Security Boulevard

FEBRUARY 8, 2021

I have attended numerous security conferences over the past several years, and at each one, I repeatedly hear about the importance of information security being incorporated within the planning and requirement analysis phase of the software development life cycle (SDLC). I agree – this is very important.

InfoSec 95

InfoSec Information Security Software CISO 95

Digital Guardian

MARCH 26, 2021

Robotic process automation, vaccine scams, and key takeaways from the latest Security Awareness Report - catch up on all of the week's infosec news with the Friday Five!

InfoSec 122

InfoSec Scams Security Awareness 122

Security Boulevard

OCTOBER 5, 2021

The post Reducing InfoSec Threats Takes a Village appeared first on Security Boulevard. Chief executive officers and chief technology officers know this is a potentially existential threat both for their companies and for them professionally. As a result, executives are looking to.

InfoSec 78

InfoSec Data breaches Cybercrime Technology 78

Dark Reading

OCTOBER 19, 2021

Institute of International Education and Inflection Point Systems recognized for their advanced security awareness and training programs.

Security Awareness 55

Security Awareness InfoSec Education 55

Dark Reading

FEBRUARY 7, 2023

(..)

Security Awareness 60

Security Awareness InfoSec 60

Security Boulevard

FEBRUARY 17, 2022

Charlene O’Hanlon talks with Keatron Evans, principal security researcher at Infosec Institute, about their partnership with CISA that provides free cybersecurity resources, content, tools, training and other information. The post Infosec, CISA Partner to Provide Security Resources appeared first on Security Boulevard.

InfoSec 59

InfoSec Cybersecurity Security Awareness 59

The State of Security

AUGUST 24, 2021

Information security is an exciting and rapidly growing field for individuals who are interested in protecting users and their data. In an effort to map out the industry as a possible career choice, we recently conducted research into the top 10 infosec jobs based on overall pay grade. 5: […]… Read More.

Information Security 143

Information Security InfoSec Security Awareness 143

Security Boulevard

JUNE 24, 2022

A new cheatsheet from four infosec agencies tells us how to use PowerShell for good, rather than let scrotes misuse it to “live off the land.”. The post NSA Wants To Help you Lock Down MS Windows in PowerShell appeared first on Security Boulevard.

InfoSec 131

InfoSec Security Awareness Risk Government 131

Security Boulevard

JANUARY 2, 2022

The post BSides Greenville / BSidesGVL 2021 – Rob Slade’s ‘Security Awareness Lessons From Dr. Bonnie Henry’ appeared first on Security Boulevard.

Security Awareness 64

Security Awareness Education InfoSec Information Security 64

SC Magazine

APRIL 12, 2021

Users should approach any suspicious messages with extreme caution, or go straight to their IT and security teams to have them examine it first.”. “Consider any text, email, WhatsApp message, or communication that creates a time-sensitive situation a red flag.

Cybersecurity 137

Cybersecurity InfoSec Phishing Security Awareness 137

SecureWorld News

FEBRUARY 15, 2021

"We want to understand that average person, and the average InfoSec professional and what they are experiencing," says Gretel Egan Sr. Security Awareness Training Strategist at Proofpoint. Security Awareness Finding #1: training programs need improving. Security Awareness Finding #2: what phishing attacks lead to.

Phishing 96

Phishing Security Awareness Ransomware InfoSec 96

SecureWorld News

FEBRUARY 25, 2022

A commissioned survey of 600 InfoSec and IT professionals across those same seven countries. Practical advice for using internal data, threat intelligence, and clear communications to improve the effectiveness of your security awareness training program. Register here!

Phishing 98

Phishing Risk Security Awareness Social Engineering 98

Dark Reading

APRIL 18, 2018

End-users can be the weakest link in your infosec defense. But according to KnowBe4 founder and CEO Stu Sjouwerman, there is something you can do about that - if you implement the right behavioral diagnostics and focus your training needs on individual users' actual weaknesses.

Security Awareness 42

Security Awareness InfoSec 42

SC Magazine

FEBRUARY 26, 2021

Building a security awareness training program to develop a strong infosec culture requires time and money, and chief information security officers frequently try to make a case for such an investment by citing return on investment and other metrics of success. .” Christiaan Colen / CC BY-SA 2.0 ).

