CISO, Risk and Workshop - Cyber Security Informer

CISO workshop slides

Notice Bored

AUGUST 5, 2022

Generally, though, the risk management and security arrangements quietly support and enable the business from the inside, as it were, rather than being exposed externally - unless they fail anyway! A glossy, nicely-constructed and detailed PowerPoint slide deck by Microsoft Security caught my beady this morning.

CISO

CISO Risk Artificial Intelligence Marketing

The Goals of Cyber Public Health

Adam Shostack

JANUARY 2, 2025

Cyber Public Health is prompting fascinating conversations Recently I sat down with someone who had read the Cyber Public Health Workshop report. doing the INCREDIBLY hard work of hitting the balanced fulcrum in the middle and build a risk-enhanced business case. Ill call him Dan.

Government

Government CISO Advertising Engineering

Unlock Your Cybersecurity Potential: SecureWorld PLUS Training Courses

SecureWorld News

JANUARY 22, 2025

Lesson 4: AI Risk Management Playbook Learn to implement the NIST AI Risk Management Framework, governing AI risks with actionable methods for mapping, measuring, and managing AI-driven security challenges. Implementing the NIST Cybersecurity Framework, Including 2.0

Cybersecurity

Cybersecurity Artificial Intelligence Cyber Risk Risk

Nurturing Our Cyber Talent

IT Security Guru

SEPTEMBER 25, 2023

The IT Security Guru caught up with Tarnveer Singh a CISO and finalist in the Security Serious Unsung Heroes Awards 2023 for his thoughts on how to get more professionals involved in the cybersecurity industry: There are many ways we can inspire new cybersecurity professionals to join our industry. We must reduce barriers to entry.

CISO

CISO Identity Theft Cybercrime Cybersecurity

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Centraleyes

MARCH 13, 2025

Enacted in 2017, this regulation is all about minimizing risk in the financial services sector, which, lets face it, is prime real estate for cybercriminals. The program should be tailored to your specific business risks. Insight: Many businesses make the mistake of copying templates without understanding their unique risks.

Cybersecurity

Cybersecurity Financial Services Risk Encryption

Charting a Course to Zero Trust Maturity: 5 Steps to Securing User Access to Apps

Duo's Security Blog

OCTOBER 6, 2023

To achieve more resilience in this heightened risk environment, stepping up zero trust maturity is essential. In other words, it’s not just about implementing MFA to verify user trust, it’s about using phishing-resistant MFA with risk-based authentication , device posture checks and other security controls.

Authentication

Authentication Risk Social Engineering InfoSec

NIST Shores Up CSF 2.0 With Supply Chain, Governance Reforms

Security Boulevard

FEBRUARY 28, 2023

In advance of the public comment period, the standards organization wrapped up the last stakeholder workshops last week. of Commerce National Institute of Standards and Technology (NIST) will open a comment period for stakeholders on proposed significant reform to its Cybersecurity Framework (CSF). It is the first time in five years that.

Government

Government Technology Cybersecurity CISO

AT&T Business Summit is virtual Oct. 27-28 and free!

CyberSecurity Insiders

SEPTEMBER 27, 2021

Challenges born from neither securing nor understanding your supply chain represent enormous risks to your business, your brand, and your customers. Description: PERSPECTIVE: Digital transformation is creating cybersecurity risks as businesses embrace new technologies and expand ecosystems of partners and suppliers.

Digital transformation

Digital transformation Ransomware Technology Cybersecurity

Highlights and Insights from SecureWorld Boston 2023

SecureWorld News

MARCH 28, 2023

With a lineup of expert speakers, interactive workshops, and cutting-edge technology on display, it was a must-attend event for anyone interested in staying ahead of the latest threats and trends in the industry. Keen awareness of business risk 2. It was the work of a real hero! Respond early whenever possible 3.

Technology

Technology Cyber Risk CISO Cybersecurity

The discomfort zone

Notice Bored

JULY 4, 2022

I feel more confident about the underlying generic principles of risk, compliance, conformity, obligations, accountabilities, assurance and controls though, and have the breadth of work and life experience to appreciate the next point. The mind map is a brief glimpse of the landscape, as I see it. We're definitely in the discomfort zone here.

Risk

Risk Accountability InfoSec CISO

Adapting Security Awareness to the Post-Pandemic World

Security Boulevard

APRIL 16, 2021

During the event, there was a wide range of workshops, panel discussions and live broadcasts, tailored to today's cyber landscape. According to a panel on LORCA Live ‘ Understanding the changing risk landscape for business ', the panellists highlighted the importance of security awareness finding new ways to be part of the context.

Security Awareness

Security Awareness Technology CISO Risk

Cracking the Code to Security Resilience: Lessons from the Latest Cisco Security Outcomes Report

Cisco Security

DECEMBER 6, 2022

I’ve led workshops in the UK and in Colombia to help CISOs set their own objectives based on their risk management priorities, and we’ve worked to identify longer-term targets that require close alignment with business leaders.

Cybersecurity

Cybersecurity CISO Architecture Technology

Who Else Wants to Enjoy a Cybersecurity Conference?

Jane Frankland

AUGUST 18, 2023

risk, the human side, IAM, cloud, etc) or on group identity, like gender or leadership level, and some offer a good choice of topics. It’s also a good fit for IT professionals in governance, risk and compliance, and cloud security. Some are more technical than others, some niche on one aspect of security (e.g.,

Cybersecurity

Cybersecurity Risk Media Government

The secrets to start a cybersecurity career

Responsible Cyber

JULY 14, 2024

They must be adept at handling security incidents, risk management, and strategic planning. Advanced Cybersecurity Skills: Proficiency in threat analysis, incident response, risk assessment, and mitigation strategies. ISO 27001), experience with risk management tools.

