Security Boulevard

NOVEMBER 10, 2022

Welcome to the latest edition of The Week in Security , which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond. This week: Former Uber CSO is convicted for his attempted cover-up of a 2016 hack of the company.

CSO 69

CSO Media Hacking Software 69

CSO Magazine

NOVEMBER 2, 2021

Cybersecurity buzzwords and buzz phrases are a dime a dozen. However, such terms are not always helpful and can be inaccurate, outdated, misleading, or even risk causing harm. Learn 8 pitfalls that undermine security program success and 12 tips for effectively presenting cybersecurity to the board.

Cybersecurity 143

Cybersecurity CSO Marketing Information Security 143

CSO Magazine

APRIL 3, 2023

Mergers and acquisitions (M&A) have the potential to introduce significant cybersecurity risks for organizations.

Risk 125

Risk Cybersecurity Technology 125

CSO Magazine

JANUARY 25, 2022

federal government has been very active the past year, particularly with the cybersecurity executive order (EO) and associated tasks and goals that have come out of it. One framework and industry source that has been getting increased attention is the NIST Cybersecurity Framework (CSF).

Risk 130

Risk Cybersecurity Government 130

CSO Magazine

AUGUST 16, 2021

The cybersecurity mantra at Jefferson Health is “if we can’t do it well, we’re not going to do it” says Mark Odom, CISO of the Philadelphia-based healthcare organization. Learn the 7 keys to better risk assessment. | Get the latest from CSO by signing up for our newsletters. ]. Learn the 7 keys to better risk assessment. |

Cybersecurity 144

Cybersecurity CSO Healthcare CISO 144

CSO Magazine

FEBRUARY 21, 2023

Despite the billions of dollars poured annually into cybersecurity by investors, organizations, academia, and government, adequate and reliable cybersecurity remains an ever-elusive goal. Chief among the challenges for decision-makers and experts is simply identifying and comprehending society's cybersecurity risks.

Risk 108

Risk Cybersecurity Government Technology 108

CSO Magazine

AUGUST 3, 2021

The US General Accountability Office (GAO) issued the 19-page report , “Cybersecurity and Information Technology: Federal Agencies need to Strengthen Efforts to Address High-Risk Areas” on July 29. Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan.

CSO 142

CSO Cybersecurity Government Accountability 142

CSO Magazine

MAY 16, 2023

Like all healthcare providers, US-based Northfield Hospital has a big responsibility when it comes to cybersecurity as sensitive data and the lives of patients could be at stake. To read this article in full, please click here

Risk 73

Risk CSO Healthcare Cybersecurity 73

CSO Magazine

SEPTEMBER 1, 2021

The US Cybersecurity and Infrastructure Security Agency (CISA) has started a list of what it deems to be bad security practices. Get the latest from CSO by signing up for our newsletters. ] The two on the list so far instruct any organization that provides national critical functions (NCF) what not to do.

CSO 127

CSO Risk Architecture Passwords 127

SecureWorld News

MAY 2, 2024

By spearheading cybersecurity programs, CISOs empower organizations to fend off cyber threats from criminal enterprises, insider risks, hackers, and other malicious entities that pose significant risks to operations, critical infrastructure, and even national security. RELATED: Uber CSO Found Guilty: The Sky Is Not Falling.

CISO 76

CISO Government CSO Artificial Intelligence 76

SecureWorld News

NOVEMBER 16, 2023

In a move that has raised concerns about the company's cybersecurity posture, Amy Bogac, Clorox's CISO, has stepped down from her position. Some speculate that Bogac may have been frustrated with the company's slow response to the cyberattack and its lack of investment in cybersecurity measures.

CISO 86

CISO Cybersecurity CSO Risk 86

CSO Magazine

OCTOBER 7, 2022

Business leaders spend most of their time conducting risk/reward analyses of virtually every decision they make. Cybersecurity is another critical area where risk must be constantly assessed. The risk of unanticipated service interruptions—not to mention the many direct and indirect costs of data loss—is substantial.

