CSO Magazine

AUGUST 16, 2021

The cybersecurity mantra at Jefferson Health is “if we can’t do it well, we’re not going to do it” says Mark Odom, CISO of the Philadelphia-based healthcare organization. Learn the 7 keys to better risk assessment. | Get the latest from CSO by signing up for our newsletters. ]. Learn the 7 keys to better risk assessment. |

Cybersecurity 144

Cybersecurity CSO Healthcare CISO 144

CSO Magazine

AUGUST 3, 2021

The US General Accountability Office (GAO) issued the 19-page report , “Cybersecurity and Information Technology: Federal Agencies need to Strengthen Efforts to Address High-Risk Areas” on July 29. Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan.

CSO 142

CSO Cybersecurity Government Accountability 142

CSO Magazine

MARCH 8, 2021

CISO Bill Brown knows how high-profile cybersecurity breaches like SolarWinds can raise alarm bells among executives and board members when they become headline news. But nothing more than that.” [ Learn the 7 keys to better risk assessment. | Get the latest from CSO by signing up for our newsletters. ]. Could this happen to us?

CSO 132

CSO Cybersecurity CISO Healthcare 132

CSO Magazine

SEPTEMBER 1, 2021

The US Cybersecurity and Infrastructure Security Agency (CISA) has started a list of what it deems to be bad security practices. Get the latest from CSO by signing up for our newsletters. ] The two on the list so far instruct any organization that provides national critical functions (NCF) what not to do.

CSO 127

CSO Risk Architecture Passwords 127

The Last Watchdog

APRIL 30, 2019

If your company is participating in the global supply chain, either as a first-party purchaser of goods and services from other organizations, or as a third-party supplier, sooner or later you’ll encounter the NIST Cybersecurity Framework. This includes not just the NIST CSF, but also the newly minted NIST Risk Management Framework 2.0,

Cybersecurity 173

Cybersecurity Insurance Cyber Insurance Risk 173

CSO Magazine

APRIL 3, 2023

Mergers and acquisitions (M&A) have the potential to introduce significant cybersecurity risks for organizations.

Risk 125

Risk Cybersecurity Technology 125

The Security Ledger

MAY 16, 2024

In this Spotlight Podcast, host Paul Roberts talks with Chris Walcutt, the CSO of DirectDefense about the rising cyber threats facing operational technology (OT) and how organizations that manage OT - including critical infrastructure owners can best manage increased cyber risks to OT environments. Read the whole entry. »

CSO 59

CSO Risk Energy and Utilities Social Engineering 59

SecureWorld News

AUGUST 26, 2020

But this time, it is the Treasury Inspector General for Tax Administration auditing the IRS, the agency's legacy IT environment and its cybersecurity. What does effective asset management look like from a cybersecurity perspective? Aflac CSO Tim Callahan told us as much after his keynote at a SecureWorld conference last year.

Risk 98

Risk Cybersecurity CSO Technology 98

CSO Magazine

APRIL 5, 2023

CISOs are no longer only responsible for the cybersecurity of systems used internally. In many organizations they also focus on securing products and public-facing applications, and one way to do this well is through risk assessment.

Risk 107

Risk CSO CISO Cybersecurity 107

CSO Magazine

JUNE 21, 2021

Lack of a program signals data may be at risk when equipment is recycled; presence of a program signals attention to data protection. Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan. Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ].

CISO 116

CISO Risk CSO Accountability 116

CSO Magazine

APRIL 19, 2022

The threat of litigation is enough to keep any business leader up at night, and the increasing prevalence of data protection, privacy, and cybersecurity legislation and regulation is piling on the pressure for CISOs.

CISO 131

CISO Cybersecurity Risk 131

Security Boulevard

FEBRUARY 26, 2025

million people was exposed in a data breach lasts year, prompting AppOmni CSO Cory Michal to say that data collection companies like DISA and National Public Data need more oversight, regulations, and penalties. The post DISA Breach Highlights Need for Stronger Oversight: AppOmni CSO appeared first on Security Boulevard.

CSO 59

CSO Data collection Data breaches Social Engineering 59

CyberSecurity Insiders

APRIL 26, 2021

That means cybersecurity training and education so that key stakeholders understand the risks that businesses are facing, and which strategies are most effective for protection. Who should receive cybersecurity training in your organization? How much depends on the extent of the CIO’s involvement in cybersecurity.

