error and ensure consistency.

Backups

Backups Mobile Encryption CISO

What the Charges Against the SolarWinds CISO Mean for Security in 2024

Security Boulevard

JANUARY 29, 2024

The indictment of the SolarWinds CISO by the SEC served as a harsh wake-up call to the corporate world. The post What the Charges Against the SolarWinds CISO Mean for Security in 2024 appeared first on Security Boulevard.

CISO

CISO Security Awareness Risk Government

Cloud Security Risk Prioritization is Broken. Here’s How to Fix It.

Security Boulevard

SEPTEMBER 23, 2024

Understanding business risk empowers CISOs to provide a comprehensive picture of the business’ cloud security posture, which will help teams detect, prioritize and remediate threats to stop cloud and app-related breaches. The post Cloud Security Risk Prioritization is Broken. Here’s How to Fix It.

Risk

Risk CISO Security Awareness Cybersecurity

2021 Security Outcomes Study: Stress Relief for CISOs

Cisco Security

FEBRUARY 19, 2021

This affected all levels of the cybersecurity landscape, and it has had a particularly broad impact for those in the C-Suite, specifically, the Chief Information Security Officer (CISO). So, what is an already over-stressed CISO to do? Building a Positive Security Culture Using Integrations. Technological update.

CISO

CISO Technology Digital transformation Cybersecurity

New data could help CISOs quantify the value of a strong security culture

SC Magazine

FEBRUARY 26, 2021

Building a security awareness training program to develop a strong infosec culture requires time and money, and chief information security officers frequently try to make a case for such an investment by citing return on investment and other metrics of success. . Huisman also had some advice for CISOs trying to make a case.

CISO

CISO Security Awareness Phishing InfoSec

Survey Reveals Limits of CISOs’ Management Experience

Security Boulevard

DECEMBER 13, 2022

A global survey from recruitment firm Marlin Hawk that polled 470 CISOs at organizations with more than 10,000 employees found nearly half (45%) have been in their current role for two years or less. The post Survey Reveals Limits of CISOs’ Management Experience appeared first on Security Boulevard.

CISO

CISO Security Awareness Risk Government

Measuring Security Risk vs. Success

Security Boulevard

FEBRUARY 15, 2021

Oftentimes, how organizations measure risk determines how they will prioritize investments. For IT professionals, building a set of metrics for security needs is often accompanied by feelings of anxiety, because if measurements look at the wrong data or indicators, they may lead to a false sense of security.

Risk

Risk CISO Security Awareness Mobile

Hi-5 With A CISO Mário Fernandes, Banco BPI

Security Boulevard

MAY 30, 2021

Mário João Fernandes, born and raised in Mozambique, has been working in the banking sector for 29 years and has been fulfilling dedicated security roles in the cybersecurity space for over 11 years. The post Hi-5 With A CISO <br><br> Mário Fernandes, Banco BPI appeared first on CybeReady.

CISO

CISO InfoSec Banking Cybersecurity

Sisense Hacked: CISA Warns Customers at Risk

Security Boulevard

APRIL 12, 2024

The post Sisense Hacked: CISA Warns Customers at Risk appeared first on Security Boulevard. A hard-coded credential catastrophe: The analytics firm kept big companies’ secrets in an insecure AWS bucket. Government says victims include the “critical infrastructure sector.”

Risk

Risk Hacking Government Digital transformation

GUEST ESSAY: Now more than ever, companies need to proactively promote family Online Safety

The Last Watchdog

FEBRUARY 15, 2021

In response to continuing waves of data breaches and network disruptions, companies have made a concerted effort and poured substantial resources into promoting data security awareness among employees, suppliers and clients. Incorporate security education into corporate volunteer or mentoring programs.

Education

Education CISO Security Awareness Cybersecurity

$12M Ransomware Attack Hit Because Nobody Listened to the Security Team

SecureWorld News

APRIL 3, 2025

I've seen cases where executives were actually supportive of a security initiative but didn't realize the security team was waiting for more explicit approval. A healthcare CISO I mentored was frustrated by apparent lack of support for a medical device security program. You might be surprised at what you find.

Ransomware

Ransomware CISO Authentication Healthcare

People Skills Outweigh Technical Prowess in the Best Security Leaders

SecureWorld News

OCTOBER 5, 2023

Michael Gregg, the CISO for the State of North Dakota, speaks across the country, including keynoting at SecureWorld Detroit on Sep. A recent blog by Frank Domizio titled " The CISO Role: Beyond Technology " explores exactly what I am talking about. That's a soft skill that even the most adept CISOs are still trying to master.