Cybersecurity

Cybersecurity Education Penetration Testing Engineering

16 Reasons why International Women’s Day Isn’t Worth Celebrating in Cybersecurity

Jane Frankland

MARCH 1, 2023

This said women comprised only 17% of Fortune 500 CISOs positions in 2021, and that 57% of men were more likely to be asked to fill the CISO position in their current company compared to 40% of women. They include asking women to become more like men, to speak up more, to be more assertive, self-confident, or to take more risks.

Cybersecurity

Cybersecurity CISO Education Media

Your PCI-DSS v4.0 Roadmap: Charting a Course of Education, Analysis & System Enhancements

Thales Cloud Protection & Licensing

JULY 4, 2024

Encryption Shane Tully | Global CISO, A24 More About This Author > The Payment Card Industry Data Security Standard ( PCI-DSS ) v4.0 We know that an approach of minimising risk and impact through prioritising cybersecurity efforts and continuous improvement will keep you heading in the right direction. A24 completed the PCI-DSS v4.0

Education

Education Encryption Technology Authentication

The Zero-Trust Approach to Important Control Planes

Duo's Security Blog

MARCH 3, 2021

These policies take into account the risk level of the resource that is being accessed as well as the conditions of the access. So, a high-risk resource will require a higher level of examination and approval before access is granted. The Workforce: Now to look at this area in a bit more detail.

Architecture

Architecture Authentication CISO Risk

Dancho Danchev’s Testimony on “How Facebook Today’s Meta Failed To Protect Its Users and React To The Koobface Botnet And What We Should Do About It?”

Security Boulevard

JANUARY 16, 2025

We must take the time to educate ourselves about the risks and the challenges we face. Stay informed, take courses, attend workshops, and engage in discussions. Back in the day Facebook's CISO was Joe Sullivan who I never really knew or got approached by. He emphasizes the importance of education and awareness.

Education

Education Technology Cybersecurity Information Security

CISSPs from Around the Globe: An Interview with Jason Lau

CyberSecurity Insiders

MAY 6, 2021

This installment features Jason Lau , CISO for Crypto.com and an official member and contributor on the Forbes Technology Council. I am currently the Chief Information Security Officer (CISO) at Crypto.com, where I drive the company’s global cybersecurity and data privacy strategy. What job do you do today?

Cryptocurrency

Cryptocurrency Data privacy Computers and Electronics Cybersecurity

Confessions of an InfoSec Burnout

The Falcon's View

AUGUST 29, 2017

The fact is that they'd hired a new General Counsel who also claimed a security background (he had a CISSP), and thus they made him the CISO. It was also the week before Labor Day, which at the time meant it was teacher workshops, and I was on the road for it with 2 young kids at home. 6 months later they eliminated the position.

InfoSec

InfoSec CISO Mobile Marketing

The White House Memo on Adopting a Zero Trust Architecture: Top Four Tips

Cisco Security

FEBRUARY 4, 2022

My good friend and fellow Advisory CISO Helen Patton has done a great summary of the memo in a previous blog. Keep in mind that not all agencies are starting at the same point in terms of security posture or risk exposure. is device access dependent on device posture at first access as well as changing risk?).

Architecture

Architecture Authentication CISO Government

How Your Company Can Prevent a Cyberattack

Adam Levin

AUGUST 21, 2019

A non-profit called the National Cyber Security Alliance offers a series of in-person, highly interactive and easy-to-understand workshops based on the National Institute of Standards and Technology (NIST) Cybersecurity Framework. And then there is the more technical stuff for your CISO, whether that person is in-house or subcontracted.

Phishing

Phishing Accountability Hacking Cybersecurity

Democratizing Threat Hunting: How to Make it Happen for Everyone

Cisco Security

FEBRUARY 16, 2021

Topics such as tech refresh, risk management, and incident response were examined from the perspective of a roadmap for success in an information security program for organizations of all sizes. Having this data at our hands allows us to align our risk exposure to do some of the important work.” Attend a Threat Hunting Workshop.

Risk

Risk InfoSec Technology CISO

Cyber Security Informer

CISO workshop slides

The Goals of Cyber Public Health

Trending Sources

Unlock Your Cybersecurity Potential: SecureWorld PLUS Training Courses

Nurturing Our Cyber Talent

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Charting a Course to Zero Trust Maturity: 5 Steps to Securing User Access to Apps

NIST Shores Up CSF 2.0 With Supply Chain, Governance Reforms

AT&T Business Summit is virtual Oct. 27-28 and free!

Highlights and Insights from SecureWorld Boston 2023

The discomfort zone

Adapting Security Awareness to the Post-Pandemic World

Cracking the Code to Security Resilience: Lessons from the Latest Cisco Security Outcomes Report

Who Else Wants to Enjoy a Cybersecurity Conference?

The secrets to start a cybersecurity career

16 Reasons why International Women’s Day Isn’t Worth Celebrating in Cybersecurity

Your PCI-DSS v4.0 Roadmap: Charting a Course of Education, Analysis & System Enhancements

The Zero-Trust Approach to Important Control Planes

Dancho Danchev’s Testimony on “How Facebook Today’s Meta Failed To Protect Its Users and React To The Koobface Botnet And What We Should Do About It?”

CISSPs from Around the Globe: An Interview with Jason Lau

Confessions of an InfoSec Burnout

The White House Memo on Adopting a Zero Trust Architecture: Top Four Tips

How Your Company Can Prevent a Cyberattack

Democratizing Threat Hunting: How to Make it Happen for Everyone

Stay Connected