cyber resilience

The checklist problem behind critical infrastructure cyber safety

asset discovery, Compliance, critical infrastructure, cyber resilience, cyber risk, cybersecurity, Don't miss, Government, ICS/SCADA, News, policy, regulation, research, USA /

The checklist problem behind critical infrastructure cyber safety 2026-06-17 at 07:00 By Anamarija Pogorelec An asset owner can meet major federal cyber compliance standards and still run equipment that lacks the engineering to withstand an attack or a failure. New research from George Mason University examines how United States cyber policy defines reasonable care for […]

The checklist problem behind critical infrastructure cyber safety Read More »

Cyber resilience metrics that drive action

CISO, cyber resilience, cybersecurity, News, NormCyber, security metrics, strategy, tips, Video /

Cyber resilience metrics that drive action 2026-06-10 at 09:55 By Help Net Security In this Help Net Security video, Pete Bowers, COO at NormCyber, explains how organizations can build a cyber resilience metrics program that supports better decisions. He questions common ways of measuring resilience, such as risk registers, tool scores, and annual tests, and

Cyber resilience metrics that drive action Read More »

US states step up cyber defenses to protect local communities

cyber resilience, cybersecurity, Government, Incident Response, News, strategy, USA /

US states step up cyber defenses to protect local communities 2026-05-25 at 14:35 By Anamarija Pogorelec U.S. state governments are taking on a larger role in cybersecurity to help protect local communities and essential services. Many states are building state-led cyber defense programs, including cybersecurity clinics, regional security operations centers (RSOCs), and state cyber corps

US states step up cyber defenses to protect local communities Read More »

Cyber threats push SMBs to spend more on security

AI, cyber resilience, cyber risk, IDC, News, report, SMBs, third party compromise /

Cyber threats push SMBs to spend more on security 2026-05-21 at 07:16 By Anamarija Pogorelec Cybersecurity has become a key priority for small and medium-sized businesses due to growing threats and wider AI adoption. An IDC survey of 2,200 SMBs in eight markets examined how organizations manage cyber risks, prepare for AI-related threats, and handle

Cyber threats push SMBs to spend more on security Read More »

Communicating cyber risk in dollars boards understand

boardroom, CISO, communication, conferences, cyber resilience, cyber risk, cybersecurity, Don't miss, Features, Hot stuff, News, opinion, Span, strategy, tips /

Communicating cyber risk in dollars boards understand 2026-05-20 at 09:34 By Mirko Zorz In this Help Net Security interview, Nick Nieuwenhuis, Cybersecurity Architect at Nedscaper, explains why cybersecurity has not delivered the resilience that decades of investment have promised. He argues that spending has leaned too heavily on technical controls while neglecting people, processes, and

Communicating cyber risk in dollars boards understand Read More »

Spotting third-party cyber risk before attackers do

CISO, cyber resilience, cyber risk, cybersecurity, Don't miss, News, opinion, Risk Management, strategy, tips, Video /

Spotting third-party cyber risk before attackers do 2026-05-04 at 09:46 By Help Net Security In this Help Net Security video, Jeffrey Wheatman, SVP and Cyber Strategist at Black Kite, discusses how organizations can identify and manage third-party cyber exposures before attackers exploit them. He argues that businesses should move beyond a data-loss mindset toward one

Spotting third-party cyber risk before attackers do Read More »

Coordinated vulnerability disclosure is now an EU obligation, but cultural change takes time

CISO, CVE, cyber resilience, cybersecurity, Don't miss, ENISA, EU, Europe, Features, Hot stuff, MITRE, News, opinion, vulnerability disclosure /

Coordinated vulnerability disclosure is now an EU obligation, but cultural change takes time 2026-04-15 at 10:02 By Mirko Zorz In this Help Net Security interview, Nuno Rodrigues Carvalho, Head of Sector for Incident and Vulnerability Services at ENISA, discusses the recent CVE funding scare and what it exposed about the fragility of global vulnerability disclosure

Coordinated vulnerability disclosure is now an EU obligation, but cultural change takes time Read More »

Why your phishing simulations aren’t building a security culture

cyber resilience, cyber risk, cybersecurity, Don't miss, Immersive, News, phishing, Risk Management, security culture, skill development, strategy, tips, Video /

Why your phishing simulations aren’t building a security culture 2026-03-25 at 08:07 By Help Net Security Security culture isn’t built by phishing simulations. In this Help Net Security video, Dan Potter, VP of Cyber Resilience at Immersive, argues that annual training videos and quarterly phishing tests happen in calm, controlled settings that tell us nothing

Why your phishing simulations aren’t building a security culture Read More »

Your security stack looks fine from the dashboard and that’s the problem

Absolute, CISO, cyber resilience, cyber risk, cybersecurity, Don't miss, endpoint management, enterprise, generative AI, News, report, Risk Management, RSAC 2026 /

Your security stack looks fine from the dashboard and that’s the problem 2026-03-25 at 08:07 By Anamarija Pogorelec One in five enterprise endpoints is operating outside a protected and enforceable state on any given day, according to device telemetry collected across tens of millions of corporate PCs. That figure, drawn from Absolute Security’s 2026 Resilience

Your security stack looks fine from the dashboard and that’s the problem Read More »

New cyber module strengthens risk planning for health organizations

cyber resilience, cybersecurity, healthcare, News, USA /

New cyber module strengthens risk planning for health organizations 2026-03-06 at 15:39 By Anamarija Pogorelec The Administration for Strategic Preparedness and Response’s (ASPR) new cybersecurity module in the Risk Identification and Site Criticality (RISC) 2.0 Toolkit helps organizations identify critical gaps, prioritize investments, and make informed decisions about risk mitigation to reduce disruptions to patient