CISO

CISO Risk Government Cybersecurity

How Code42 automates insider risk response

CSO Magazine

JULY 11, 2022

When that happens, an analyst reaches out to the colleague to determine whether he or she violated any security rules and to confirm he or she understands the company’s cybersecurity best practices. Hanson, the CISO and CIO of Code42, a cybersecurity software company, sees value in that outreach.

Risk

Risk CISO Security Awareness Software

Forrester Wave: Security Awareness & Training Solutions (SA&T)

Security Boulevard

NOVEMBER 4, 2022

The most recent Forrester Wave: Security Awareness & Training (SA&T) report was released a few months ago. The report lands at the following conclusion: security awareness training market is in need of disruption. The overall story is that the future of security awareness is human risk.

Security Awareness

Security Awareness Marketing Risk CISO

Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk

Security Boulevard

FEBRUARY 6, 2024

The post Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk appeared first on Security Boulevard. By aligning priorities into a shared game plan, HR and IT can finally set their organizations up to defend against modern cyberthreats.

Risk

Risk Cybersecurity Social Engineering Cyber Risk

Cybersecurity Insights with Contrast CISO David Lindner | 11/8/24

Security Boulevard

NOVEMBER 8, 2024

This ensures comprehensive security coverage, faster incident response and reduced complexity by combining the strengths of both SIEM and ADR. The post Cybersecurity Insights with Contrast CISO David Lindner | 11/8/24 appeared first on Security Boulevard.

CISO

CISO Cybersecurity Security Awareness Risk

Cybersecurity CEO: Security Awareness is An Ongoing Commitment

Herjavec Group

OCTOBER 27, 2020

Educating employees and implementing a training solution can reduce the risk of a security breach by up to 70%. Startling stats like these are the best way to gain attention and raise awareness around an important cause. If you’re a CISO or security leader, then share this information with your CEO and board members.

Security Awareness

Security Awareness Cybersecurity Cybercrime Education

Integrating onboarding and security awareness training for employees

Security Boulevard

JANUARY 31, 2025

Onboarding new employees into an organization is an exciting time, but it also presents security challenges. Ensuring that new hires understand cybersecurity risks from day one The post Integrating onboarding and security awareness training for employees appeared first on Security Boulevard.

Security Awareness

Security Awareness Risk Cybersecurity CISO

Five Questions To Ask Your CISO About Training

Security Boulevard

JUNE 6, 2022

The post Five Questions To Ask Your CISO About Training appeared first on Security Boulevard. Furthermore, it is no longer uncommon for boards and leadership teams to include at least one member who has some experience in this critically important area. Such emphasis tracks the disturbing growth of cyberthreats to businesses.

CISO

CISO Cybersecurity Security Awareness Education

Assessing Third-Party InfoSec Risk Management

Security Boulevard

JUNE 14, 2023

Information security (InfoSec) risk management with third parties, including outsourcing, requires persistence and consistency due to the primary business risk it presents. Third-party managers need to have insights into a variety of areas of information security, including.

InfoSec

InfoSec Risk Information Security CISO

CISO’s Guide to Presenting Cybersecurity to Board Directors

CyberSecurity Insiders

MARCH 30, 2023

Seasoned CISOs/CSOs understand the importance of effectively communicating cyber risk and the need for investment in cybersecurity defense to the board of directors. To ensure cybersecurity becomes a strategic part of the corporate culture, it is crucial for CISOs to present the topic in a clear, concise, and compelling manner.

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

In this article we will learn how to address and effectively respond to major enterprise cybersecurity threats and provide tips to mitigate IT security risk. Today, c yber security incidents lead to significant damage, alarming organizations of all types and sizes in different geographic locations.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

Strong medical device security awareness stifled by inventory, knowledge gaps

SC Magazine

JULY 1, 2021

This creates a major gap in security awareness, considering the 65,000 ransomware attacks deployed in the U.S. But even advanced tools can’t tell you who owns it – or what it means to the organization in terms of risk.”. IT or security teams don’t always understand the nuances of the security and communication of these devices.

Security Awareness

Security Awareness IoT Risk Healthcare

CIO in the Age of AI: A Title Under Threat?

