Architecture, CISO, Cybersecurity and Risk

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 3)

The Last Watchdog

DECEMBER 14, 2023

Here’s the final installment of leading technologists sharing their observations about cybersecurity developments in the year that’s coming to a close — and the year to come. Last Watchdog posed two questions: •What should be my biggest takeaway from 2023, with respect to mitigating cyber risks at my organization?

Cybersecurity

Cybersecurity Marketing Encryption CISO

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

The Last Watchdog

JANUARY 8, 2023

Smarter security to me broadly refers to relentlessly focusing on fundamentals while maturing the program, making sure your risk posture aligns with your business strategy. When it comes down to it, C-level goals and CISO initiatives are not all that misaligned. This leads to revenue gains and positive customer outcomes.

Risk

Risk Cybersecurity Technology CISO

Ask These 5 AI Cybersecurity Questions for a More Secure Approach to Adversarial Machine Learning

NetSpi Executives

FEBRUARY 21, 2024

Artificial Intelligence (AI) and Machine Learning (ML) present limitless possibilities for enhancing business processes, but they also expand the potential for malicious actors to exploit security risks. For a comprehensive view of security in ML models, access our white paper, “ The CISO’s Guide to Securing AI/ML Models.”

Artificial Intelligence

Artificial Intelligence Cybersecurity Penetration Testing Architecture

People Skills Outweigh Technical Prowess in the Best Security Leaders

SecureWorld News

OCTOBER 5, 2023

Having helped build out many SecureWorld conferences, I have come to realize—likely to no one's surprise—that the best cybersecurity leaders indeed have some technical prowess, but it is their soft skills that make them exceptional leaders. That's a soft skill that even the most adept CISOs are still trying to master.

CISO

CISO Risk Government Cybersecurity

CISO workshop slides

Notice Bored

AUGUST 5, 2022

Other slides in the deck appear to equate ' security posture ' to vulnerability management and software/systems patching - a rather narrow/specific technical concern for metrics suggested to senior management, although arguably it is a major factor in cybersecurity - or to security strategy.

CISO

CISO Risk Artificial Intelligence Marketing

How Zero Trust helps CIOs and CTOs in Corporate Environments

CyberSecurity Insiders

JUNE 11, 2023

Zero Trust is a cybersecurity framework that can greatly support Chief Information Security Officers (CISOs) and Chief Technology Officers (CTOs) in their roles of securing organizational systems and data. This approach significantly reduces the risk of lateral movement and unauthorized access within the network.

CISO

CISO Technology Architecture Cybersecurity

Unmasking the Cracks of Today’s Cyber Defence

Jane Frankland

OCTOBER 31, 2023

Instead, they’ve become complacent in their defence practices and may be exposing themselves to increased risks without even realising it. Having surveyed over 500 CISOs and ITDMs responsible for cybersecurity on the challenges faced with SOCs, their insights are not to be missed.

CISO

CISO Threat Detection Cyber threats Cybercrime

BSides Knoxville 2023 – Hudson Bush – Enterprise Security Architecture Isn’t Just For Enterprises Anymore

Security Boulevard

JULY 12, 2023

Permalink The post BSides Knoxville 2023 – Hudson Bush – Enterprise Security Architecture Isn’t Just For Enterprises Anymore appeared first on Security Boulevard. Our thanks to BSides Knoxville for publishing their presenter’s outstanding BSides Knoxville 2023 content on the organizations’ YouTube channel.

Architecture

Architecture CISO Education Risk

Sunsetting legacy Cybersecurity Process for Better Optimization and Security Modernization

Security Boulevard

SEPTEMBER 19, 2022

Sunsetting legacy Cybersecurity Process for Better Optimization and Security Modernization. The idea of “if it isn’t broken, don’t fix it” should not apply to cybersecurity. Threat modeling (Risk management, vulnerability, and penetration testing). Risk-based budget modeling alignment with cybersecurity.

Cybersecurity

Cybersecurity Architecture Risk Insurance

A Reactive Cybersecurity Strategy Is No Strategy at All

CyberSecurity Insiders

MAY 18, 2022

A foundational approach to cybersecurity empowers CISOs to see abnormalities and block threats before they do damage. Constantly playing catch-up seems to have become the unfortunate norm in the cybersecurity industry. by David Ratner, CEO, HYAS ( www.hyas.com ). The issue likely comes down to awareness.

