Architecture, Blog, CISO and Information Security

People Skills Outweigh Technical Prowess in the Best Security Leaders

SecureWorld News

OCTOBER 5, 2023

Michael Gregg, the CISO for the State of North Dakota, speaks across the country, including keynoting at SecureWorld Detroit on Sep. It's no wonder after he speaks he has a line of folks waiting to learn more from him, or just to shake his hand and say thanks for his information sharing. 19 and at SecureWorld Dallas on Oct.

CISO

CISO Risk Government Cybersecurity

ConnectWise Quietly Patches Flaw That Helps Phishers

Krebs on Security

DECEMBER 1, 2022

29, roughly the same time Pyle published a blog post about his findings , ConnectWise issued an advisory warning users to be on guard against a new round email phishing attempts that mimic legitimate email alerts the company sends when it detects unusual activity on a customer account. ET: Included statement from ConnectWise CISO.

Phishing

Phishing Architecture Passwords Accountability

SPOTLIGHT: Women in Cybersecurity

McAfee

NOVEMBER 3, 2020

“At this year’s Conference 46 percent of all keynote speakers were women,” according to Sandra Toms, VP and curator, RSA Conference, in a blog she posted on the last day of this year’s event. Forrester also predicts that the number of women CISOs at Fortune 500 companies will rise to 20 percent in 2019 , compared with 13 percent in 2017.

Cybersecurity

Cybersecurity Architecture Cloud Migration Retail

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

The Last Watchdog

JANUARY 8, 2023

However, security – the often overlooked and undervalued visitor – is struggling to communicate across the table. When it comes down to it, C-level goals and CISO initiatives are not all that misaligned. About the essayist: Chris Reffkin is chief information security officer at cybersecurity software and services provider Fortra.

Risk

Risk Cybersecurity Technology CISO

Firms with exposed IoT have a higher concentration of other security problems

SC Magazine

JANUARY 29, 2021

For example, companies with exposed IoT are more than 50% more likely to have email security issues, according to a new report and blog post from the Cyentia Institute and RiskRecon. But what does that correlation mean for chief information security officers? So, how can CISOs operationalize that kind of information?

IoT

IoT Internet Internet CISO

Executive Spotlight: Q&A with Chief Information Officer, Scott Howitt

McAfee

AUGUST 23, 2021

But one thing remains the same: our passion and commitment to make the world a safer, more secure place. In this new blog series, you’ll meet some of the executives devoted to tackling today’s most pressing security concerns and innovating for the future. And that passion starts with our people.

CISO

CISO Identity Theft Technology Information Security

Holes in Linux Kernel Could Pose Problems for Red Hat, Ubuntu, Other Distros

eSecurity Planet

JULY 23, 2021

The two flaws – CVE-2021-33909 and CVE-2021-33910, respectively – were disclosed by vulnerability management vendor Qualys in a pair of blogs that outlined the threat to Linux OSes from such companies Red Hat, Ubuntu, Debian and Fedora. ‘Noisy’ Vulnerabilities.

Accountability

Accountability Big data CISO Architecture

What do customers really want (and need) from security?

Cisco Security

JUNE 29, 2022

Learn more about security resilience for the hybrid work era. In addition to unparalleled infrastructure and expertise, our open, cloud-native architecture allows you to integrate with a wide range of third-party security and technology solutions for more seamless threat defense. Safeguard your future with Cisco .

Technology

Technology CISO Architecture Internet

How Security Can Better Support Software Engineering Teams

Lenny Zeltser

OCTOBER 5, 2023

As the CISO at a tech company, my responsibilities include empowering our software engineering teams to maintain a strong security posture of our products. While everyone agrees that security is important, the different incentives of security and engineering teams can make it harder to collaborate.

Engineering

Engineering Software Risk CISO

Executive Business Reviews with Duo Care Help Companies Reach Security Goals

Duo's Security Blog

FEBRUARY 15, 2023

But the goal is always the same: To help organizations review the work they’ve done to date, analyze their data, and examine the Duo feature set available to them in order to make more informed security decisions. The CSM will also walk through a review of any previously outlined project goals or conduct an application inventory.

Engineering

Engineering Accountability Information Security CISO

Securing the Unsecured: State of Cybersecurity 2019 – Part I

McAfee

OCTOBER 8, 2019

This blog was written by Wayne Anderson, previous Enterprise Security Architect at McAfee. The biggest challenge is information security extension in a multi-cloud world. Yet few security operations teams are prepared for that. Machine learning will be throughout the information security technology stack soon.

Digital transformation

Digital transformation Cybersecurity IoT Technology

What’s It Like for a New CISO?

Lenny Zeltser

FEBRUARY 13, 2020

As of this writing, I’ve spent six months in the role of Chief Information Security Officer (CISO) at Axonius , a rapidly growing technology company. Our IT infrastructure is consistent zero-trust architecture principles , so it made sense to treat identity as the focal point of many security decisions.

