CSO and Cybersecurity - Cyber Security Informer

CVE Program Almost Unfunded

Schneier on Security

APRIL 16, 2025

Mitre’s CVE’s program—which provides common naming and other informational resources about cybersecurity vulnerabilities—was about to be cancelled , as the US Department of Homeland Security failed to renew the contact. It was funded for eleven more months at the last minute. This is a big deal.

CSO

CSO Government Software Cybersecurity

Report finds women are declining CISO/CSO roles

Tech Republic Security

SEPTEMBER 30, 2022

The post Report finds women are declining CISO/CSO roles appeared first on TechRepublic. Professional risk factors into career decisions, and successful women need to encourage other women to accept the risks, says Accenture.

CSO

CSO CISO Risk Cybersecurity

Exposure Management Works When the CIO and CSO Are in Sync

Security Boulevard

APRIL 28, 2025

In this post, Tenable CIO Patricia Grant looks at how the CIO/CSO relationship is key to a successful exposure management program. When I first joined Tenable, one of the first things I did was sit down with our CSO, Robert Huber , to align on how we were going to work together. So, my advice to fellow CIOs: Stay close to your CSO.

CSO

CSO Risk Cyber Risk CISO

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

The Last Watchdog

NOVEMBER 12, 2024

Security and Exchange Commission (SEC) recently laid down the hammer charging and fining four prominent cybersecurity vendors for making misleading claims in connection with the SolarWinds hack. Joe Nicastro , Field CTO, Legit Security Nicastro Transparency in cybersecurity remains a complex balancing act.

CISO

CISO CSO Risk Cyber threats

Enterprises confident Chief Sustainability Officer (CSO) will improve cybersecurity

Tech Republic Security

OCTOBER 26, 2020

98% of enterprises want CSOs, but 56% of industrial businesses don't have plans to introduce one to their company, according to a new Kaspersky report.

CSO

CSO Cybersecurity

A Chief Security Concern for Executive Teams

Krebs on Security

DECEMBER 18, 2018

KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Not that these roles are somehow more or less important than that of a CISO/CSO within the organization.

CSO

CSO CISO Marketing Banking

CSO Global Intelligence Report: The State of Cybersecurity in 2021

CSO Magazine

JULY 30, 2021

Any lingering indifference to cybersecurity risk has evaporated in the face of spiking ransomware attacks, software supply chain threats , and the challenges of securing remote workers. That’s the clear message of CSO’s Global Intelligence Report: The State of Cybersecurity in 2021, fielded via online survey in May and June of this year.

CSO

CSO Cybersecurity Ransomware Software

Former Uber CSO Joe Sullivan and lessons learned from the infamous 2016 Uber breach

CSO Magazine

MAY 23, 2023

Like most CSOs, Joe Sullivan was drawn to the role to help prevent cybercrimes. His role as CSO of Uber was something of a shift from his previous job prosecuting cybercriminals as an assistant US attorney, but closer to the tip of the cybersecurity spear.

CSO

CSO CISO Cybercrime Cybersecurity

CSO sentenced to 3 years imprisonment for Uber Data Breach cover up

CyberSecurity Insiders

MAY 5, 2023

Joe Sullivan, the former Chief Security Officer (CSO) of Uber, has been sentenced to three years’ imprisonment and 200 hours of community service for covering up a cyber attack on the company’s servers in 2016, which led to a data breach affecting over 50 million riders and drivers.

CSO

CSO Data breaches Cyber Attacks CISO

9 notable government cybersecurity initiatives of 2021

CSO Magazine

SEPTEMBER 2, 2021

Cybersecurity has steadily crept up the agenda of governments across the globe. This has led to initiatives designed to address cybersecurity issues that threaten individuals and organizations.

Government

Government Cybersecurity CSO Data breaches

7 key data points on the cybersecurity skills shortage

CSO Magazine

AUGUST 19, 2021

I am proud to say that the annual Life and Times of Cybersecurity Professionals report from ESG and ISSA is now available for free download. As part of the research for this report, we always ask cybersecurity professionals several questions about the global cybersecurity skills shortage. Sign up for CSO newsletters. ].

