InfoSec, Risk and Technology - Cyber Security Informer

Demand, CyberInsurance, and Automation/AI Are the Future of InfoSec

Daniel Miessler

NOVEMBER 6, 2020

2021-2030) A Surge in Demand for InfoSec people will result in many more professionals being trained and placed within companies, likely using more of a trade/certification model than a 4-year university model. That’s the distant future of InfoSec, with humans playing less and less a part in the equation as time goes on.

InfoSec

InfoSec Insurance Artificial Intelligence Cybersecurity

State of Cybersecurity in Canada 2025: Key Insights for InfoSec Leaders

SecureWorld News

FEBRUARY 5, 2025

The State of Cybersecurity in Canada 2025 report, published by the Canadian Cybersecurity Network (CCN) and the Security Architecture Podcast , delivers an in-depth analysis of the evolving threat landscape, emerging risks, and strategic recommendations for Canadian organizations. Key findings: the cyber threat landscape in 2025 1.

InfoSec

InfoSec Energy and Utilities Cybersecurity Education

Thinking About the Future of InfoSec (v2022)

Daniel Miessler

MARCH 20, 2022

The ideas will cover multiple aspects of InfoSec, from organizational structure to technology. Technology. At the highest level, I think the big change to InfoSec will be a loss of magic compared to now. Technology. HT to Jeremiah Grossman to also being very early to seeing the role of insurance in InfoSec.

InfoSec

InfoSec Insurance Technology Engineering

Top 9 Trends In Cybersecurity Careers for 2025

eSecurity Planet

OCTOBER 18, 2024

Technologies that were figments of the imagination a dozen years ago, if they were conceived of at all, quickly become mainstream — think generative artificial intelligence (GenAI) or blockchain. As they do, they create more security vulnerabilities and inherent business, changing the nature of cybersecurity careers. million workers.

Cybersecurity

Cybersecurity Artificial Intelligence Penetration Testing CISO

Managing Cybersecurity Risk in M&A

Cisco Security

SEPTEMBER 26, 2022

As Technology Audit Director at Cisco, Jacob Bolotin focuses on assessing Cisco’s technology, business, and strategic risk. Bolotin champions the continued advancement of the technology audit profession and received a master’s degree in cybersecurity from the University of California Berkeley.

Risk

Risk Cybersecurity Technology InfoSec

CISA Order Highlights Persistent Risk at Network Edge

Krebs on Security

JUNE 15, 2023

Mandiant said the attackers will continue to change their tactics and malware, “especially as network defenders continue to take action against this adversary and their activity is further exposed by the infosec community.” “COVID-19 extended the life of these companies and technologies, and that’s unfortunate.”

Risk

Risk VPN Internet Internet

Iterative scientific infosec

Notice Bored

MAY 25, 2022

There is a strong argument to facilitate much more sharing of information about information risk and security, incidents, controls etc. So, this morning I've been thinking about the applications of those principles and mechanisms to information risk management, putting infosec under the microscope.

InfoSec

InfoSec Risk Antivirus Government

CISA releases Insider Risk Mitigation Self-Assessment Tool

Security Affairs

SEPTEMBER 30, 2021

The US CISA has released a new tool that allows to assess the level of exposure of organizations to insider threats and devise their own defense plans against such risks. The tool elaborates the answers of the organizations to a survey about their implementations of a risk program management for insider threats. Pierluigi Paganini.

Risk

Risk InfoSec Ransomware Technology

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

Security Boulevard

DECEMBER 30, 2024

These rules , which mandate that all public companies disclose material cybersecurity incidents within four business days and detail their risk management strategies, highlight that cybersecurity is a board-level risk management concern. This post explores the impact of these regulations after one year.

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

Cyber Playbook: Information Technology vs Operational Technology – How to Leverage IT to Secure Your OT Systems

Herjavec Group

JANUARY 31, 2022

Information Technology (IT) primarily refers to hardware, software, and communications technologies like networking equipment and modems that are used to store, recover, transmit, manipulate, and protect data. . Operational technology has seen innovations that allowed it to become safer, more efficient, and more reliable.

Technology

Technology Cybersecurity InfoSec Software

Professional services infosec policy template

Notice Bored

MAY 12, 2022

Professional services engagements, and hence the associated information risks, are so diverse that it made no sense to specify particular infosec controls, except a few examples. This is another shining example of the value of the 'information ownership' concept. and that once again emphasises that corporate policies form a mesh.

