The Last Watchdog

MARCH 14, 2019

The firings came as a result of a massive data breach which routed through an HVAC contractor’s compromised account. So they began inundating their third-party suppliers with “bespoke assessments” – customized cyber risk audits that were time consuming and redundant. The key takeaways: Rise of third parties.

Cyber Risk 165

Cyber Risk Risk Digital transformation Accountability 165

CyberSecurity Insiders

MARCH 30, 2023

Seasoned CISOs/CSOs understand the importance of effectively communicating cyber risk and the need for investment in cybersecurity defense to the board of directors. To ensure cybersecurity becomes a strategic part of the corporate culture, it is crucial for CISOs to present the topic in a clear, concise, and compelling manner.

Cybersecurity 119

Cybersecurity Cyber Risk CISO Risk 119

The Security Ledger

JULY 22, 2020

In this Spotlight podcast* we’re joined by Andrew Jaquith, the CISO at QOMPLX to talk about how the COVID pandemic is highlighting longstanding problems with cyber risk management and cyber resilience. Andy is an amazing resource on all matters cyber security. Read the whole entry. » New Tech Meets Old Tools.

CISO 52

CISO Cyber Risk Ransomware Risk 52

SC Magazine

APRIL 21, 2021

The hack of Words with Friends in 2019 was high-profile, but today’s columnist, Yuval Elddad of CYE, says CISOs at all gaming companies have to take a closer look at the growing threats to online gaming platforms. In 2019, Zynga’s popular online game, Words with Friends , was hacked, resulting in the breach of 218 million user accounts.

CISO 94

CISO Marketing Accountability Passwords 94

IT Security Guru

OCTOBER 14, 2021

The pre-COVID-19 CISO. The global COVID-19 pandemic has been a tumultuous time for Chief information security officers (CISOs) who on any given day have a long and complicated list of responsibilities. An explosion of cyber risks and a complicated and constantly changing threat landscape.

CISO 55

CISO Social Engineering Marketing Cyber Risk 55

SecureWorld News

DECEMBER 11, 2023

Public companies will also have to share details about their "cybersecurity risk management, strategy, and governance" on an annual basis. Understanding the nature of the threat and how to appropriately mitigate that risk should be a shared responsibility, not solely the purview of the CISO or CSO.

CISO 90

CISO Risk Cybersecurity CSO 90

SC Magazine

MARCH 11, 2021

In response, the non-profit has offered a glimpse into its work-in-progress “Accountability Framework,” designed to help relevant health care stakeholders take responsibility for keeping cyberspace secure by enforcing behavioral norms and also by understanding and rooting out the underlying causes when attacks do happen. “Too

Accountability 59

Accountability Healthcare Government CISO 59

SecureWorld News

NOVEMBER 28, 2022

Designate a qualified individual (CISO or equivalent) responsible or overseeing and implementing a cybersecurity program and enforcing its cybersecurity policy. Require the CISO to provide a written report at least annually to the board or equivalent governing body. It's a core responsibility of the board and management team.".

Financial Services 75

Financial Services Cybersecurity CISO InfoSec 75

SecureWorld News

AUGUST 14, 2022

In the hyper-connected globaled world that we live in today, what is more important is creating accountability across all suppliers, vendors, partners, and even the customers that touch the organization. Luckily for cybersecurity, there is no shortage of real-time data that can be used for effective and impactful decision making. ~~~.

Cybersecurity 90

Cybersecurity Data breaches Cyber Risk Accountability 90

Security Boulevard

SEPTEMBER 9, 2022

But hiring a full-time chief information security officer (CISO) is not always possible for organizations – nor is it always needed. Read on to learn why you might want to consider a virtual CISO (vCISO), and the benefits that come with that decision. As we mentioned, hiring a full-time CISO is not always possible – or necessary.

Information Security 59

Information Security CISO Risk Cybersecurity 59

SC Magazine

JULY 9, 2021

Cyber thought leaders were quick to acknowledge the importance of continued cooperation across federal, state and local jurisdictions, though several CISOs suggested that there wasn’t too much new ground covered and recommended ways the federal and state governments and private industry could do even more to assist overwhelmed municipalities.

CISO 80

CISO Government Cryptocurrency Ransomware 80

eSecurity Planet

JANUARY 5, 2023

Seasoned cyber criminals can create and sell attack portfolios as a service to receive simple, quick, and repeatable paydays. The LockBit threat group is the biggest source of ransomware and RaaS attacks, accounting for 44% of successful ransomware attacks in 2022, according to Trustwave SpiderLabs in a new report released today.