Cybersecurity

Cybersecurity CSO

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Krebs on Security

JULY 21, 2023

A review of the executives pages published by the 2022 list of Fortune 100 companies found only four — BestBuy , Cigna , Coca-Cola , and Walmart — that listed a Chief Security Officer (CSO) or Chief Information Security Officer (CISO) in their highest corporate ranks. Nor is the average pay hugely different among all these roles.

CSO

CSO CISO Insurance Risk

Why today’s cybersecurity threats are more dangerous

CSO Magazine

OCTOBER 4, 2021

Over the past two years, the rise of big-ticket ransomware attacks and revelations of harmful software supply chain infections have elevated cybersecurity to the top of the government's agenda. Get the latest from CSO by signing up for our newsletters. ] Learn the The 5 types of cyberattack you're most likely to face. |

CSO

CSO Cybersecurity Government Ransomware

Biden memo, infrastructure deal deliver cybersecurity performance goals and money

CSO Magazine

JULY 30, 2021

Both efforts aim to prepare the nation for the next significant cybersecurity incidents, making up for lost time due to the previous administration's relative inattention to the topic. Get the latest from CSO by signing up for our newsletters. ]. Learn what you need to know about defending critical infrastructure. |

Cybersecurity

Cybersecurity CSO Technology

11 cybersecurity buzzwords you should stop using right now

CSO Magazine

NOVEMBER 2, 2021

Cybersecurity buzzwords and buzz phrases are a dime a dozen. Learn 8 pitfalls that undermine security program success and 12 tips for effectively presenting cybersecurity to the board. Sign up for CSO newsletters. ]. Here are the 11 cybersecurity buzzwords and phrases that should be laid to rest in 2021.

Cybersecurity

Cybersecurity CSO Marketing Information Security

The new math of cybersecurity value

CSO Magazine

SEPTEMBER 21, 2021

Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan. Sign up for CSO newsletters. ]. Marinkovic says CISOs instead need to find metrics that provide actionable information that they and the other enterprise leaders can then use to make decisions.

Cybersecurity

Cybersecurity CSO CISO Government

GAO report faults CIOs, OMB for slow adoption of cybersecurity recommendations

CSO Magazine

AUGUST 3, 2021

The US General Accountability Office (GAO) issued the 19-page report , “Cybersecurity and Information Technology: Federal Agencies need to Strengthen Efforts to Address High-Risk Areas” on July 29. Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan.

CSO

CSO Cybersecurity Government Accountability

How Jefferson Health enhanced cybersecurity via its cloud transformation

CSO Magazine

AUGUST 16, 2021

The cybersecurity mantra at Jefferson Health is “if we can’t do it well, we’re not going to do it” says Mark Odom, CISO of the Philadelphia-based healthcare organization. Get the latest from CSO by signing up for our newsletters. ]. Get the latest from CSO by signing up for our newsletters. ].

Cybersecurity

Cybersecurity CSO Healthcare CISO

Mitre D3FEND explained: A new knowledge graph for cybersecurity defenders

CSO Magazine

JULY 28, 2021

Get the latest from CSO by signing up for our newsletters. ] It is a companion project to the company’s ATT&CK framework. While complementary, the two projects are very different. Review the best Mitre D3FEND advice to harden Windows networks. | To read this article in full, please click here

CSO

CSO Cybersecurity

Top cybersecurity statistics, trends, and facts

CSO Magazine

OCTOBER 7, 2021

Get the latest from CSO by signing up for our newsletters. ] Piled on top of that is a growing wave of ransomware and software supply chain attacks. . Learn the The 5 types of cyberattack you're most likely to face. | To read this article in full, please click here

CSO

CSO Cybersecurity Cybercrime Phishing

Cybersecurity Snapshot: CSA Outlines Data Security Challenges and Best Practices, While ISACA Offers Tips To Retain IT Pros

Security Boulevard

MARCH 7, 2025

(Source: ISACAs Tech Workplace and Culture 2025 report, March 2025) For more information about recruiting and retaining cybersecurity professionals: 10 Ways to Boost Cybersecurity Talent Retention (InformationWeek) 60% of cybersecurity pros looking to change employers (CSO) The cybersecurity industry has an urgent talent shortage.