InfoSec

InfoSec Risk Accountability Government

Seeds of Destruction: Cyber Risk Is Growing in Agriculture

The Security Ledger

MAY 4, 2021

In this episode of the podcast (#213): Molly Jahn of DARPA and University of Wisconsin joins us to talk about the growing cyber risk to the Food and Agriculture sector, as industry consolidation and precision agriculture combine to increase the chances of cyber disruption of food production. Read the whole entry. »

Cyber Risk

Cyber Risk Risk Digital transformation InfoSec

Secure Communications: Relevant or a Nice to Have?

Jane Frankland

FEBRUARY 7, 2025

But as a CISO or cyber risk owner, it’s not just about locking down sensitive informationits about doing it without slowing down your people. It encompasses everything from ensuring the confidentiality and integrity of information to reducing risks, maintaining compliance, and building trust with customers.

Cyber Risk

Cyber Risk CISO Risk Encryption

InfoSec Leaders Weigh in on New SEC Rules Making CISO Hotseat Hotter

SecureWorld News

JULY 31, 2023

Cybersecurity professionals have various views on last week's news from the United States Securities and Exchange Commission (SEC) when it surprised the InfoSec community and the C-suites of corporate America. This ruling still has a gap in addressing the cybersecurity talent shortage. After all, a CISO can't do it all.

CISO

CISO InfoSec Risk Cybersecurity

CSTA Turns 400 – Proof That Technology Integrations Is Exactly What You Are Looking For

Cisco Security

AUGUST 26, 2021

We constantly see new threats, and threat vectors, come and go; which puts a tremendous strain on the InfoSec teams that have to protect organizations and businesses from these threats. With the addition of Kenna Security into our program we now have over 250 technology partners and over 400 integrations for our mutual customers to utilize.

Technology

Technology Firewall VPN Authentication

How Aflac maximizes security ROI

CSO Magazine

JUNE 8, 2022

With rapidly evolving threats and increased business risk, security leaders are constantly pressed by the question: Do we have the right technology, people, and processes in place to protect the organization? For more of Goldsworthy’s insights, watch the full video of the event session embedded below.

InfoSec

InfoSec Technology Risk

Why Is Shadow IT a Growing Cybersecurity Risk?

SecureWorld News

AUGUST 13, 2023

To experiment with new technologies. Whatever the reason, shadow IT can pose a serious security risk to organizations. This means that they are more vulnerable to attack, and any data stored on them is at risk. This means that they are more vulnerable to attack, and any data stored on them is at risk. Probably not.

Risk

Risk Cybersecurity Education Technology

Announcing the public availability of the Cisco Cloud Controls Framework (CCF)

Cisco Security

MAY 5, 2022

A strategic compliance and risk management approach is as essential to the success of an organization as its product strategy. ISO IEC 27001:2013 – Information technology — Security techniques — Information security management systems — Requirements. Infosec Registered Assessors Program (IRAP December 2020).

Marketing

Marketing InfoSec Risk Technology

Why Predator is the ultimate CISO movie

Javvad Malik

OCTOBER 29, 2020

I was reminded of this by Phil Cracknell who posted on linkedin that in his opinion the Kevin Costner, Whitney Houston classic, Bodyguard was the best infosec movie. This is a reminder to all security pros that they need to continually keep their skills up to date or risk becoming a dinosaur. Don’t believe me? Well read on.

CISO

CISO InfoSec Banking Ransomware

News Alert: INE Security lays out strategies for optimizing security teams to mitigate AI risks

The Last Watchdog

JUNE 21, 2024

While 2023 saw its emergence as a potent new technology, business leaders are now grappling with how to best leverage its transformative power to grow efficiency, security, and revenue. With the near-universal integration of AI into global technology, the need for AI-ready cybersecurity teams is more critical than ever.

Risk

Risk Technology Cyber threats Cybersecurity

Empowering Women in Cybersecurity: Insights from ISC2's Latest Study

SecureWorld News

APRIL 9, 2025

Al Lindseth , Principal, CI5O Advisory Services LLC, offered his perspective: "I speak a lot at different industry and sector conferences and gatherings and always get asked the question, 'what's our biggest risk/threat?' Mitigating these risks means we have to be able to see around the corners, be creative without paralysis by analysis."

