CISO

How effective compensation makes a difference with cyber talent retention

Artico Search, CISO, cybersecurity, cybersecurity talent, IANS, News, report, survey /

How effective compensation makes a difference with cyber talent retention 20/11/2023 at 09:01 By Help Net Security Aligning cybersecurity organization models with business objectives enables talent retention and security program success, according to IANS and Artico Search. CISOs’ role in organizational and staffing decisions Fortune firms with annual revenues exceeding $6 billion generally operate large […]

How effective compensation makes a difference with cyber talent retention Read More »

Biden Campaign Looking for CISO

CISO, CISO Strategy, Election, Geopolitics, Incident Response, Management & Strategy /

Biden Campaign Looking for CISO 16/11/2023 at 19:46 By Ryan Naraine The Biden for President campaign is looking for a cybersecurity chief to “define the organization’s risk appetite” and manage its cybersecurity and IT initiatives. The post Biden Campaign Looking for CISO appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

Biden Campaign Looking for CISO Read More »

Modeling organizations’ defensive mechanisms with MITRE D3FEND

CISO, collaboration, Compliance, cybersecurity, Don't miss, Features, framework, Hot stuff, MITRE, News, NSA, opinion, security ROI, security standard, standards, strategy /

Modeling organizations’ defensive mechanisms with MITRE D3FEND 15/11/2023 at 09:02 By Mirko Zorz Funded by the National Security Agency, MITRE’s D3FEND framework is helping to provide standardization, specificity, and repeatability needed by cybersecurity engineers. As the framework moves from the beta version to version 1.0 in 2024, we asked D3FEND creator Peter Kaloroumakis how D3FEND

Modeling organizations’ defensive mechanisms with MITRE D3FEND Read More »

Cyber risk is business risk: Qualys Enterprise TruRisk Platform sets new industry standard

CEO, CISO, cyber risk, cybersecurity, Don't miss, Features, Hot stuff, News, opinion, Qualys, Risk Management, strategy /

Cyber risk is business risk: Qualys Enterprise TruRisk Platform sets new industry standard 13/11/2023 at 10:33 By Help Net Security In this Help Net Security interview, Sumedh Thakar, President and CEO of Qualys explores the vision behind the Qualys Enterprise TruRisk Platform, a strategic move aimed at redefining how enterprises measure, communicate, and eliminate cyber

Cyber risk is business risk: Qualys Enterprise TruRisk Platform sets new industry standard Read More »

The real cost of healthcare cybersecurity breaches

CISO, cybersecurity, data breach, Don't miss, Features, Google, Google Cloud, healthcare, Hot stuff, News, opinion, strategy, tips /

The real cost of healthcare cybersecurity breaches 13/11/2023 at 09:33 By Mirko Zorz With each step towards digitalization, from cloud computing to electronic records, the healthcare sector faces mounting risks that threaten not just the privacy but the very wellbeing of patients. In this Help Net Security interview, Taylor Lehmann, Director, Office of the CISO,

The real cost of healthcare cybersecurity breaches Read More »

CISOs vs. developers: A battle over security priorities

Chainguard, CISO, cybersecurity, framework, News, report, software development, supply chain, survey /

CISOs vs. developers: A battle over security priorities 13/11/2023 at 09:01 By Help Net Security A majority of both developers and CISOs view software supply chain security as a top priority in their roles (70% and 52% respectively), according to Chainguard. However, there is a clear disconnect and even some distrust between CISOs and developers

CISOs vs. developers: A battle over security priorities Read More »

How to withstand the onslaught of cybersecurity threats

automation, CIO, CISO, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, hybrid workforce, IT assets, News, opinion, shadow IT, strategy, threats /

How to withstand the onslaught of cybersecurity threats 10/11/2023 at 08:31 By Help Net Security “We brought a shovel to fight an avalanche.” That’s the sentiment shared by many business leaders, especially CISOs, CIOs and IT leaders as they face the current cybersecurity threat landscape. Like an avalanche, it’s constantly shifting and changing, moving quickly