CISO 88

CISO Security Awareness Phishing InfoSec 88

CyberSecurity Insiders

FEBRUARY 3, 2022

SAN ANTONIO–( BUSINESS WIRE )–Security Awareness Training and Human Risk Management company AwareGO today announced company milestones achieved and overall performance for 2021, including record year-over-year online revenue growth of 219%, enterprise revenue growth of 156%, and total revenue growth of 116%.

Security Awareness 52

Security Awareness Risk Marketing InfoSec 52

Thales Cloud Protection & Licensing

OCTOBER 24, 2019

In the spirit of National Cyber Security Awareness Month (NCSAM), my colleague Ashvin Kamaraju wrote about how organizations can use fundamental controls to secure their information technology. Effective digital security doesn’t end at “Secure IT,” however. Building a Robust Security Culture.

Security Awareness 83

Security Awareness InfoSec Passwords Accountability 83

Security Boulevard

MAY 30, 2021

CybeReady’s Hi-5 brings together InfoSec leaders for peer-to-peer sharing via five short questions and insights. Mário João Fernandes, born and raised in Mozambique, has been working in the banking sector for 29 years and has been fulfilling dedicated security roles in the cybersecurity space for over 11 years.

CISO 105

CISO InfoSec Banking Cybersecurity 105

Security Boulevard

AUGUST 26, 2021

enroll in credit monitoring, credit freeze, use 2FA, change passwords), infosec people typically have different questions. The post If You Don’t Need Data, Don’t Keep It appeared first on Security Boulevard. While many articles have focused on what consumers should do if they were a victim of the breach (e.g.,

InfoSec 98

InfoSec Mobile Passwords Data breaches 98

SecureWorld News

MARCH 17, 2022

Key takeaway #3: Social engineering is the most powerful attack vector against InfoSec protocols. Social engineering, as it's called, has always been the most powerful part of InfoSec, or the lack of InfoSec, in any organization.". The bad guy just has to be right one time, they need to get ONE person to click on ONE email.

InfoSec 97

InfoSec Social Engineering Phishing Cybercrime 97

Notice Bored

AUGUST 7, 2020

And so our cunning plan falls into place. Policies are merely Lego bricks in a bigger governance structure.

Government 52

Government InfoSec Information Security Accountability 52

Security Boulevard

MARCH 24, 2022

Welcome to the Ask Chloé column on Security Boulevard! This week, Chloé offers advice to an InfoSec pro struggling with response time anxiety. The post Ask Chloé: Response Time Etiquette appeared first on Security Boulevard. Dear Chloé, Do you ever get nervous when someone doesn’t text/Slack/email you back within a day?

InfoSec 78

InfoSec Technology Media Security Awareness 78

Notice Bored

APRIL 12, 2022

This morning, I’ve been browsing and thinking about ISO/IEC 27403 , a draft ISO27k standard on the infosec and privacy aspects of “domotics” i.e. IoT things at home. Security configuration is, at best, an ad hoc activity when (some) things turn up. Security monitoring and management (e.g.

IoT 63

IoT InfoSec Risk Security Awareness 63

The Falcon's View

AUGUST 29, 2017

The focus of the boot camp was around "behavior design," which was suggested to me by a friend who's a leading expert in modern, progress security awareness program management. I concluded that maybe this sub-field would be called something like "behavioral security" and started doing searches on the topic.

Information Security 45

Information Security InfoSec Social Engineering Security Awareness 45

Security Boulevard

NOVEMBER 17, 2021

This week, Chloé offers advice on getting a talk accepted at an InfoSec conference. Dear Chloé, I’ve been trying to get my talk accepted at InfoSec conferences; however, I keep. The post Ask Chloé: How to Get Your Talk Accepted appeared first on Security Boulevard.

InfoSec 59

InfoSec Technology Security Awareness Cybersecurity 59

Spinone

SEPTEMBER 8, 2020

Perhaps, KnowBe4’s best-known course is Kevin Mitnick’s security awareness training , which helps your colleagues to learn about spam, phishing, ransomware, and ways to protect your data against these threats. Apart from that, you can test your employees using a simulated phishing awareness campaign.