SecureWorld News

NOVEMBER 30, 2023

Chief should mean something," said Patrick Benoit , Global CISO for Brinks and member of the SecureWorld Houston Advisory Council. "I By the way, the CISO should not be reporting to the CIO. A CISO reporting to a CIO is basically putting the CIO in charge of reporting risk about his domain.

CISO

CISO Artificial Intelligence Phishing Technology

Third-Party Risk Management Efforts Remain Lackluster

Security Boulevard

NOVEMBER 18, 2022

The post Third-Party Risk Management Efforts Remain Lackluster appeared first on Security Boulevard. They’re doing so to optimize productivity or, at the very least, remain competitive. While third-party suppliers often provide cost-effectiveness, speed and help increase business agility, they also increase.

Risk

Risk CISO Security Awareness Government

Zero Trust Meets OS Patch Management

Duo's Security Blog

FEBRUARY 17, 2021

Checking status at the point of entry helps mitigate this risk in a practical and immediate way.” — Richard Archdeacon, Advisory CISO, Duo Security But there was a limited time frame to make patches work. Maintaining Trusted Endpoint Security A trusted identity does reduce risk enormously. So make it easy.

CISO

CISO Risk Backups Security Awareness

Best Cybersecurity Awareness Training for Employees in 2021

eSecurity Planet

JUNE 17, 2021

Back in the day, security training was largely reserved for IT security specialists and then extended to include IT personnel in general. These days, all employees need to be well educated in security best practices and good habits if the organization wishes to steer clear of ransomware and malware. Key Differentiators.

Cybersecurity

Cybersecurity Phishing Security Awareness Education

The Risk-Conscious, Security-Aware Culture: The Forgotten Critical Security Control

CISOs Brace for LLM-Powered Attacks: Key Strategies to Stay Ahead

Trending Sources

Your Security Awareness Training Isn’t Working

Human Risk Management vs Security Awareness: What’s the Difference?

Should the CISO Report to the CIO?

The Biggest Cybersecurity Risk We're Ignoring—And No, It's Not AI

Nine Top of Mind Issues for CISOs Going Into 2023

What Maslow’s Hierarchy of Needs Reveals About Cybersecurity Flaws

Time suck: Security awareness pros are getting sidetracked from core functions

CISO Stories Podcast: No Insider Cybersecurity Risk? Guess Again!

A Chief Security Concern for Executive Teams

Survey Sees Modern CISOs Becoming More Comfortable With Risk

Cybersecurity Insights with Contrast CISO David Lindner | 8/30/24

AI Integration, Budget Pressures Challenge CISOs

Introducing our new Senior CISO Advisor, Bruce Brody

How CISOs Can Impact Security for All

Different Types of CISOs, Diverse Missions

World Backup Day: A Clarion Call for Cyber Resilience

What the Charges Against the SolarWinds CISO Mean for Security in 2024

Cloud Security Risk Prioritization is Broken. Here’s How to Fix It.

2021 Security Outcomes Study: Stress Relief for CISOs

New data could help CISOs quantify the value of a strong security culture

Survey Reveals Limits of CISOs’ Management Experience

Measuring Security Risk vs. Success

Hi-5 With A CISO Mário Fernandes, Banco BPI

Sisense Hacked: CISA Warns Customers at Risk

GUEST ESSAY: Now more than ever, companies need to proactively promote family Online Safety

$12M Ransomware Attack Hit Because Nobody Listened to the Security Team

People Skills Outweigh Technical Prowess in the Best Security Leaders

How Code42 automates insider risk response

Forrester Wave: Security Awareness & Training Solutions (SA&T)

Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk

Cybersecurity Insights with Contrast CISO David Lindner | 11/8/24

Cybersecurity CEO: Security Awareness is An Ongoing Commitment

Integrating onboarding and security awareness training for employees

Five Questions To Ask Your CISO About Training

Assessing Third-Party InfoSec Risk Management

CISO’s Guide to Presenting Cybersecurity to Board Directors

Cyber Security Awareness and Risk Management

Strong medical device security awareness stifled by inventory, knowledge gaps

CIO in the Age of AI: A Title Under Threat?

Third-Party Risk Management Efforts Remain Lackluster

Zero Trust Meets OS Patch Management

Best Cybersecurity Awareness Training for Employees in 2021

Stay Connected