How to withstand the onslaught of cybersecurity threats Read More »

How global password practices are changing

authentication, CISO, credentials, cybersecurity, Dashlane, Don't miss, MFA, News, password manager, passwords, report /

How global password practices are changing 06/11/2023 at 09:33 By Help Net Security Password health and hygiene improved globally over the past year, reducing the risk of account takeover for consumers and businesses, according to Dashlane. Password reuse remains prevalent, however, leaving user accounts particularly vulnerable to password-spraying attacks if they’re not protected by strong

How global password practices are changing Read More »

Securing data at the intersection of the CISO and CDO

ALTR, CISO, cybersecurity, data, Don't miss, framework, Hot stuff, Risk Management, security practices, strategy, Video /

Securing data at the intersection of the CISO and CDO 06/11/2023 at 08:34 By Help Net Security Two groups in particular play a key and critical role in ensuring data governance and security: the CISO and the CDO. CISOs are responsible for identifying and managing risks associated with data security, while CDOs are responsible for

Securing data at the intersection of the CISO and CDO Read More »

SolarWinds and CISO accused of fraud, control failures

CISO, Government, law, News, SolarWinds, USA /

SolarWinds and CISO accused of fraud, control failures 31/10/2023 at 11:16 By Help Net Security The Securities and Exchange Commission announced charges against SolarWinds and its CISO, Timothy G. Brown, for fraud and internal control failures relating to allegedly known cybersecurity risks and vulnerabilities. The complaint alleges that, from at least its October 2018 initial

SolarWinds and CISO accused of fraud, control failures Read More »

From Windows 9x to 11: Tracing Microsoft’s security evolution

CISA, CISO, cybersecurity, Don't miss, Features, Hot stuff, Linux, macOS, Microsoft, News, opinion, strategy, Tenable, Windows /

From Windows 9x to 11: Tracing Microsoft’s security evolution 31/10/2023 at 09:01 By Mirko Zorz Over its journey from Windows 9x to Windows 11, Microsoft has implemented multiple security overhauls, each addressing the challenges of its time and setting the stage for future developments. In this Help Net Security interview, we feature security researcher Alex

From Windows 9x to 11: Tracing Microsoft’s security evolution Read More »

SEC Charges SolarWinds and Its CISO With Fraud and Cybersecurity Failures

CISO, CISO Strategy, Featured, Incident Response, SolarWinds, SUNBURST, Tracking & Law Enforcement /

SEC Charges SolarWinds and Its CISO With Fraud and Cybersecurity Failures 31/10/2023 at 05:01 By Mike Lennon The SEC filed charges against SolarWinds and its CISO over misleading investors about its cybersecurity practices and known risks. The post SEC Charges SolarWinds and Its CISO With Fraud and Cybersecurity Failures appeared first on SecurityWeek. This article

SEC Charges SolarWinds and Its CISO With Fraud and Cybersecurity Failures Read More »

The dangers of dual ransomware attacks

attacks, authentication, backup, CIO, CISO, Cohesity, collaboration, cybersecurity, data management, data security, digital forensics, disaster recovery, Don't miss, Expert analysis, Expert corner, Hot stuff, Incident Response, News, opinion, Ransomware /

The dangers of dual ransomware attacks 30/10/2023 at 09:32 By Help Net Security At some point in the movie “Groundhog Day,” Phil Connors breaks his bedside radio when he is woken up (yet again) by the song “I Got You Babe”. This déjà vu seems to await companies that fall victim to ransomware and fail

The dangers of dual ransomware attacks Read More »

AI threat landscape: Model theft and inference attacks emerge as top concerns

Artificial Intelligence, CISO, collaboration, cybersecurity, data, Don't miss, Features, generative AI, guidelines, Hot stuff, News, opinion, policy, regulation, risk, SaaS, Savvy /