DNS

DNS Cybersecurity CISO Social Engineering

SPOTLIGHT: Women in Cybersecurity

McAfee

NOVEMBER 3, 2020

There are new and expanding opportunities for women’s participation in cybersecurity globally as women are present in greater numbers in leadership. Forrester also predicts that the number of women CISOs at Fortune 500 companies will rise to 20 percent in 2019 , compared with 13 percent in 2017. government clients.

Cybersecurity

Cybersecurity Architecture Cloud Migration Retail

“Left of Boom” Cybersecurity: Proactive Cybersecurity in a Time of Increasing Threats and Attacks

Cisco Security

OCTOBER 18, 2021

About 15 years ago, the idiom began to be applied to cybersecurity, where the risk management continuum values the investment in protection to mitigate the negative consequences of a cyber incident. We can never eliminate risk entirely, but we can manage it effectively with “Left of Boom” processes and procedures.

Cybersecurity

Cybersecurity CISO Insurance Risk

Inflation Is Making Cybersecurity Even More Challenging for Leaders

SecureWorld News

OCTOBER 19, 2023

Global inflation can have, and is having, a significant impact on cybersecurity. As prices rise, organizations may be tempted to cut back on cybersecurity spending, making them more vulnerable to cyberattacks. Additionally, inflation can make it more difficult for organizations to keep up with the latest cybersecurity threats.

Cybersecurity

Cybersecurity CISO Education Phishing

Circle Security debuts platform “purpose-built” to tackle credential-driven threats, cloud attacks

CSO Magazine

APRIL 25, 2023

Cybersecurity company Circle Security has emerged from stealth with the release of a new platform “purpose-built” to protect against credential-driven threats and cloud attacks. Cybercriminals are prioritizing stolen credentials for use in attacks, with weak credentials significant contributors to cloud security risks.

CISO

CISO Architecture Data breaches Mobile

New SEI CERT chief and first ever federal CISO: old cybersecurity models have ‘been overcome’

SC Magazine

APRIL 30, 2021

Touhill brings a rich and diverse background to the role, having spent years protecting military computer networks as an Air Force brigadier general and later serving as director of the National Cybersecurity and Communications Integrations Center at the Department of Homeland Security. I’m absolutely thrilled.

CISO

CISO Cybersecurity Artificial Intelligence Government

Five considerations for cloud migration, from the House of Representatives CISO

SC Magazine

MAY 18, 2021

Companies transitioning to the cloud have to think of cybersecurity as more than firewalls, access controls and incident response, and define goals of security that go beyond confidentiality, integrity and availability, said Randy Vickers, chief information security officer for the U.S. Security risk review. Sean Gallup/Getty Images).

Cloud Migration

Cloud Migration CISO Firewall DNS

Why Will CyberSecurity Become the Least of your Concern?

Security Boulevard

JANUARY 24, 2023

Why Will CyberSecurity Become the Least of your Concern? Cybersecurity attacks, including phishing, vishing, smishing, and everything else “ishing,” continues to rise and become even more of a problem for organizations and individuals. The two factors to come into AI conversation and data; are cost and risk.

Cybersecurity

Cybersecurity Artificial Intelligence Digital transformation Phishing

Seven Massachusetts Cities Join Forces to Bolster Cybersecurity Posture

SecureWorld News

MAY 16, 2023

Seven small coastal towns in Massachusetts have formed a partnership to better tackle their IT and cybersecurity needs in the region. We use this type of model for our 'Whole of State' approach to security in North Dakota," says Michael Gregg, CISO for the State of North Dakota.

Cybersecurity

Cybersecurity Insurance Cyber Risk CISO

Nurturing Our Cyber Talent

IT Security Guru

SEPTEMBER 25, 2023

The IT Security Guru caught up with Tarnveer Singh a CISO and finalist in the Security Serious Unsung Heroes Awards 2023 for his thoughts on how to get more professionals involved in the cybersecurity industry: There are many ways we can inspire new cybersecurity professionals to join our industry.

CISO

CISO Identity Theft Cybercrime Cybersecurity

BSides Knoxville 2023 – Patterson Cake – 10 Things I Wish Every CISO Knew Before An Incident: A View From The IR Trenches

Security Boulevard

JULY 14, 2023

Permalink The post BSides Knoxville 2023 – Patterson Cake – 10 Things I Wish Every CISO Knew Before An Incident: A View From The IR Trenches appeared first on Security Boulevard. Our thanks to BSides Knoxville for publishing their presenter’s outstanding BSides Knoxville 2023 content on the organizations’ YouTube channel.

CISO

CISO Architecture Education Risk

Assessing Duplication of Security Controls.