Cybersecurity

Cybersecurity Education InfoSec Government

Hi-5 With A CISO Dmitriy Sokolovskiy, Avid Technology

Security Boulevard

MAY 20, 2021

CybeReady’s Hi-5 brings together InfoSec leaders for peer-to-peer sharing via five short questions and insights. The post Hi-5 With A CISO <br><br> Dmitriy Sokolovskiy, Avid Technology appeared first on CybeReady. The post Hi-5 With A CISO Dmitriy Sokolovskiy, Avid Technology appeared first on Security Boulevard.

CISO

CISO Technology InfoSec Information Security

The Clock To Q-Day Is Ticking: InfoSec Global and Thales Provide Collaborative Path to Quantum Readiness

Thales Cloud Protection & Licensing

FEBRUARY 19, 2024

Vladimir Soukharev, InfoSec Global The advent of quantum computers poses a substantial threat to various industries due to their potential to compromise standard encryption methods that protect global data, communications, and transactions. This vulnerability could expose sensitive enterprise information to risk. In the U.S.,

InfoSec

InfoSec Encryption Risk Marketing

Stepping on the cracks

Notice Bored

MAY 24, 2021

T he recently-published ISO/IEC TS 27570 " Privacy guidelines for smart cities" neatly illustrates the creativity required to tackle new information risks arising from innovation in the realm of IoT, AI and short range data communications between the proliferating portable, wearable and mobile IT devices now roaming our city streets.

InfoSec

InfoSec Risk IoT Information Security

The Rise of Data Sovereignty and a Privacy Era

SecureWorld News

JUNE 24, 2024

In addition, the risks of monetary and operational damage render it mission critical for enterprises to envision and enact the appropriate People, Process, and Technology safeguards to assure data protection and privacy. Facilitate continuous monitoring of data risks and threats. is essential.

IoT

IoT InfoSec Artificial Intelligence Risk

Zero Trust and the Failure of Sampling: Two Important Cybersecurity Trends

Joseph Steinberg

JUNE 10, 2022

Many of Gillis’s comments echoed those that I have heard in recent months from CISOs and others within the cybersecurity industry who witness developments from various vantage points quite different from those of a vendor of cybersecurity technologies. Sampling No Longer Works.

Cybersecurity

Cybersecurity Artificial Intelligence CISO Wireless

Resecurity Named Winner of the Coveted Global InfoSec Awards During RSA Conference 2021

CyberSecurity Insiders

MAY 27, 2021

Next-Gen in Third-Party Risk Management (TPRM). We knew the competition would be tough and with top judges who are leading infosec experts from around the globe, we couldn’t be more pleased,” said Gene Yoo, CEO of Resecurity. Join a webinar at [link] and realize that infosec knowledge is power. About Cyber Defense Magazine.

InfoSec

InfoSec B2C B2B Media

Episode 209: Fortinet’s Renee Tarun on Scaling InfoSec To Meet Tomorrow’s Challenges

The Security Ledger

APRIL 2, 2021

The post Episode 209: Fortinet’s Renee Tarun on Scaling InfoSec To Meet Tomorrow’s Challenges appeared first on The. Fixing InfoSec Demands Scale, Diversity. Read the whole entry. » The information security industry is simultaneously robust and beset by problems and challenges.

InfoSec

InfoSec CISO Information Security Cyber Risk

Herjavec Group Wins 4 Cyber Defense Magazine Global InfoSec Awards

Herjavec Group

MAY 17, 2021

As the global leader in Managed Security Services, Herjavec Group has demonstrated the innate ability to combine the power of technology, AI, and automation with human intelligence to optimize the IT security monitoring, incident detection, and incident response times of enterprises globally. HG Mana ged Detection & Response (MDR) .

InfoSec

InfoSec Technology Marketing B2C

Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk

The Security Ledger

MAY 16, 2024

In this Spotlight Podcast, host Paul Roberts talks with Chris Walcutt, the CSO of DirectDefense about the rising cyber threats facing operational technology (OT) and how organizations that manage OT - including critical infrastructure owners can best manage increased cyber risks to OT environments. Read the whole entry. »

CSO

CSO Risk Energy and Utilities Social Engineering

CISO Liability Risk and Jail Time, (ISC)2 Bylaw Vote and the Value of Cybersecurity Certifications

Security Boulevard

OCTOBER 30, 2022

Rafal Los, host of the popular Down the Security Rabbithole Podcast, joins us to discuss CISO liability risk and the ongoing discussion in the cybersecurity community about CISOs going to jail. The post CISO Liability Risk and Jail Time, (ISC)2 Bylaw Vote and the Value of Cybersecurity Certifications appeared first on Security Boulevard.

