Duo's Security Blog

OCTOBER 18, 2021

Recently, while co-hosting a webinar that kicked off Cybersecurity Awareness Month, a panelist commented that cybersecurity and privacy are team sports on a campus, much like our athletic teams. They see the investment in MFA as critical to a campus cybersecurity program and managing risk for a campus.

Insurance 97

Insurance Education Risk Cyber Insurance 97

CyberSecurity Insiders

APRIL 26, 2021

That means cybersecurity training and education so that key stakeholders understand the risks that businesses are facing, and which strategies are most effective for protection. Even if a company employs a Chief Information Security Officer (CISO) or Chief Security Officer (CSO), the position may still report to the CIO.

Cybersecurity 111

Cybersecurity CISO Education CSO 111

Duo's Security Blog

OCTOBER 6, 2023

To achieve more resilience in this heightened risk environment, stepping up zero trust maturity is essential. In other words, it’s not just about implementing MFA to verify user trust, it’s about using phishing-resistant MFA with risk-based authentication , device posture checks and other security controls.

Authentication 144

Authentication Risk Social Engineering InfoSec 144

Security Boulevard

JULY 23, 2024

Join Eclysium CISO Allan Alford as he explains why external assessments and questionnaires are insufficient for vendors providing your IT infrastructure products. The post Vendor Risk Management from the Inside Out appeared first on Eclypsium | Supply Chain Security for the Modern Enterprise.

Risk 64

Risk CISO 64

Duo's Security Blog

JUNE 9, 2022

As an advisory CISO and part of Cisco’s strategy group, an essential part of my role is talking to CISOs from every kind of organization. As well as talking to CISOs, I also believe it is crucial to get perspectives from all sides. As well as talking to CISOs, I also believe it is crucial to get perspectives from all sides.

Insurance 97

Insurance Marketing CISO Cyber Insurance 97

SC Magazine

APRIL 26, 2021

Kristin Sanders, CISO for the Albuquerque Bernalillo County Water Utility Authority, revealed how New Mexico’s largest water and wastewater utility has been addressing the security challenge. However, such modernization is not without risk. Route 66 runs through downtown Albuquerque, New Mexico. Asaavedra32, CC BY-SA 3.0

CISO 82

CISO IoT VPN InfoSec 82

Thales Cloud Protection & Licensing

FEBRUARY 19, 2025

This includes having protocols for users to report lost keys and for administrators to swiftly deactivate them, helping to mitigate the risk of security breaches. CISOs and IT security professionals have two options: 1. This eliminates the risk of lost or stolen keys being used by unauthorized individuals. Go beyond FIDO 2.1

Authentication 71

Authentication Passwords Marketing Risk 71

SecureWorld News

JUNE 9, 2021

John Checco, Resident CISO at Proofpoint, says it is usually the amount of drama involved. Director, Infrastructure Security at FINRA on the SecureWorld broadcast Mitigate Insider Risk in Financial Firms. Insider threat webinar now available on demand. The webinar also looks at the following: Who owns insider threat risk?

Financial Services 58

Financial Services Risk CISO Threat Detection 58

Security Boulevard

MARCH 19, 2021

In late 2020, HelpSystems research with CISOs of global financial organizations revealed that 45% of respondents reported an increase in cyber-attacks since the pandemic first emerged. Yet they are not without risk in terms of cybersecurity. This certainly applies to the volume of threats facing cybersecurity teams. Request a Demo.

Cybersecurity 119

Cybersecurity CISO Social Engineering Technology 119

Security Boulevard

OCTOBER 4, 2024

Plus, get the latest on Active Directory security, CISO salary trends and ransomware attacks! Organizations must understand that employees inevitably will use generative AI, the report says, because of the productivity boost it offers; and that employees need guidance to understand the risks of using this technology.

Cybersecurity 69

Cybersecurity CISO Ransomware Technology 69

Security Boulevard

DECEMBER 27, 2024

on-demand webinar) The Data-Factor: Why Integrating DSPM Is Key to Your CNAPP Strategy (blog) When CNAPP Met DSPM (infographic) VIDEO Integrated DSPM features - enable data protection today! Thus, multi-cloud environments will become the norm in 2025, as organizations avoid vendor lock-in and increase their cloud options and flexibility.

Cybersecurity 59

Cybersecurity CISO CSO Data breaches 59

Duo's Security Blog

SEPTEMBER 16, 2021

Advisory CISO J. Passwordless should also raise the bar by substantially reducing or even eliminating the risk of phishing attacks. But not every passwordless product or system meets the security high bar administrators need. Your Journey Begins with Multi-Factor Authentication See the video at the blog post.