Security Boulevard

JANUARY 9, 2024

Many next-generation technologies became deployed parallel to existing solutions, including zero-trust architecture ( ZTNA ), extended detection and response ( XDR ), and cloud-based multi-factor authentication. Assessing Duplication of Security Controls. Importance of Assessing Duplication of Security Controls.

CISO

CISO Architecture Technology Cyber Attacks

Okta’s Breach Highlights Risk of Putting Crown Jewels in the Cloud

Security Boulevard

MARCH 24, 2022

Identity credentials and source code are critical assets that can create major risks for your organization when exposed by breaches of third-party cloud service companies that provide identity management and software composition analysis. Know the risks of pushing your crown jewels into other services running in the cloud.

Risk

Risk Software Engineering Passwords

Analytics Insight Announces ‘The 10 Most Influential CISOs to Watch in 2021’

CyberSecurity Insiders

OCTOBER 7, 2021

. & HYDERABAD, India–( BUSINESS WIRE )–Analytics Insight has named ‘ The 10 Most Influential CISOs to Watch in 2021 ’ in its October magazine issue. The magazine issue recognizes ten futuristic CISOs who are reimagining the business world and adopting new ways of working. He holds a Ph.D

CISO

CISO Computers and Electronics Information Security Technology

The Bridge to Zero Trust

CyberSecurity Insiders

FEBRUARY 28, 2023

This is why governments and organizations around the world are implementing a zero trust security framework to reduce the risk of attacks while protecting resources and data. Leveling-up your cybersecurity strategy is no longer a wish-list item. The post The Bridge to Zero Trust appeared first on Cybersecurity Insiders.

Architecture

Architecture Authentication Technology CISO

News alert: Simbian launches with $10M to build autonomous, GenAI-powered security platform

The Last Watchdog

APRIL 11, 2024

Its founding team comprises leading AI researchers and security veterans who have created security products in broad use across enterprises today, and have 150+ patents across large language models, cloud computing, encryption, scalable architecture, transistors, and hardware design. billion by 2028.

CSO

CSO Marketing Risk CISO

The Power of Relationships: Executive Buy-In and Security Culture for Bolstering Resilience

Cisco Security

FEBRUARY 6, 2023

” This is the question every CISO asks about every new program. It’s hard to imagine a more vital undertaking for CISOs. And as with all initiatives, CISOs always want to know where to begin. Experienced CISOs know that these factors can make or break security initiatives. “Where do we start?”

CISO

CISO Architecture Mobile Cybersecurity

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

SC Magazine

FEBRUARY 8, 2021

Now, those insurers are poised to drive cybersecurity investment by insisting that organizations meet certain criteria to qualify for coverage. Still unclear is whether this will serve the cybersecurity community well, or distort strategies to protect data and networks. A maturing model. billion in premium.

Insurance

Insurance Cyber Insurance Cybersecurity Government

5 Benefits of Hiring a Virtual Chief Information Security Officer (vCISO)

Security Boulevard

SEPTEMBER 9, 2022

Grim statistics illustrate the urgent need for strong and strategic cybersecurity efforts under the guidance of a seasoned leader. But hiring a full-time chief information security officer (CISO) is not always possible for organizations – nor is it always needed.

Information Security

Information Security CISO Risk Cybersecurity

BSides Knoxville 2023 – Sara Anstey – Educating Your Guesses: How To Quantify Risk and Uncertainty

Security Boulevard

JULY 13, 2023

Permalink The post BSides Knoxville 2023 – Sara Anstey – Educating Your Guesses: How To Quantify Risk and Uncertainty appeared first on Security Boulevard. Our thanks to BSides Knoxville for publishing their presenter’s outstanding BSides Knoxville 2023 content on the organizations’ YouTube channel.

Education

Education Risk Architecture CISO

What is in Your SOC?

Security Boulevard

AUGUST 29, 2022

Organizations developing a Security operations center(SOC) should consider which strategy they should adopt based on available cybersecurity professional resources: offensive or defensive? Are they experienced cyber warriors or recent additions to the cybersecurity field or resources moving over from traditional IT roles?

Risk

Risk Insurance Cybersecurity Engineering

Quantum Computing: A Looming Threat to Organizations and Nation States

SecureWorld News

SEPTEMBER 7, 2023

Quantum computing poses a potential threat to current cybersecurity practices, which are based on encryption algorithms that can be broken by quantum computers. As for the panel presentation at SecureWorld Denver , it features Edgar Acosta, Experienced Cybersecurity Professional (former CISO at DCP Midstream ); Craig Hurter, Sr.