Ransomware 143

Ransomware CISO Software Cybercrime 143

Jane Frankland

APRIL 28, 2022

Nowadays, organisations need digital leaders such as CIOs, CISOs, and CTOs who are strategists, visionaries, and know how to manage, effectively. The pressure for those in charge is immense as cyber risks have scaled, and can now bring businesses, economies, and communities to a halt. billion) is expected online.

CISO 130

CISO Mobile Technology Risk 130

Security Boulevard

AUGUST 22, 2022

Highly experienced cybersecurity experts, experienced personnel with a cyber risk management background, and professional engineers who understand physical infrastructure are in huge demand. Maintaining these critical resources directly impacts the organization’s risk scoring. What is the role of the CIO and CISO in ESG?

Cybersecurity 98

Cybersecurity Cyber Insurance Insurance CISO 98

The Security Ledger

MAY 15, 2021

Intel 471 CISO Brandon Hoffman joins us to to discuss Darkside, the ransomware group that attacked the Colonial Pipeline, why the crew may have bitten off more than it can chew and what the attack says about the state of America's Critical Infrastructure. ” -Brandon Hoffman, CISO Intel 471. Read the whole entry. »

Ransomware 52

Ransomware CISO Government Cyber Risk 52

SecureWorld News

OCTOBER 22, 2021

And now CISOs and security teams are getting some surprise mainstream exposure from comedians as they turn cyber headlines into security punchlines. It is helping raise greater security and cyber risk awareness within organizations, with everyone from end-users to board members. Finally, no more forgotten passwords.

Cybersecurity 86

Cybersecurity Passwords Cybercrime Hacking 86

IT Security Guru

APRIL 15, 2021

Despite this, however, younger people also demonstrate relatively advanced cybersecurity hygiene, such as having alias accounts for email and social media. Cyber risks paralyse consumers into inaction. And it falls to the CISO to make this happen. How do you know?

Cybersecurity 98

Cybersecurity CISO Passwords Cyber Risk 98

NetSpi Executives

OCTOBER 17, 2023

This includes the provision of post-market updates and patches, addressing known unacceptable vulnerabilities on a reasonable schedule and addressing critical vulnerabilities that could pose uncontrolled risks as soon as they are discovered. They task the Government Accountability Office (GAO) with preparing reports and conducting reviews.

Healthcare 94

Healthcare Manufacturing Cyber Risk Cybersecurity 94

SecureWorld News

AUGUST 23, 2023

For a solid rundown of what the updates mean, check out this SecureWorld article from Kip Boyle , vCISO, Cyber Risk Opportunities LLC. Michael Gregg, CISO, State of North Dakota: " One of the things that most excites me about the new framework is the addition of the 'govern' function. 19, Detroit on Sept. Stacy O'Mara, Sr.

Cybersecurity 77

Cybersecurity CISO Government Risk 77

McAfee

NOVEMBER 3, 2020

Forrester also predicts that the number of women CISOs at Fortune 500 companies will rise to 20 percent in 2019 , compared with 13 percent in 2017. Her work centered on helping aerospace manufacturers manage the convergence of cyber risk across their increasingly complex business ecosystem, including IT, OT and connected products.

Cybersecurity 93

Cybersecurity Architecture Cloud Migration Retail 93

Jane Frankland

OCTOBER 13, 2021

I went through some of them this week at the Cyber Security Virtual Conference: Celebrating Women in Cyber, and with PWC Canada when they engaged me to open their one day event – SheProtects: Future CISO Program. She sees risk everywhere, is accountable for it, and is mostly at odds with the business.

CISO 100

CISO Cybersecurity Risk Marketing 100

SecureWorld News

JULY 31, 2023

Sam Masiello , CISO, The Anschutz Corporation: "I would expect that many CISOs today are feeling as if their job just got harder and now has a brighter spotlight shining specifically on them. Many CISOs are already burnt out, and there is shortage of qualified CISOs globally. CISOs are expected to be a unicorn already.

CISO 87

CISO InfoSec Risk Cybersecurity 87

The Last Watchdog

MARCH 10, 2020

I spoke with Maurice Côté, VP Business Solutions, and Martin Lemay, CISO, of Devolutions , at the RSA 2020 Conference in San Francisco recently. I believe there’s pent up demand from SMBs for cost-effective services that can reduce the potentially catastrophic cyber risks they face every day. It’s really about offering value.”

Authentication 170

Authentication Risk Digital transformation Passwords 170

CyberSecurity Insiders

NOVEMBER 7, 2022

SIEM enables security teams to detect and respond to threats, manage incident response, and minimize risks. Today, SIEM accounts for approximately $4.4 Around that time, most CISOs and security teams were drowning in a sea of data accompanied by too many security alerts, many of them not actionable. billion globally by 2027.