Risk 113

Risk Cybersecurity Marketing Government 113

SecureWorld News

AUGUST 26, 2020

But this time, it is the Treasury Inspector General for Tax Administration auditing the IRS, the agency's legacy IT environment and its cybersecurity. What does effective asset management look like from a cybersecurity perspective? Aflac CSO Tim Callahan told us as much after his keynote at a SecureWorld conference last year.

Risk 94

Risk Cybersecurity CSO Technology 94

CyberSecurity Insiders

MARCH 30, 2023

Seasoned CISOs/CSOs understand the importance of effectively communicating cyber risk and the need for investment in cybersecurity defense to the board of directors. To ensure cybersecurity becomes a strategic part of the corporate culture, it is crucial for CISOs to present the topic in a clear, concise, and compelling manner.

Cybersecurity 119

Cybersecurity Cyber Risk CISO Risk 119

CSO Magazine

MARCH 8, 2021

CISO Bill Brown knows how high-profile cybersecurity breaches like SolarWinds can raise alarm bells among executives and board members when they become headline news. But nothing more than that.” [ Learn the 7 keys to better risk assessment. | Get the latest from CSO by signing up for our newsletters. ]. Could this happen to us?

CSO 132

CSO Cybersecurity CISO Healthcare 132

CSO Magazine

JUNE 21, 2021

Lack of a program signals data may be at risk when equipment is recycled; presence of a program signals attention to data protection. Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan. Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ].

CISO 116

CISO Risk CSO Accountability 116

Security Boulevard

MARCH 31, 2022

Cyber strategist Pete Lindstrom maintained in an article on CSO that cybersecurity risk is constantly changing in a way analogous to the probability odds in a March Madness tournament. The post Does Cyber Risk Quantification Work? Avast appeared first on Security Boulevard.

Cyber Risk 52

Cyber Risk Risk CSO Cybersecurity 52

CSO Magazine

APRIL 19, 2022

The threat of litigation is enough to keep any business leader up at night, and the increasing prevalence of data protection, privacy, and cybersecurity legislation and regulation is piling on the pressure for CISOs.

CISO 131

CISO Cybersecurity Risk 131

CSO Magazine

MAY 18, 2021

Learn the 7 keys to better risk assessment. | Get the latest from CSO by signing up for our newsletters. ]. The new proposals could require MSPs to meet the current Cyber Assessment Framework , a set of 14 cybersecurity principles designed for organisations that play a vital role in the day-to-day life of the UK.

Risk 94

Risk CSO Government Cyber Risk 94

CSO Magazine

AUGUST 2, 2022

The data-reliance of digital banking means an AI-driven approach to cybersecurity and risk management is integral to success, UnionDigital Bank CISO Dominic Grunden tells CSO. Working together, the two used autonomous technology to instill a “truly holistic” AI-enhanced security and risk management strategy.

Banking 81

Banking CSO Cybersecurity CISO 81

CSO Magazine

MAY 26, 2022

Financial services giant Mastercard has announced the launch of a new attack simulation and assessment platform designed to help businesses and governments enhance their cybersecurity operational resilience. The launch comes as Mastercard continues to invest in cybersecurity and risk management capabilities.

Risk 99

Risk Cybersecurity Financial Services Government 99

CSO Magazine

APRIL 14, 2022

Those initiatives—especially those prioritizing remote or hybrid working, new digital services for customers and citizens, and increased outsourcing of remote vendors and suppliers—have created hundreds of thousands of new digital identities in each organization, which can increase their exposure to cybersecurity risk.

Risk 106

Risk Cybersecurity Ransomware 106

CyberSecurity Insiders

APRIL 26, 2021

That means cybersecurity training and education so that key stakeholders understand the risks that businesses are facing, and which strategies are most effective for protection. Who should receive cybersecurity training in your organization? How much depends on the extent of the CIO’s involvement in cybersecurity.

Cybersecurity 111

Cybersecurity CISO Education CSO 111

CSO Magazine

FEBRUARY 28, 2023

Companies rightly see much promise for future revenues and productivity by building and participating in emerging digital ecosystems — but most have not given enough consideration to the risks and threats inherent in such ecosystems.