Encryption

Encryption Technology Risk Architecture

Cybersecurity Culture: How Princeton University's Security Team Created It

SecureWorld News

MAY 19, 2020

When David Sherry became Chief Information Security Officer at Princeton University, he says cybersecurity was done well. "I Sherry brought to Princeton his 25 years of technology experience, 12 of which was in higher education as the former CISO at Brown University. How do you assess your current cybersecurity culture?

Cybersecurity

Cybersecurity CISO Risk Education

Build an insider threat management program that involves everyone

SC Magazine

JULY 13, 2021

Today’s columnist, Deborah Watson of Proofpoint, says with so much work conducted via virtual meetings, risk has increased and businesses have to pay more attention to an insider threat management program. Think of Insider Threat Management Programs (ITMPs) as a holistic focus on managing the risks that insiders pose to your corporate assets.

Risk

Risk InfoSec Media Technology

MITRE ResilienCyCon: You Will Be Breached So Be Ready

eSecurity Planet

NOVEMBER 17, 2022

JupiterOne CISO Sounil Yu, creator of a Cyber Defense Matrix adopted by OWASP, noted the concentration of security products in protection and detection and wondered, “Is our industry actually solving the right problems? The general lack of focus on resilience, response and recovery is largely reflected in vendor offerings too.

Backups

Backups CISO Encryption Ransomware

“Future of Vulnerability Management” Podcast Episode 6: The Role Vulnerability Management Plays in Proper Cyber Hygiene

NopSec

SEPTEMBER 23, 2022

Over the past two decades, Lisa has advised Fortune 500 enterprises on data security, privacy and technology risk management, and led many diverse teams at Ally Financial (GMAC), KPMG, and Blue Cross Blue Shield. In this episode, Lisa talks with Tim Brown, the CISO at SolarWinds.

Antivirus

Antivirus CISO Architecture IoT

How to drive a successful, proactive tech refresh

Cisco Security

JANUARY 12, 2022

And one can safely assume that very few CISOs are so flush with team members that they are hunting for something for them to do! Figure 1: Effect of IT architecture traits on tech refresh performance. For a more effective refresh strategy, organizations should adopt a modern, consolidated, cloud-based architecture.

Architecture

Architecture Technology CISO Marketing

BSides Leeds 2023 – Sara Anstey – Educating Your Guesses: How To Quantify Risk And Uncertainty

Security Boulevard

AUGUST 12, 2023

Permalink The post BSides Leeds 2023 – Sara Anstey – Educating Your Guesses: How To Quantify Risk And Uncertainty appeared first on Security Boulevard. Thanks are in order to BSides Leeds for publishing their presenter’s outstanding BSides Leeds 2023 security content on the organizations’ YouTube channel.

Education

Education Risk Architecture CISO

Cracking the Code to Security Resilience: Lessons from the Latest Cisco Security Outcomes Report

Cisco Security

DECEMBER 6, 2022

Two years ago, we asked the question: What actually works in cybersecurity? Not what everyone’s doing—because there are plenty of cybersecurity reports out there that answer that question—but which data-backed practices lead to the outcomes we want to implement in cybersecurity strategies? Achieving security resilience.

Cybersecurity

Cybersecurity CISO Architecture Technology

5 Major Cybersecurity Trends to Know for 2024

eSecurity Planet

DECEMBER 19, 2023

As 2023 draws to an end and cybersecurity budgeting is nearly complete, it helps to consider the year’s events and try to predict next year’s trends. After receiving input from industry experts and doing my own analysis of the year’s driving forces, I identified five major cybersecurity trends. Bottom line: Prepare now based on risk.

Cybersecurity

Cybersecurity CISO Government Technology

Pro-Russian LockBit 3.0 Claims Responsibility for Attack on Japan Port

SecureWorld News

JULY 6, 2023

SecureWorld News obtained comment from cybersecurity vendor experts. It's clear that such attacks not only pose security risks but also can have considerable economic impacts. It's essential that organizations continue to prioritize investment in cybersecurity defenses, training, and response plans. claiming responsibility.

Ransomware

Ransomware Cybercrime Password Management Cybersecurity

The Evolution of SIEM: Where It’s Been and Where It is Going

CyberSecurity Insiders

NOVEMBER 7, 2022

SIEM enables security teams to detect and respond to threats, manage incident response, and minimize risks. billion of total cybersecurity spending and is expected to increase to $6.4 According to Ponemon Institute, the average number of cybersecurity products a company uses is 45. Today, SIEM accounts for approximately $4.4

Marketing

Marketing Unstructured Data Cyber Risk Technology

Is Your Security Stack and Legacy Tech Keeping Pace With Your Business?