Marketing 116

Marketing Unstructured Data Cyber Risk Technology 116

Duo's Security Blog

OCTOBER 18, 2021

#BeCyberSmart,” with this post we’ll dig deeper on cyber liability insurance, MFA, and other cybersecurity trends impacting MFA usage in higher education to help campuses manage this aspect of cyber risk for their communities. MFA is core to implementing a zero trust stance to protect your campus.

Insurance 86

Insurance Education Risk Cyber Insurance 86

eSecurity Planet

FEBRUARY 2, 2022

Tens of thousands of applications that are critical to the operations of data centers around the globe are exposed to the internet, with many secured with default factory passwords, posing a significant cyber risk to enterprises worldwide. This is laziness at its worst.”.

Internet 117

Internet Internet Passwords Software 117

NopSec

MAY 4, 2022

With all this speed and the increasing reliance on communications and data-sharing both internally and externally comes the danger of inadequate accounting for and management of cyber risks. For example, an enterprise may decide to use a new company as a vendor to supply software helpful in its expansion into a new market.

Risk 52

Risk Marketing Cyber Risk CISO 52

Spinone

DECEMBER 26, 2018

It is vital for any enterprise landscape to ensure viable, open, and reliable corporate communications – fostering innovation and economic prosperity, with respect to safeguarding against disruption and serious cyber risk perception. What are the benefits of cyber security awareness trainings?

Security Awareness 40

Security Awareness Risk Cyber threats Cyber Risk 40

SC Magazine

FEBRUARY 8, 2021

Ultimately, he believes “this is good for businesses as, through the insurance process, they will gain better visibility into their cyber risks and measures they can deploy to keep digital operations secure and compliant to data privacy regulations.”. billion in premium.

Insurance 126

Insurance Cyber Insurance Cybersecurity Government 126

eSecurity Planet

APRIL 22, 2022

“Where we might have previously relied on what was provided in a short, written application, today we regularly have hour-long underwriting calls with clients, often speaking with their CISOs and security teams, to understand their risk and what security protocols they have in place.”. AI, ML Playing a Role. billion in direct premiums.

Cyber Insurance 101

Cyber Insurance Insurance Marketing Small Business 101

The Last Watchdog

DECEMBER 14, 2023

We asked two questions: •What should be my biggest takeaway from 2023, with respect to mitigating cyber risks at my organization? Kerberoasting” and “Golden Ticket” attacks were both introduced in 2014 and yet enterprises continue to have hundreds of accounts configured with unconstrained delegation.

Cybersecurity 235

Cybersecurity Risk Cyber threats CSO 235

SC Magazine

JULY 1, 2021

The CIOs and CISOs suggested that while real-time patch status may be known for certain devices, it does not exist for many.”. If I’m a CISO and I come to the board with a cyber risk that will cost $60,000, but the entity can self insure for a few million, it can simply absorb the risk costs rather than address the security issue.”.

Security Awareness 68

Security Awareness IoT Risk Healthcare 68

eSecurity Planet

SEPTEMBER 1, 2021

SAP National Security Services (NS2) CISO Ted Wagner told eSecurityPlanet that network slicing “adds complexity, which may lend itself to insecure implementation. Incentivizing a Cyber Duty of Care. There are no secure implementation guides or standards for network operators.

Risk 126

Risk Cybersecurity IoT Wireless 126

eSecurity Planet

JULY 27, 2023

” Still, Exabeam CISO Tyler Ferrar told eSecurity Planet by email that he’s hopeful the rules will benefit consumers too by encouraging better security. “This added layer of accountability can thus create a safer environment for consumers’ personal information.”

Data privacy 87

Data privacy Risk Government Cyber threats 87

SecureWorld News

OCTOBER 11, 2023

For the last eight-plus years, I've been working as a fractional Chief Information Security Officer (CISO). Before that, I worked as a full-time CISO for an insurance company for seven years. Then use your DocuSign account to execute that contract. This is their version of an "easy button" for a really complicated problem.

Insurance 91

Insurance Passwords CISO Cybersecurity 91

BH Consulting

FEBRUARY 15, 2024

Creeping cyber risk grabbing global headlines The World Economic Forum’s latest Global Cybersecurity Outlook 2024 gives senior leaders a high-level overview of cybersecurity trends. Cyber attacks featured in the top five risks for the year ahead, along with factors like extreme weather and the cost of living crisis.

Passwords 52

Passwords Surveillance Risk Data breaches 52

Jane Frankland

JANUARY 13, 2021

Individuals want to understand how to protect their identities, bank accounts, and personal data. Leadership is the secret sauce for cyber risk reduction This year has called for remarkable leadership as the pandemic has taken a toll on those in the industry. Business owners want to understand how to protect their assets.

Cybersecurity 100

Cybersecurity Risk Government Technology 100