Authentication 128

Authentication Passwords Phishing CISO 128

Duo's Security Blog

MAY 23, 2023

Immediately let the IT or security team know of a potential credential compromise According to the OAIC, a key objective of the Notifiable Data Breaches (NDB) scheme is to protect individuals by enabling them to respond quickly to a data breach to mitigate the risk of harm. Will we ever get rid of passwords completely? Likely not immediately.

Authentication 144

Authentication Passwords Data breaches Phishing 144

Security Boulevard

OCTOBER 25, 2024

And get the latest on the top “no-nos” for software security; the EU’s new cyber law; and CISOs’ communications with boards. 1 - CSA: How to prevent “shadow AI” As organizations scale up their AI adoption, they must closely track their AI assets to secure them and mitigate their cyber risk.

Software 80

Software Cybersecurity CISO Manufacturing 80

BH Consulting

APRIL 27, 2021

Some of the other reasons for achieving certification are to: • Manage your IT security risk. This webinar is suitable for organisations hoping to achieve ISO 27001 certification as well as those that have already achieved ISO 27001 certification and are thinking about becoming certified to ISO 27701. Keep confidential data secure.

Financial Services 98

Financial Services Information Security CISO Manufacturing 98

Duo's Security Blog

OCTOBER 18, 2022

By this point, we’re all familiar with the list of requirements for a strong password: unique, long, memorable, free from any personal information… But even the strongest passwords can pose a risk if they’re the only thing standing between your users and enterprise content.

Insurance 64

Insurance Passwords Cyber Insurance Authentication 64

Duo's Security Blog

SEPTEMBER 30, 2022

If you are not sure what the new security requirements are or if they affect your business or organization, don’t worry – we put together a webinar to help answer those questions. Watch the FTC Safeguards Rule Webinar. The definition of financial institutions includes non-financial institutions. Try Duo for free!

Cybersecurity 94

Cybersecurity Authentication CISO Healthcare 94

Security Boulevard

MARCH 17, 2021

Recent HelpSystems research with CISOs in global financial service organizations found that almost one-third believe data breaches have the potential to cause the most damage over the next 12 months. On-Demand Webinar: How to Enhance DLP in Office 365 Deep Dive Guide: Mitigating the Information Security Risks in Microsoft 365.

Data breaches 144

Data breaches Ransomware Financial Services CISO 144

SecureWorld News

JUNE 9, 2021

John Checco, Resident CISO at Proofpoint, says it is usually the amount of drama involved. Director of Infrastructure Security at FINRA, on the SecureWorld webcast Mitigate Insider Risk in Financial Firms. Insider threat webinar now available on-demand. The discussion also looks at the following: Who owns insider threat risk?

Financial Services 52

Financial Services Risk CISO Threat Detection 52

ForAllSecure

MAY 4, 2023

We participated in B Sides last month, hosted a webinar on “How to Increase Test Coverage With Mayhem for API”, and hosted a university hackathon at UC Santa Cruz. Join the Mayhem team in our upcoming webinar to learn how to identify and address vulnerabilities in open-source libraries. When : May 24, 10 a.m. PT / 1 p.m.

Engineering 52

Engineering Software Risk Marketing 52

CyberSecurity Insiders

FEBRUARY 28, 2023

This is why governments and organizations around the world are implementing a zero trust security framework to reduce the risk of attacks while protecting resources and data. You also have to navigate reputational damage, lost revenue, and the potential for fines and sanctions from regulatory agencies.

Architecture 132

Architecture Authentication Technology CISO 132

Duo's Security Blog

SEPTEMBER 1, 2023

Be sure to check out our upcoming webinar The State of Passkeys in the Enterprise on September 7th at 9am PST | 12pm EST. Passkeys and Cloud Sites Cloud sites are where the web applications are hosted. Be sure to tune into our upcoming webinar, The State of Passkeys in the Enterprise , on September 7th at 9am PST | 12pm EST.

Passwords 69

Passwords Authentication Phishing Technology 69

SecureWorld News

OCTOBER 12, 2022

It was apropos that Ray Yepes, newly appointed CISO for the State of Colorado, opened the 2022 SecureWorld Denver conference on October 6th. Ray Yepes, CISO for the State of Colorado, presents the opening keynote. Karen Worstell, W Risk Group LLC. And they also realized we need to invest in threat intelligence.

CISO 96

CISO Healthcare Government Cybersecurity 96

eSecurity Planet

APRIL 22, 2022

For that reason, most experts now recognize that a complete cybersecurity strategy not only includes technological solutions aimed at preventing, detecting, and mitigating attacks, it should also include cyber insurance to help manage the associated financial risks. Also see: Best Third-Party Risk Management (TPRM) Tools.

Cyber Insurance 121

Cyber Insurance Insurance Marketing Small Business 121

NopSec

APRIL 19, 2017

Regardless of which category you’re in, we recommend checking out our recent on-demand webinar , which provides a high-level overview of the regulations. Baseline Risk Assessment Your baseline risk assessment and gap analysis will play a key role in determining how to approach the remaining areas of focus.