Cybersecurity

Cybersecurity Scams CSO Risk

Cybersecurity’s Comfort Zone Problem: Are you Guilty of it?

Jane Frankland

APRIL 15, 2025

One of my friends, Greg van der Gaast tells this great story that perfectly illustrates one of the biggest challenges we face in cybersecurity today. ” This simple analogy speaks volumes about how cybersecurity operates today. To achieve true resilience in cybersecurity, we need to break out of this tech-first mindset.

Risk

Risk Technology Cybersecurity Security Awareness

How to build a public profile as a cybersecurity pro

CSO Magazine

NOVEMBER 29, 2022

Cybersecurity professionals interested in raising their profiles as subject matter experts can count on social media to become more visible. Step 1: Define your cybersecurity area of expertise and what success mean to you. With everyone being online this may not be enough though.

Cybersecurity

Cybersecurity CSO Media

DISA Breach Highlights Need for Stronger Oversight: AppOmni CSO

Security Boulevard

FEBRUARY 26, 2025

million people was exposed in a data breach lasts year, prompting AppOmni CSO Cory Michal to say that data collection companies like DISA and National Public Data need more oversight, regulations, and penalties. The post DISA Breach Highlights Need for Stronger Oversight: AppOmni CSO appeared first on Security Boulevard.

CSO

CSO Data collection Data breaches Social Engineering

Spotlight on Cybersecurity Leaders: Dr. Fred Kwong

SecureWorld News

MAY 29, 2024

In Q&A format, they share about their professional journeys, unique experiences, and hopes for the future of cybersecurity—along with some personal anecdotes. Get to know Dr. Fred Kwong Q : Why did you decide to pursue cybersecurity as a career path? Q : How would you describe your feelings about cybersecurity in one sentence?

Cybersecurity

Cybersecurity CSO Technology Telecommunications

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

Security Boulevard

FEBRUARY 14, 2025

Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) called buffer overflow vulnerabilities unforgivable defects that put national and economic security at risk. For more information about the threat from quantum computing: Is Quantum Computing a Cybersecurity Threat?

Banking

Banking Cybercrime Cybersecurity Ransomware

Cybersecurity First: #BeCyberSmart at Work and Home

Security Through Education

OCTOBER 27, 2021

That is why, for this October’s Cybersecurity Awareness Month , we encourage you to Do Your Part #BeCyberSmart! Cybersecurity First at Work. Owning your role in cybersecurity can seem cumbersome when approached by someone outside the security industry. Cybersecurity First at Home. Don’t make passwords easy to guess.

Cybersecurity

Cybersecurity Social Engineering Firewall Engineering

Clorox's Cybersecurity Chief Departs Amidst Incident Recovery Efforts

SecureWorld News

NOVEMBER 16, 2023

In a move that has raised concerns about the company's cybersecurity posture, Amy Bogac, Clorox's CISO, has stepped down from her position. Some speculate that Bogac may have been frustrated with the company's slow response to the cyberattack and its lack of investment in cybersecurity measures.

CISO

CISO Cybersecurity CSO Risk

What is physical security? How to keep your facilities and devices safe from on-site attackers

CSO Magazine

AUGUST 4, 2021

Though often overlooked in favor of cybersecurity, physical security is equally important. Get the latest from CSO by signing up for our newsletters. ]. And, indeed, it has grown into a $30 billion industry. All the firewalls in the world can’t help you if an attacker removes your storage media from the storage room.

Artificial Intelligence

Artificial Intelligence CSO IoT Firewall

7 tips for better CISO-CFO relationships

CSO Magazine

AUGUST 10, 2021

Every chief security executive knows that one of the most important—and perhaps challenging—aspects of the job is getting the funding needed to support the cybersecurity program. Sign up for CSO newsletters. ]. Learn the 5 key qualities of successful CISOs, and how to develop them and 7 security incidents that cost CISOs their jobs.