CISO

CISO Risk Cybersecurity Data privacy

3 Essential Measures to Mitigate the Risk from Follina — A New Windows Zero-Day Actively Exploited in the Wild

CyberSecurity Insiders

JUNE 18, 2022

Last week the infosec community was hit with news about a new Windows 0-day vulnerability, Follina. Therefore, mitigating the risk from this vulnerability requires a comprehensive approach. Follina will test an organization’s entire security strategy, from technologies to processes to people. Conclusion.

Risk

Risk Phishing InfoSec Antivirus

Meet the 2021 SC Awards judges

SC Magazine

MAY 1, 2021

With a career spanning two decades as a technology provider to businesses and government agencies, Levine brings a strategic and pragmatic approach to building secure software and cloud services without disrupting product velocity. Since founding Cedric Leighton Associates, he has become an internationally known strategic risk expert.

Computers and Electronics

Computers and Electronics Technology Information Security Education

Why Taylor Swift Fans Should Work in Cybersecurity

SecureWorld News

SEPTEMBER 12, 2023

These skills also happen to apply to information security (infosec) and cyber threat intelligence and research. And you'll leave your first infosec conference with an armful of them. From network to endpoint to cloud , the cybersecurity industry does its own genre blending, evolving with advances in technology.

Cybersecurity

Cybersecurity InfoSec Threat Detection Accountability

Democratizing Threat Hunting: How to Make it Happen for Everyone

Cisco Security

FEBRUARY 16, 2021

Topics such as tech refresh, risk management, and incident response were examined from the perspective of a roadmap for success in an information security program for organizations of all sizes. Having this data at our hands allows us to align our risk exposure to do some of the important work.”

Risk

Risk InfoSec Technology CISO

VMware adds Cloud Security extension to Containers and Kubernetes

CyberSecurity Insiders

APRIL 7, 2021

Initially, when it was released in December, Carbon Black Container was only used to help track down misconfiguration and other security risks. Now, the newly developed vulnerability identity and management tool helps scan all container images to track down security risks at time and build them into production environments.

InfoSec

InfoSec Risk Technology Cybersecurity

Five 2023 Cybersecurity Predictions by Doug Dooley

CyberSecurity Insiders

DECEMBER 6, 2022

Many technology workers will resign from their comfortable, high-paying jobs at larger employers. Starting in 2023, we will see a growing trend of experienced CISOs exit and retire to other opportunities like joining security and technology vendors, startups, investors, and board members.

Cybersecurity

Cybersecurity CISO InfoSec Technology

OpenText Blends Security, Data Protection for Greater Cyber Resilience

Dark Reading

AUGUST 6, 2020

SPONSORED CONTENT: Infosec professionals are taking advantage of technology hybrids to keep users, data, and their networks more safe, according to Hal Lonas of OpenText's Webroot division. And they're also finding new ways to use artificial intelligence and machine learning to improve security management and reduce risk.

Artificial Intelligence

Artificial Intelligence InfoSec Technology Risk

Charting a Course to Zero Trust Maturity: 5 Steps to Securing User Access to Apps

Duo's Security Blog

OCTOBER 6, 2023

To achieve more resilience in this heightened risk environment, stepping up zero trust maturity is essential. In other words, it’s not just about implementing MFA to verify user trust, it’s about using phishing-resistant MFA with risk-based authentication , device posture checks and other security controls.

Authentication

Authentication Risk Social Engineering InfoSec

Quantum Computing: A Looming Threat to Organizations and Nation States

SecureWorld News

SEPTEMBER 7, 2023

Director of Information Security, State of Colorado Governor's Office of Information Technology; and Toby Zimmerer, Sr. The panel will tackle topics and questions, including: The potential risks quantum computing poses to current cryptographic methods. When will these risks come to fruition, and who are the main threat actors?

Encryption

Encryption Technology Risk Architecture

CyberSaint STRONGER 2022 Conference Call for Speakers is Open!

CyberSecurity Insiders

FEBRUARY 1, 2022

BOSTON–( BUSINESS WIRE )– CyberSaint , the developer of the leading platform delivering cyber risk automation, today announced that the company is seeking speaker submissions for its virtual STRONGER conference, set to occur September 13th-15th 2022. Conference Tracks: Frameworks, Security, & Risk. InfoSec 360.