CISO 40

CISO Cybersecurity Risk Financial Services 40

Security Boulevard

OCTOBER 18, 2024

If you look at LinkedIn, many consultants present themselves as trusted advisors to CISOs or their teams. Let’s think about the use cases where using an untrusted security advisor is quite effective and the risks are minimized. The risks are low and the value is there. Given the controls we have, how would you test X?

Architecture 69

Architecture Risk CISO Cybersecurity 69

SecureWorld News

FEBRUARY 4, 2021

At SecureWorld's regional cybersecurity conferences , we've heard more than a few CISOs say something like this: "You need to have a conversation with your board in advance. We'll learn specifics about this trend during the State of the Phish Report 2021 , which is a SecureWorld webinar happening on February 11th.

Ransomware 98

Ransomware Risk Cyber Risk CISO 98

Cisco Security

FEBRUARY 14, 2022

Recently Richard Archdeacon, advisory CISO and Josh Green, Technical Strategist at Duo Security, gave a virtual keynote presentation at the Cybersecurity Leadership Summit 2021 in Berlin where they discussed the Future of Work. That brings up an even higher level of risk. How would you describe where businesses are now?

Passwords 121

Passwords Technology Government CISO 121

Veracode Security

DECEMBER 21, 2020

She recently sat down for a fireside chat with Mahi Dontamsetti, State Street CTRO, and Jim Routh, MassMutual CISO, to share her thoughts and observations on communicating about security to the Board??and risk posture. Not only should you come up with your top 10 cybersecurity risks, but it???s This doesn???t

Risk 52

Risk Cybersecurity Financial Services CISO 52

Security Boulevard

APRIL 12, 2022

Healthcare executives from CDOs to CISOs understand that an organization's success hinges on meeting these demands with seamless, secure consumer experiences across all touchpoints. Usernames and passwords also increase your risk of breaches exponentially. Some CIAM solutions, like ForgeRock's, also eliminate the need for usernames.

Healthcare 52

Healthcare Passwords Authentication CISO 52

NopSec

APRIL 17, 2024

Introducing Velocity Insights: Your Guide to Unmasking the Hidden Forces Shaping Your Security Posture Imagine being a Security Leader – an Analyst, Manager, or CISO – constantly under pressure to improve your organization’s security posture. Ready to level-up your security insights and make a real impact on your risk?

CISO 52

CISO Risk Technology 52

Cisco Security

AUGUST 26, 2021

Only by integrating these tools into your larger security reporting and analytics infrastructure, and by leveraging actionable responses, can one reduce the threat risk to an organization. CyberArk reduces VPN risk with MFA enforcement on any VPN client that supports RADIUS; including Cisco Secure Firewall. Read more here.

Technology 144

Technology Firewall VPN Authentication 144

Security Boulevard

APRIL 17, 2023

In a recent webinar, Sectigo’s Tim Callan and Nick France discussed the ramifications of 90-day certificates. For CISOs and their teams, this step toward even shorter certificate lifespans represents a significant change in how they will approach establishing digital trust. Has there been any pushback whatsoever from the CA’s?

Software 49

Software Encryption System Administration CISO 49

Jane Frankland

APRIL 18, 2023

The finding comes from a Hewlett Packard internal report, and is often quoted in webinars, panels, talks, blogs, and books, including Lean In and The Confidence Code. Boys, on the other hand, have been typically encouraged to take more risks or challenge the status quo. It’s usually raised as evidence that women need more confidence.

Penetration Testing 100

Penetration Testing Cybersecurity Education Accountability 100

Duo's Security Blog

OCTOBER 20, 2021

Given the risks to a university associated with password weakness and credential theft, it’s fair to say that higher education environments fall firmly into the “would benefit from the technology” category when thinking about whether passwordless is a fit.

Education 52

Education Authentication Passwords CISO 52

Thales Cloud Protection & Licensing

JULY 4, 2024

Encryption Shane Tully | Global CISO, A24 More About This Author > The Payment Card Industry Data Security Standard ( PCI-DSS ) v4.0 We know that an approach of minimising risk and impact through prioritising cybersecurity efforts and continuous improvement will keep you heading in the right direction. A24 completed the PCI-DSS v4.0

Education 62

Education Encryption Technology Authentication 62

NopSec

JUNE 14, 2017

Here at NopSec, programs are underway for our clients to ensure that they’re on-track to meet compliance and we’ve also been producing a series of NYDFS Cybersecurity Regulations webinars to help IT Teams and their organizations learn more. One-Year Transitional Period Ends: March 1, 2018 – Must be in compliance with: 500.04(b)

Cybersecurity 40

Cybersecurity Penetration Testing CISO Risk 40