Cybersecurity 111

Cybersecurity CISO Education CSO 111

CSO Magazine

FEBRUARY 21, 2023

Despite the billions of dollars poured annually into cybersecurity by investors, organizations, academia, and government, adequate and reliable cybersecurity remains an ever-elusive goal. Chief among the challenges for decision-makers and experts is simply identifying and comprehending society's cybersecurity risks.

Risk 108

Risk Cybersecurity Government Technology 108

CSO Magazine

OCTOBER 7, 2022

Business leaders spend most of their time conducting risk/reward analyses of virtually every decision they make. Cybersecurity is another critical area where risk must be constantly assessed. The risk of unanticipated service interruptions—not to mention the many direct and indirect costs of data loss—is substantial.

Risk 113

Risk Cybersecurity Marketing Government 113

CSO Magazine

NOVEMBER 11, 2021

From a cybersecurity standpoint, organizations are operating in a high-risk world. The ability to assess and manage risk has perhaps never been more important.

Risk 125

Risk Telecommunications CISO Data breaches 125

CSO Magazine

MAY 18, 2021

Learn the 7 keys to better risk assessment. | Get the latest from CSO by signing up for our newsletters. ]. The new proposals could require MSPs to meet the current Cyber Assessment Framework , a set of 14 cybersecurity principles designed for organisations that play a vital role in the day-to-day life of the UK.

Risk 94

Risk CSO Government Cyber Risk 94

CyberSecurity Insiders

MARCH 30, 2023

Seasoned CISOs/CSOs understand the importance of effectively communicating cyber risk and the need for investment in cybersecurity defense to the board of directors. To ensure cybersecurity becomes a strategic part of the corporate culture, it is crucial for CISOs to present the topic in a clear, concise, and compelling manner.

Cybersecurity 119

Cybersecurity Cyber Risk CISO Risk 119

CSO Magazine

NOVEMBER 12, 2021

The risk of cybercrime is not spread equally across the globe. Cyberthreats differ widely, with internet users in some countries at much higher risk than those in nations that offer more security due to strong cybercrime legislation and widely implemented cybersecurity programs, according to fraud-detection software company SEON.

Cybercrime 129

Cybercrime Risk Internet Internet 129

CSO Magazine

JUNE 8, 2021

In December 2020, the US Government Accounting Office (GAO) made 145 recommendations to 23 federal agencies relating to supply chain risks. In May 2021, the GAO’s director of information technology and cybersecurity, Vijay A. D’Souza, testified before Congress on supply chain risks.

Government 121

Government CSO Risk Accountability 121

CyberSecurity Insiders

MARCH 16, 2022

[Tel Aviv, Israel – March 16, 2022 ] – Researchers from Cider Security , the world’s first AppSec Operating System, today published a new research report, “Top 10 CI/CD Security Risks”, detailing the major security risks to the CI/CD (Continuous Integration/Continuous Delivery) ecosystem. . “CI/CD The risks outlined are: .

Risk 109

Risk CISO Insurance Engineering 109

SecureWorld News

NOVEMBER 16, 2023

In a move that has raised concerns about the company's cybersecurity posture, Amy Bogac, Clorox's CISO, has stepped down from her position. Some speculate that Bogac may have been frustrated with the company's slow response to the cyberattack and its lack of investment in cybersecurity measures.

CISO 112

CISO Cybersecurity CSO Risk 112

CSO Magazine

APRIL 14, 2022

Those initiatives—especially those prioritizing remote or hybrid working, new digital services for customers and citizens, and increased outsourcing of remote vendors and suppliers—have created hundreds of thousands of new digital identities in each organization, which can increase their exposure to cybersecurity risk.

Risk 106

Risk Cybersecurity Ransomware 106

CSO Magazine

MARCH 22, 2022

Cybersecurity and risk expert David Wilkinson has heard some executives put off discussions about risk acceptance, saying they don’t have any appetite or tolerance for risk. Yet there are indicators that many CISOs aren’t having productive conversations around risk acceptance.