CISO

CISO CSO Cyber threats Cybersecurity

The 7 best password managers for business

CSO Magazine

AUGUST 30, 2021

Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan. Sign up for CSO newsletters. ]. As with any business software decision, the password manager discussion starts with requirements, specifically regarding features.

Password Management

Password Management Passwords CSO Accountability

Why CISOs Are Stepping Away and What the Future Holds

SecureWorld News

DECEMBER 9, 2024

Understanding why this is happening and exploring what lies ahead is essential for organizations aiming to sustain effective cybersecurity leadership. The growing complexity of regulatory requirements, such as the SEC's new cybersecurity reporting rules , adds another layer of strain.

CISO

CISO Cyber threats Risk Cybersecurity

Secrets to building a healthy CISO-vendor partnership

CSO Magazine

MAY 3, 2022

Effective partnerships between CISOs and their cybersecurity vendors are integral to security success. A well-oiled relationship built on trust, communication and mutual understanding can reap significant benefits for a business’s cybersecurity posture.

CISO

CISO CSO Accountability Cybersecurity

HSBC CISO champions neurodiversity awareness in cybersecurity

CSO Magazine

JULY 5, 2021

Neurodiversity within cybersecurity is progressively becoming a topic of regular, meaningful discussion across the sector. To read this article in full, please click here (Insider Story)

CISO

CISO Cybersecurity

APT group hits IIS web servers with deserialization flaws and memory-resident malware

CSO Magazine

JULY 27, 2021

Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan. Sign up for CSO newsletters. ].

Malware

Malware CSO Internet Internet

CISO’s Guide to Presenting Cybersecurity to Board Directors

CyberSecurity Insiders

MARCH 30, 2023

Seasoned CISOs/CSOs understand the importance of effectively communicating cyber risk and the need for investment in cybersecurity defense to the board of directors. To ensure cybersecurity becomes a strategic part of the corporate culture, it is crucial for CISOs to present the topic in a clear, concise, and compelling manner.

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

Cybersecurity metrics corporate boards want to see

CSO Magazine

MAY 2, 2022

Cybersecurity pros interested in metrics and measures frequently ponder and pontificate on what measures would be best to show the board of directors. Coming up with cybersecurity metrics from a business perspective can be a challenge. That can be a tricky proposition because “we have to speak like the business” is also a mantra.

Cybersecurity

Cybersecurity Phishing

Spotlight on Cybersecurity Leaders: Ryan Mostiller

SecureWorld News

AUGUST 21, 2024

In Q&A format, they share about their professional journeys, unique experiences, and hopes for the future of cybersecurity—along with some personal anecdotes. Get to know Ryan Mostiller Q : Why or how did you decide to pursue cybersecurity as a career path? Q : What are the biggest challenges facing the cybersecurity profession?

Cybersecurity

Cybersecurity Energy and Utilities CISO CSO

22 notable government cybersecurity initiatives in 2022

CSO Magazine

SEPTEMBER 29, 2022

Cybersecurity continues to be high on the agenda of governments across the globe, with both national and local levels increasingly working to counter cybersecurity threats. Here are 22 notable cybersecurity initiatives introduced around the world in 2022.

Government

Government Cybersecurity Banking

The 10 most powerful cybersecurity companies

CSO Magazine

SEPTEMBER 7, 2021

Anyone who ever attended an RSA conference understands that cybersecurity vendors introduce hundreds of amazing, innovative products every year. That means enterprises need to deploy SD-WAN, secure access service edge (SASE) and zero trust network access (ZTNA). But C-level execs aren’t looking for the flashiest new point products.

Cybersecurity

Cybersecurity CISO

15 Top Cybersecurity Certifications for 2022

eSecurity Planet

JUNE 21, 2022

” Also read: Cybersecurity Employment in 2022: Solving the Skills Gap. My advice for anybody that asks me which certifications they should get is this: find a certification in a subject that you wish to learn about,” Palo Alto Networks CSO Rick Howard said. “If Also read: How to Get Started in a Cybersecurity Career.