CISO

CISO Information Security Architecture Technology

Android Debugging Tools Also Useful for Compromising Devices, Mining Cryptocurrency

Security Affairs

JULY 24, 2018

According to the Trend Micro blog , “We found a new exploit using port 5555 after detecting two suspicious spikes in activity on July 9-10 and July 15. […] Our data shows that the first wave of network traffic came mainly from China and the US, while the second wave primarily involved Korea.”

Cryptocurrency

Cryptocurrency IoT Mobile Advertising

GUEST ESSAY: The case for complying with ISO 27001 — the gold standard of security frameworks

The Last Watchdog

FEBRUARY 26, 2023

At the developer level, they will fundamentally reshape how programmers do their work day in and day out – including employing more project management tools and secure system architecture frameworks to track and mitigate risks at any stage in the SDLC.

Cyber threats

Cyber threats Software Risk CISO

Using Proactive Intelligence Against Adversary Infrastructure

Security Boulevard

FEBRUARY 7, 2024

But in the wake of the attack, manychief information security officers (CISOs) realized that PDNS was the answer to early detection and resiliency against similar attacks simply because log4j was surprisingly easy to detect at a DNS level.

DNS

DNS Architecture Marketing Cyber threats

To Achieve Zero Trust Security, Trust The Human Element

Thales Cloud Protection & Licensing

MAY 6, 2021

In our previous blogs we have discussed the many challenges that organizations face as they are seeking to embrace the Zero Trust security model. We have asked leading information security professionals to offer us their valuable advice on how organizations and people can achieve a Zero Trust mentality.

Social Engineering

Social Engineering Authentication Passwords Technology

Bridge the Gap Between the Security You Have and the Security You Need

McAfee

NOVEMBER 12, 2020

They not only have to co-exist with the existing security infrastructure, but they must be integrated to avoid leaving security gaps attackers can exploit. Is it any wonder, then, that CISOs continue to struggle? The era of monolithic and often disconnected, security solutions has passed.

Architecture

Architecture Marketing CISO Technology

As Internet-Connected Medical Devices Multiply, So Do Challenges

Cisco Security

JUNE 15, 2022

That doesn’t mean the risk is zero, noted Christos Sarris , a longtime information security analyst. He shared an anecdote in Cisco Secure’s recent e-book, “ Building Security Resilience ,” about finding malware on an intensive care unit device that compromised a pump used to deliver precise doses of medicine.

Internet

Internet Internet Manufacturing Healthcare

7 Cloud Security Predictions for 2022 to Help Organizations Protect Their Data

CyberSecurity Insiders

JANUARY 19, 2022

Seven Cloud Security Predictions CISOs Can Use in 2022. Since hybrid work models and digital business models are here to stay, IT and security teams will need to rethink how they can better protect data to prevent data breaches in the future. This compendium blog lists 70 , but the answer is surely higher now.

CISO

CISO Data breaches Artificial Intelligence Digital transformation

Democratizing Threat Hunting: How to Make it Happen for Everyone

Cisco Security

FEBRUARY 16, 2021

In the report, we surveyed more than 4,800 IT, security and privacy professionals to find out what matters most in their security practice. Topics such as tech refresh, risk management, and incident response were examined from the perspective of a roadmap for success in an information security program for organizations of all sizes.

Risk

Risk InfoSec Technology CISO

Redesigning the Security Narrative

Duo's Security Blog

APRIL 29, 2022

As I immersed myself in foreign concepts around the information security industry, marketing, and business practices at scale, I grew to appreciate not just the technology we were building at Duo, but the people who built it, the diverse audiences that we addressed, and the unique problems-to-solve around security at large.

Marketing

Marketing InfoSec Architecture Authentication

Cyber Security Informer

People Skills Outweigh Technical Prowess in the Best Security Leaders

ConnectWise Quietly Patches Flaw That Helps Phishers

Trending Sources

SPOTLIGHT: Women in Cybersecurity

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

Firms with exposed IoT have a higher concentration of other security problems

Executive Spotlight: Q&A with Chief Information Officer, Scott Howitt

Holes in Linux Kernel Could Pose Problems for Red Hat, Ubuntu, Other Distros

What do customers really want (and need) from security?

How Security Can Better Support Software Engineering Teams

Executive Business Reviews with Duo Care Help Companies Reach Security Goals

Securing the Unsecured: State of Cybersecurity 2019 – Part I

What’s It Like for a New CISO?

Android Debugging Tools Also Useful for Compromising Devices, Mining Cryptocurrency

GUEST ESSAY: The case for complying with ISO 27001 — the gold standard of security frameworks

Using Proactive Intelligence Against Adversary Infrastructure

To Achieve Zero Trust Security, Trust The Human Element

Bridge the Gap Between the Security You Have and the Security You Need

As Internet-Connected Medical Devices Multiply, So Do Challenges

7 Cloud Security Predictions for 2022 to Help Organizations Protect Their Data

Democratizing Threat Hunting: How to Make it Happen for Everyone

Redesigning the Security Narrative

Stay Connected