Risk 120

Risk CISO Cybersecurity 120

CSO Magazine

JUNE 21, 2022

Cybersecurity researchers work hard to keep the digital world safe, but every once in a while their own physical security is at risk. They don't want to put their loved ones at risk "because dad is a security researcher and attracts bad guys," he says. To read this article in full, please click here

Cybersecurity 137

Cybersecurity InfoSec Cybercrime Risk 137

CSO Magazine

SEPTEMBER 2, 2021

The guide, quietly published in late July, is in essence a primer on how to create an insider risk/insider threat program. Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan. Sign up for CSO newsletters. ]. NCSC and CDSE insider threat program guidance.

CSO 117

CSO Government Risk Cybersecurity 117

CSO Magazine

MAY 3, 2022

Effective partnerships between CISOs and their cybersecurity vendors are integral to security success. A well-oiled relationship built on trust, communication and mutual understanding can reap significant benefits for a business’s cybersecurity posture.

CISO 128

CISO CSO Cybersecurity Accountability 128

Security Boulevard

NOVEMBER 10, 2022

Welcome to the latest edition of The Week in Security , which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond. This week: Former Uber CSO is convicted for his attempted cover-up of a 2016 hack of the company.

CSO 69

CSO Media Hacking Software 69

CSO Magazine

FEBRUARY 14, 2023

A core pillar of a mature cyber risk program is the ability to measure, analyze, and report cybersecurity threats and performance. That said, measuring cybersecurity is not easy. What can be measured in cybersecurity? To read this article in full, please click here

Cybersecurity 125

Cybersecurity Cyber Risk Risk 125

CSO Magazine

APRIL 22, 2021

On April 20, the Biden administration, through the United States Department of Energy (DOE), issued what it is calling its 100-day plan to address cybersecurity risks to the US electric system. The plan is a coordinated effort among DOE, the electricity industry, and the Cybersecurity and Infrastructure Security Agency (CISA).

Risk 98

Risk Cybersecurity Cyber threats 98

CSO Magazine

MAY 26, 2022

Financial services giant Mastercard has announced the launch of a new attack simulation and assessment platform designed to help businesses and governments enhance their cybersecurity operational resilience. The launch comes as Mastercard continues to invest in cybersecurity and risk management capabilities.

Risk 99

Risk Cybersecurity Financial Services Government 99

CSO Magazine

FEBRUARY 28, 2023

Yet history has shown that a poor economy can bring on additional challenges and risks, making an already uphill battle even more difficult and security leaders should be bracing for that scenario ahead. At the same time, they’ve had to contend with bad actors who have become more organized, better resourced, and increasingly sophisticated.

Risk 124

Risk CISO Cybersecurity Technology 124

CSO Magazine

JULY 8, 2021

If you want to know what’s new in cybersecurity, watch what the startup vendors are doing. It’s a risk for a company to commit to a startup’s product or platform, and it requires a different kind of customer/vendor relationship. Startups often tackle problems no one else is addressing.

Cybersecurity 135

Cybersecurity Risk 135

CSO Magazine

MAY 5, 2023

Google has announced a new entry-level cybersecurity certificate to teach learners how to identify common risks, threats, and vulnerabilities, as well as the techniques to mitigate them.

Threat Detection 139

Threat Detection Cybersecurity Risk 139

CSO Magazine

FEBRUARY 22, 2021

On February 4, 2021, New York became the first state in the nation to issue a cybersecurity insurance risk framework to all authorized property and casualty insurers. Get the latest from CSO by signing up for our newsletters. ]. Get the latest from CSO by signing up for our newsletters. ].

Insurance 106

Insurance Cyber Insurance CSO Ransomware 106

CSO Magazine

AUGUST 5, 2021

In the guidance issued by the Cybersecurity and Infrastructure Security Agency (CISA) in April 2021 on securing one’s supply chain, a portion of the guidance was dedicated to the threat vector posed to entities during their design phase. Sign up for CSO newsletters. ].

CISO 126

CISO CSO Information Security Risk 126

Security Boulevard

APRIL 27, 2021

It is customary to begin an article on cybersecurity with statements about huge increases in threats and attacks and mounting cyberspace losses from fraud, identity theft, ransoms, data exfiltration, blackmail, etc. The post Inadequate Cybersecurity appeared first on Security Boulevard. But, when you delve into it, proving […].

Cybersecurity 124

Cybersecurity Identity Theft CSO CISO 124