Digital transformation

Digital transformation InfoSec CISO Education

Spotlight on Cybersecurity Leaders: Bill Bowman

SecureWorld News

FEBRUARY 26, 2024

He is the father of five children and gives talks on helping families work through social media and technology challenges. A : When I was with Bright Horizons, many top-tier clients demanded InfoSec competence. A : Moving the reporting line to risk (GC/CLO); using AI. I learned from them. A : Phil Venables.

Cybersecurity

Cybersecurity CISO InfoSec Data privacy

Peer Report Explores Concerns, Challenges Facing Cybersecurity Leaders

SecureWorld News

AUGUST 23, 2023

This morning, Critical Start released its first ever Cyber Risk Landscape Peer Report , which explores some of the major concerns and challenges currently confronting cybersecurity leaders as they manage risk within their organizations. Here are some comments on the cyber risk landscape from cybersecurity vendor experts.

Cybersecurity

Cybersecurity Cyber Risk Risk Cyber Insurance

Hackers Could Cause ‘Fake Earthquakes’ by Exploiting Vulnerable Seismic Equipment, Researchers Warn

Hot for Security

FEBRUARY 16, 2021

Hackers could trigger ‘fake earthquakes,’ affecting emergency and economic responses to a seismic event, and generate mistrust in seismic technology among the population, the researchers say. Seismic monitoring equipment is vulnerable to common cybersecurity threats like those faced by IoT devices, a new research paper warns.

IoT

IoT InfoSec Data collection Encryption

Demand, CyberInsurance, and Automation/AI Are the Future of InfoSec

State of Cybersecurity in Canada 2025: Key Insights for InfoSec Leaders

Trending Sources

Thinking About the Future of InfoSec (v2022)

Top 9 Trends In Cybersecurity Careers for 2025

Managing Cybersecurity Risk in M&A

CISA Order Highlights Persistent Risk at Network Edge

Iterative scientific infosec

CISA releases Insider Risk Mitigation Self-Assessment Tool

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

Cyber Playbook: Information Technology vs Operational Technology – How to Leverage IT to Secure Your OT Systems

Professional services infosec policy template

Seeds of Destruction: Cyber Risk Is Growing in Agriculture

Secure Communications: Relevant or a Nice to Have?

InfoSec Leaders Weigh in on New SEC Rules Making CISO Hotseat Hotter

CSTA Turns 400 – Proof That Technology Integrations Is Exactly What You Are Looking For

How Aflac maximizes security ROI

Why Is Shadow IT a Growing Cybersecurity Risk?

Announcing the public availability of the Cisco Cloud Controls Framework (CCF)

Why Predator is the ultimate CISO movie

News Alert: INE Security lays out strategies for optimizing security teams to mitigate AI risks

Empowering Women in Cybersecurity: Insights from ISC2's Latest Study

Hi-5 With A CISO Dmitriy Sokolovskiy, Avid Technology

The Clock To Q-Day Is Ticking: InfoSec Global and Thales Provide Collaborative Path to Quantum Readiness

Stepping on the cracks

The Rise of Data Sovereignty and a Privacy Era

Zero Trust and the Failure of Sampling: Two Important Cybersecurity Trends

Resecurity Named Winner of the Coveted Global InfoSec Awards During RSA Conference 2021

Episode 209: Fortinet’s Renee Tarun on Scaling InfoSec To Meet Tomorrow’s Challenges

Herjavec Group Wins 4 Cyber Defense Magazine Global InfoSec Awards

Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk

CISO Liability Risk and Jail Time, (ISC)2 Bylaw Vote and the Value of Cybersecurity Certifications

3 Essential Measures to Mitigate the Risk from Follina — A New Windows Zero-Day Actively Exploited in the Wild

Meet the 2021 SC Awards judges

Why Taylor Swift Fans Should Work in Cybersecurity

Democratizing Threat Hunting: How to Make it Happen for Everyone

VMware adds Cloud Security extension to Containers and Kubernetes

Five 2023 Cybersecurity Predictions by Doug Dooley

OpenText Blends Security, Data Protection for Greater Cyber Resilience

Charting a Course to Zero Trust Maturity: 5 Steps to Securing User Access to Apps

Quantum Computing: A Looming Threat to Organizations and Nation States

CyberSaint STRONGER 2022 Conference Call for Speakers is Open!

Spotlight on Cybersecurity Leaders: Bill Bowman

Peer Report Explores Concerns, Challenges Facing Cybersecurity Leaders

Hackers Could Cause ‘Fake Earthquakes’ by Exploiting Vulnerable Seismic Equipment, Researchers Warn

Stay Connected