Risk 106

Risk Cyber threats Cybersecurity 106

SecureWorld News

JUNE 13, 2023

It was fitting that the opening keynote panel for SecureWorld Chicago on June 8th was titled " Making the Cybersecurity Music: Navigating Challenges and Opportunities in Today's InfoSec Landscape. Well, information security, cybersecurity happens to be a critical part of the business, being able to achieve strategic objectives.

Cybersecurity 82

Cybersecurity CISO InfoSec Risk 82

CSO Magazine

MARCH 24, 2023

Basically, every organization that uses this tool is at risk of losing their AI models, having an internal server compromised, and having their AWS account compromised," Dan McInerney, a senior security engineer with cybersecurity startup Protect AI, told CSO. It's pretty brutal."

CSO 111

CSO Authentication Engineering Internet 111

Krebs on Security

DECEMBER 18, 2018

KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Not that these roles are somehow more or less important than that of a CISO/CSO within the organization.

CSO 221

CSO CISO Marketing Banking 221

CSO Magazine

FEBRUARY 14, 2023

A core pillar of a mature cyber risk program is the ability to measure, analyze, and report cybersecurity threats and performance. That said, measuring cybersecurity is not easy. What can be measured in cybersecurity? To read this article in full, please click here

Cybersecurity 125

Cybersecurity Cyber Risk Risk 125

CSO Magazine

FEBRUARY 28, 2023

Yet history has shown that a poor economy can bring on additional challenges and risks, making an already uphill battle even more difficult and security leaders should be bracing for that scenario ahead. At the same time, they’ve had to contend with bad actors who have become more organized, better resourced, and increasingly sophisticated.

Risk 124

Risk CISO Cybersecurity Technology 124

CSO Magazine

NOVEMBER 11, 2021

From a cybersecurity standpoint, organizations are operating in a high-risk world. The ability to assess and manage risk has perhaps never been more important.

Risk 125

Risk Telecommunications CISO Data breaches 125

CSO Magazine

MARCH 22, 2022

Cybersecurity and risk expert David Wilkinson has heard some executives put off discussions about risk acceptance, saying they don’t have any appetite or tolerance for risk. Yet there are indicators that many CISOs aren’t having productive conversations around risk acceptance.

Risk 120

Risk CISO Cybersecurity 120

CSO Magazine

MAY 5, 2023

Google has announced a new entry-level cybersecurity certificate to teach learners how to identify common risks, threats, and vulnerabilities, as well as the techniques to mitigate them.

Threat Detection 139

Threat Detection Cybersecurity Risk 139

CSO Magazine

APRIL 22, 2021

On April 20, the Biden administration, through the United States Department of Energy (DOE), issued what it is calling its 100-day plan to address cybersecurity risks to the US electric system. The plan is a coordinated effort among DOE, the electricity industry, and the Cybersecurity and Infrastructure Security Agency (CISA).

Risk 98

Risk Cybersecurity Cyber threats 98

CSO Magazine

MARCH 28, 2022

I like doing this because it is a better representation of how cybersecurity risk works than the way we typically think in our field.

Risk 77

Risk Cybersecurity 77

CSO Magazine

MAY 9, 2023

Global cybersecurity concerns are returning to pandemic levels as 68% of CISOs from 16 countries said they fear a cyberattack in the next 12 months, according to a ProofPoint survey. Compared with last year, CISOs are feeling less prepared to cope with cyberattacks and more at risk, indicating a reversal to the early days of the pandemic.”

CISO 123

CISO Cybersecurity Risk 123

CSO Magazine

NOVEMBER 12, 2021

The risk of cybercrime is not spread equally across the globe. Cyberthreats differ widely, with internet users in some countries at much higher risk than those in nations that offer more security due to strong cybercrime legislation and widely implemented cybersecurity programs, according to fraud-detection software company SEON.

Cybercrime 129

Cybercrime Risk Internet Internet 129

CSO Magazine

APRIL 19, 2023

But the security risks posed by departing staff can be significant. Without secure off-boarding processes, organizations expose themselves to a variety of cybersecurity risks ranging from the innocuously accidental to the maliciously deliberate. To read this article in full, please click here

Risk 96

Risk CISO Cybersecurity 96