CyberSecurity Insiders

JANUARY 17, 2022

By Tyler Farrar, CISO, Exabeam. It makes sense that security budgets should follow to help protect these increasingly diverse and flexible architectures. In most scenarios, CISOs have three choices when considering a move away from legacy tech: 1.Take appeared first on Cybersecurity Insiders. Leaving The Legacy.

Threat Detection

Threat Detection CISO Digital transformation Technology

How to Hire a Cybersecurity Professional

Spinone

OCTOBER 19, 2018

Cybersecurity professionals encompass a wide range of job roles including security engineer, cryptographer, ethical hacker, security analyst, vulnerability tester, security consultant, and more. Broadly speaking, cybersecurity professionals are individuals who have been trained to protect data via various different methods.

Cybersecurity

Cybersecurity Engineering CISO Architecture

GUEST ESSAY: How SIEMS, UEBAs fall short in today’s turbulent threat landscape

The Last Watchdog

JULY 30, 2018

Understanding today’s cybersecurity landscape is complex. This has left many CISOs questioning if today’s incumbent cybersecurity solutions are enough. Categories of cybersecurity solutions, like many categories in IT, have been defined by third parties. They are not on the front lines fighting the cybersecurity battle.

CISO

CISO Cyber Attacks Data collection Cybersecurity

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 3)

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

Trending Sources

Ask These 5 AI Cybersecurity Questions for a More Secure Approach to Adversarial Machine Learning

People Skills Outweigh Technical Prowess in the Best Security Leaders

CISO workshop slides

How Zero Trust helps CIOs and CTOs in Corporate Environments

Unmasking the Cracks of Today’s Cyber Defence

BSides Knoxville 2023 – Hudson Bush – Enterprise Security Architecture Isn’t Just For Enterprises Anymore

Sunsetting legacy Cybersecurity Process for Better Optimization and Security Modernization

A Reactive Cybersecurity Strategy Is No Strategy at All

SPOTLIGHT: Women in Cybersecurity

“Left of Boom” Cybersecurity: Proactive Cybersecurity in a Time of Increasing Threats and Attacks

Inflation Is Making Cybersecurity Even More Challenging for Leaders

Circle Security debuts platform “purpose-built” to tackle credential-driven threats, cloud attacks

New SEI CERT chief and first ever federal CISO: old cybersecurity models have ‘been overcome’

Five considerations for cloud migration, from the House of Representatives CISO

Why Will CyberSecurity Become the Least of your Concern?

Seven Massachusetts Cities Join Forces to Bolster Cybersecurity Posture

Nurturing Our Cyber Talent

BSides Knoxville 2023 – Patterson Cake – 10 Things I Wish Every CISO Knew Before An Incident: A View From The IR Trenches

Assessing Duplication of Security Controls.

Okta’s Breach Highlights Risk of Putting Crown Jewels in the Cloud

Analytics Insight Announces ‘The 10 Most Influential CISOs to Watch in 2021’

The Bridge to Zero Trust

News alert: Simbian launches with $10M to build autonomous, GenAI-powered security platform

The Power of Relationships: Executive Buy-In and Security Culture for Bolstering Resilience

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

5 Benefits of Hiring a Virtual Chief Information Security Officer (vCISO)

BSides Knoxville 2023 – Sara Anstey – Educating Your Guesses: How To Quantify Risk and Uncertainty

What is in Your SOC?

Quantum Computing: A Looming Threat to Organizations and Nation States

Cybersecurity Culture: How Princeton University's Security Team Created It

Build an insider threat management program that involves everyone

MITRE ResilienCyCon: You Will Be Breached So Be Ready

“Future of Vulnerability Management” Podcast Episode 6: The Role Vulnerability Management Plays in Proper Cyber Hygiene

How to drive a successful, proactive tech refresh

BSides Leeds 2023 – Sara Anstey – Educating Your Guesses: How To Quantify Risk And Uncertainty

Cracking the Code to Security Resilience: Lessons from the Latest Cisco Security Outcomes Report

5 Major Cybersecurity Trends to Know for 2024

Pro-Russian LockBit 3.0 Claims Responsibility for Attack on Japan Port

The Evolution of SIEM: Where It’s Been and Where It is Going

Is Your Security Stack and Legacy Tech Keeping Pace With Your Business?

How to Hire a Cybersecurity Professional

GUEST ESSAY: How SIEMS, UEBAs fall short in today’s turbulent threat landscape

Stay Connected