Phishing 52

Phishing InfoSec Social Engineering Backups 52

SecureWorld News

OCTOBER 19, 2023

Economic effects, including inflationary pressures, have had a broad impact across the InfoSec landscape," Smeaton said. Investing in security awareness training has a bottom line impact. Arndt continued: " Organizations need to rekindle more significant resource allocations toward security awareness and training efforts.

Cybersecurity 106

Cybersecurity CISO Education Phishing 106

Herjavec Group

MAY 19, 2022

Hackers are routinely attempting novel ways to infiltrate corporate networks so it’s important to ensure that your employees are aware of how their online behavior can make them – and you – more vulnerable. Build security awareness training modules to educate your employees on how to spot phishing emails or business-related scams.

Penetration Testing 98

Penetration Testing Social Engineering Cybercrime InfoSec 98

SC Magazine

MARCH 2, 2021

House Oversight and Homeland Security committees last week, SolarWinds’s former and current CEOs blamed an intern for creating a weak FTP server password and leaking it on GitHub – an act which may or may not have contributed to a supply chain hack that impacted users of the tech firm’s Orion IT performance monitoring platform.

Passwords 129

Passwords Password Management CISO InfoSec 129

CyberSecurity Insiders

DECEMBER 29, 2021

The most recent TAP Tank in October, with a focus on cybersecurity, introduced new and growing relationships with several software, hardware, and services companies, including Blackpoint , Vonahi , Corent , Zeguro , Bandura Cyber , Armor and Infosec. View the N-able Technology Alliance Program (TAP) Overview for additional info.

Technology 52

Technology InfoSec Cybercrime Backups 52

SC Magazine

FEBRUARY 18, 2021

Understanding the detection difficulty helps phishing awareness training implementers in two primary ways,” said Jody Jacobs, infosec specialist at NIST, in a session held last Tuesday at the Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG)’s 51’s General Meeting.

Phishing 114

Phishing Mobile Security Awareness Media 114

Security Boulevard

JUNE 22, 2021

CybeReady’s Hi-5 brings together InfoSec leaders for peer-to-peer sharing via five short questions and insights. Piotr Stecz has been working in Adamed Pharma for 18 years in various IT and Security roles. What is the biggest challenge security […].

CISO 59

CISO InfoSec Phishing Security Awareness 59

Security Boulevard

MAY 20, 2021

CybeReady’s Hi-5 brings together InfoSec leaders for peer-to-peer sharing via five short questions and insights. Dmitriy Sokolovskiy has been working in the cybersecurity space for over 14 years in dedicated security roles, in addition to 9 more years working in various IT areas.

CISO 59

CISO Technology InfoSec Information Security 59

Security Boulevard

MARCH 23, 2022

Using the Easy Button™ Last month, we posted our blog explaining the staffing shortage in the information security (InfoSec) industry. The post Fixing the Shortage of Information Security Professionals appeared first on Security Boulevard. It can often take three to six months to fill.

Information Security 52

Information Security InfoSec Social Engineering Engineering 52

Security Boulevard

APRIL 25, 2022

After all, it creates a culture of security-minded teams and incentivizes ongoing excellence for software that everyday users rely upon. The latest approach within secure coding training now links real-time vulnerability detection with training curriculum—allowing infosec teams.

InfoSec 52

InfoSec Retail Software Security Awareness 52

Notice Bored

JULY 21, 2022

The customer is apparently seeking guidance on integrating infosec into the development process, which begs the question "Which development process?". Reducing the problem to its fundamentals, there is a desire to end up with software/systems that are 'adequately secure', meaning no unacceptable information risks remain.

Software 72

Software Risk InfoSec Security Awareness 72

Security Boulevard

MAY 4, 2021

CybeReady’s Hi-5 brings together InfoSec leaders for peer-to-peer sharing via five short questions and insights. She held Audit and Security leadership roles in leading European companies. In 2014 she founded WITSEC, a professional group of women working in IT and Information Security […].

CISO 52

CISO InfoSec Information Security Cybersecurity 52

Security Boulevard

JANUARY 26, 2023

But just as vital to security is employee security awareness and protecting important information within an organization. In the first installment of our cybersecurity best practices, we explored how individuals can safeguard their personal data.

Security Awareness 69

Security Awareness Cybersecurity InfoSec 69