Cybersecurity

Cybersecurity Penetration Testing System Administration Cyber Attacks

Real-time is where the cybersecurity risk is

CSO Magazine

APRIL 5, 2022

I don’t know how many times I’ve heard cybersecurity professionals say something like, “Not having multi-factor authentication is a huge risk for our organization.” The cybersecurity piece of this typically focuses on incidents where these outcomes were caused by an intelligent adversary.)

Risk

Risk Cybersecurity Authentication Ransomware

Google launches entry-level cybersecurity certificate to teach threat detection skills

CSO Magazine

MAY 5, 2023

Google has announced a new entry-level cybersecurity certificate to teach learners how to identify common risks, threats, and vulnerabilities, as well as the techniques to mitigate them.

Threat Detection

Threat Detection Cybersecurity Risk

Critical flaw in AI testing framework MLflow can lead to server and data compromise

CSO Magazine

MARCH 24, 2023

"Basically, every organization that uses this tool is at risk of losing their AI models, having an internal server compromised, and having their AWS account compromised," Dan McInerney, a senior security engineer with cybersecurity startup Protect AI, told CSO. It's pretty brutal." To read this article in full, please click here

CSO

CSO Authentication Engineering Internet

CVE Program Almost Unfunded

Report finds women are declining CISO/CSO roles

Webinars

Trending Sources

Exposure Management Works When the CIO and CSO Are in Sync

Webinars

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

Enterprises confident Chief Sustainability Officer (CSO) will improve cybersecurity

A Chief Security Concern for Executive Teams

CSO Global Intelligence Report: The State of Cybersecurity in 2021

Former Uber CSO Joe Sullivan and lessons learned from the infamous 2016 Uber breach

CSO sentenced to 3 years imprisonment for Uber Data Breach cover up

9 notable government cybersecurity initiatives of 2021

7 key data points on the cybersecurity skills shortage

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Why today’s cybersecurity threats are more dangerous

Biden memo, infrastructure deal deliver cybersecurity performance goals and money

11 cybersecurity buzzwords you should stop using right now

The new math of cybersecurity value

GAO report faults CIOs, OMB for slow adoption of cybersecurity recommendations

How Jefferson Health enhanced cybersecurity via its cloud transformation

Mitre D3FEND explained: A new knowledge graph for cybersecurity defenders

Top cybersecurity statistics, trends, and facts

Cybersecurity Snapshot: CSA Outlines Data Security Challenges and Best Practices, While ISACA Offers Tips To Retain IT Pros

Cybersecurity’s Comfort Zone Problem: Are you Guilty of it?

How to build a public profile as a cybersecurity pro

DISA Breach Highlights Need for Stronger Oversight: AppOmni CSO

Spotlight on Cybersecurity Leaders: Dr. Fred Kwong

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

Cybersecurity First: #BeCyberSmart at Work and Home

Clorox's Cybersecurity Chief Departs Amidst Incident Recovery Efforts

What is physical security? How to keep your facilities and devices safe from on-site attackers

7 tips for better CISO-CFO relationships

The 7 best password managers for business

Why CISOs Are Stepping Away and What the Future Holds

Secrets to building a healthy CISO-vendor partnership

HSBC CISO champions neurodiversity awareness in cybersecurity

APT group hits IIS web servers with deserialization flaws and memory-resident malware

CISO’s Guide to Presenting Cybersecurity to Board Directors

Cybersecurity metrics corporate boards want to see

Spotlight on Cybersecurity Leaders: Ryan Mostiller

22 notable government cybersecurity initiatives in 2022

The 10 most powerful cybersecurity companies

15 Top Cybersecurity Certifications for 2022

Real-time is where the cybersecurity risk is

Google launches entry-level cybersecurity certificate to teach threat detection skills

Critical flaw in AI testing framework MLflow can lead to server and data compromise

Stay Connected