AI threat landscape: Model theft and inference attacks emerge as top concerns 30/10/2023 at 08:31 By Mirko Zorz Generative AI has emerged as a powerful tool, heralded for its potential but also scrutinized for its implications. Enterprises will invest nearly $16 billion worldwide on GenAI solutions in 2023, according to IDC. In this Help Net

AI threat landscape: Model theft and inference attacks emerge as top concerns Read More »

OT cyber attacks proliferating despite growing cybersecurity spend

CISO, cyber resilience, cybercriminals, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, IIoT, IoT, NanoLock Security, News, opinion, zero trust /

OT cyber attacks proliferating despite growing cybersecurity spend 26/10/2023 at 07:32 By Help Net Security The sharp increase in attacks on operational technology (OT) systems can be primarily attributed to two key factors: the escalating global threats posed by nation-state actors and the active involvement of profit-driven cybercriminals (often sponsored by the former). The lack

OT cyber attacks proliferating despite growing cybersecurity spend Read More »

CISOs struggling to understand value of security controls data

Artificial Intelligence, CISO, cybersecurity, data security, News, Panaseer, report, security controls /

CISOs struggling to understand value of security controls data 26/10/2023 at 06:02 By Help Net Security Many CISOs are grappling with the conundrum of the purpose and value of security controls data in supporting critical business decisions, according to Panaseer. The biggest concern when taking on a new CISO role is receiving an inaccurate audit

CISOs struggling to understand value of security controls data Read More »

Strategies to overcome cybersecurity misconceptions

Application Security, CISO, Compliance, cybersecurity, Don't miss, Hot stuff, LogRhythm, Ransomware, SOC, strategy, threats, Video /

Strategies to overcome cybersecurity misconceptions 25/10/2023 at 07:02 By Help Net Security Many CISOs may believe their cybersecurity defenses are robust enough to repel any attack, but there are critical misconceptions they may be harboring. In this Help Net Security video, Kevin Kirkwood, Deputy CISO at LogRhythm, stresses that one of the most significant pitfalls

Strategies to overcome cybersecurity misconceptions Read More »

1Password also affected by Okta Support System breach

1Password, authentication, BeyondTrust, CISO, Cloudflare, cybersecurity, Don't miss, Hot stuff, identity protection, News, Okta, privileged identity /

1Password also affected by Okta Support System breach 24/10/2023 at 13:50 By Zeljka Zorz Following in the footsteps of BeyondTrust and CloudFlare, 1Password has revealed that it has been affected by the Okta Support System breach. “On September 29, we detected suspicious activity on our Okta instance that we use to manage our employee-facing apps,”

1Password also affected by Okta Support System breach Read More »

Navigating OT/IT convergence and securing ICS environments

CISO, Compliance, critical infrastructure, cybersecurity, disaster recovery, Don't miss, framework, GuidePoint Security, Hot stuff, Incident Response, risk assessment, Video /

Navigating OT/IT convergence and securing ICS environments 23/10/2023 at 07:33 By Help Net Security Escalating threats to operational technology (OT) have prompted an increasing number of global enterprises to adopt sophisticated technologies and services to enhance the security of their assets. In this Help Net Security video, Christopher Warner, Senior GRC-OT Security Consultant at GuidePoint

Navigating OT/IT convergence and securing ICS environments Read More »

The real impact of the cybersecurity poverty line on small organizations

Afni, CISO, cybersecurity, Don't miss, Features, framework, Hot stuff, MFA, News, opinion, policy, resilience, risk, risk assessment, strategy, threats /

The real impact of the cybersecurity poverty line on small organizations 20/10/2023 at 07:03 By Mirko Zorz The financial constraints many smaller organizations face often cast shadows on their ability to fortify defenses. In this Help Net Security interview, Brent Deterding, CISO at Afni, delves into the realities and myths surrounding the cybersecurity poverty line,

The real impact of the cybersecurity poverty line on small organizations Read More »

Scroll to Top