New cyber module strengthens risk planning for health organizations Read More »

A practical take on cyber resilience for CISOs

CISO, cyber resilience, cyber risk, cybersecurity, Don't miss, News, strategy, tips, Video /

A practical take on cyber resilience for CISOs 2026-01-29 at 08:06 By Help Net Security In this Help Net Security video, Shebani Baweja, CISO for Consumer, Private, Wealth & Business Banking at Standard Chartered, explains how security leaders should think about cyber resilience. She outlines why preparation for extreme events matters as much as day

A practical take on cyber resilience for CISOs Read More »

Poland repels data-wiping malware attack on energy systems

APT, cyber resilience, disruption, Don't miss, energy sector, ESET, EU, govern, Hot stuff, Malware, News, poland, Russian Federation /

Poland repels data-wiping malware attack on energy systems 2026-01-26 at 14:37 By Zeljka Zorz Suspected Russian cyber attackers tried to take down parts of Poland’s energy infrastructure with new data-wiping malware – and failed. According to information shared by the Polish government earlier this month, the attacks happened on 29 and 30 December 2025, and

Poland repels data-wiping malware attack on energy systems Read More »

EU tightens cybersecurity rules for tech supply chains

cyber resilience, ENISA, EU, Europe, European Commission, framework, Government, News /

EU tightens cybersecurity rules for tech supply chains 2026-01-21 at 17:24 By Anamarija Pogorelec The European Commission has proposed a new cybersecurity package aimed at strengthening the EU’s cyber resilience, including a revised EU Cybersecurity Act designed to secure ICT supply chains and ensure products reaching EU citizens are secure by design through a streamlined

EU tightens cybersecurity rules for tech supply chains Read More »

Enterprise security faces a three-front war: cybercrime, AI misuse, and supply chains

Artificial Intelligence, cyber resilience, cybercrime, cybersecurity, Don't miss, News, report, Threat Intelligence, World Economic Forum /

Enterprise security faces a three-front war: cybercrime, AI misuse, and supply chains 2026-01-13 at 11:04 By Anamarija Pogorelec Security teams are dealing with pressures tied to AI use, geopolitical instability, and expanding cybercrime that reach beyond technical controls, according to findings from the World Economic Forum’s Global Cybersecurity Outlook 2026. AI drives risk growth and

Enterprise security faces a three-front war: cybercrime, AI misuse, and supply chains Read More »

Rethinking OT security for project heavy shipyards

access control, access management, cyber resilience, cybersecurity, Damen, Don't miss, Features, Hot stuff, maritime industry, News, threat /

Rethinking OT security for project heavy shipyards 2026-01-12 at 09:09 By Mirko Zorz In this Help Net Security interview, Hans Quivooij, CISO at Damen Shipyards Group, discusses securing OT and ICS in the shipyard. He outlines how project-based operations, rotating contractors, and temporary systems expand the threat surface and complicate access control. Quivooij also covers

Rethinking OT security for project heavy shipyards Read More »

Downtime pushes resilience planning into security operations

Absolute Security, CISO, communication, cyber resilience, cybersecurity, News, remediation, threats /

Downtime pushes resilience planning into security operations 2026-01-12 at 07:18 By Anamarija Pogorelec CISOs describe a shift in how they define success. New research from Absolute Security shows broad agreement that resilience outweighs security goals centered on prevention alone. Security leaders increasingly define their role around keeping the business operating through disruption. The cost of

Downtime pushes resilience planning into security operations Read More »

Creative cybersecurity strategies for resource-constrained institutions

collaboration, Compliance, cyber resilience, cybersecurity, Don't miss, Features, Hot stuff, Innovation, News, RTI International, security controls, strategy /

Creative cybersecurity strategies for resource-constrained institutions 2025-12-02 at 09:33 By Mirko Zorz In this Help Net Security interview, Dennis Pickett, CISO at RTI International, talks about how research institutions can approach cybersecurity with limited resources and still build resilience. He discusses the tension between open research and the need to protect sensitive information, noting that

Creative cybersecurity strategies for resource-constrained institutions Read More »

Your critical infrastructure is running out of time

Cisco, critical infrastructure, cyber resilience, cybersecurity, News, patching, policy, report /

Your critical infrastructure is running out of time 2025-11-27 at 08:05 By Anamarija Pogorelec Cyber attackers often succeed not because they are inventive, but because the systems they target are old. A new report by Cisco shows how unsupported technology inside national infrastructure creates openings that attackers can exploit repeatedly. The findings show how widespread

Your critical infrastructure is running out of time Read More »

Why your security strategy is failing before it even starts

CISO, Compliance, cyber resilience, cybersecurity, Don't miss, Features, Hot stuff, News, Ornua, Risk Management, strategy, threats /

Why your security strategy is failing before it even starts 2025-11-14 at 09:25 By Mirko Zorz In this Help Net Security interview, Adnan Ahmed, CISO at Ornua, discusses how organizations can build a cybersecurity strategy that aligns with business goals. He explains why many companies stumble by focusing on technology before understanding risk and shares

Why your security strategy is failing before it even starts Read More »

UK’s new Cyber Security and Resilience Bill targets weak links in critical services

critical infrastructure, cyber resilience, data center, Don't miss, energy sector, healthcare, Hot stuff, legislation, MSP, News, public sector, transportation, UK /

UK’s new Cyber Security and Resilience Bill targets weak links in critical services 2025-11-12 at 18:17 By Zeljka Zorz The UK government has introduced the Cyber Security and Resilience Bill, a major piece of legislation designed to boost the country’s protection against cyber threats. The new law aims to strengthen the digital defenses of essential

UK’s new Cyber Security and Resilience Bill targets weak links in critical services Read More »

Scroll to Top