Security Boulevard

DECEMBER 30, 2024

In this post, we look at the enforcement actions the SEC has taken and what public company CISOs should do to stay in compliance. Check Point Software Technologies Ltd. Exposure management can help meet the SEC requirements So what can a CISO do about this? For example, in October 2024, the SEC fined Unisys Corp.,

Cybersecurity 85

Cybersecurity Cyber Risk CISO Risk 85

The Last Watchdog

JANUARY 10, 2022

Planning required processes and security components when initially building your architecture. software) — the better it will be able to de-risk the personal data it is responsible for. Helping ensure data privacy. Unique IDs. It is also possible to obfuscate personal data by replacing it with unique identifiers (UID).

Risk 240

Risk Encryption Data privacy CISO 240

NetSpi Executives

MARCH 25, 2025

Become the Influence A NetSPI podcast, Agent of Influence features experts in the cybersecurity field as they engage in conversation with Nabil Hannan, NetSPI Field CISO and podcast host, about the life and challenges as a leader in cybersecurity. Join Nabil Hannan, NetSPI Field CISO, on the Agent of Influence podcast.

Cybersecurity 52

Cybersecurity CISO Penetration Testing Financial Services 52

SC Magazine

APRIL 30, 2021

Touhill : The Software Engineering Institute and CERT are a world leader in cybersecurity and if you go back and look at the history and the lineage of the organizations, I’ve been engaged with [them] since their inception. One, we work to modernize software development and acquisition, because code is fueling society.

CISO 109

CISO Cybersecurity Artificial Intelligence Government 109

The Last Watchdog

FEBRUARY 26, 2023

The most recent updates came in October 2022, when ISO 27001 was amended with enhanced focus on the software development lifecycle (SDLC). These updates address the growing risk to application security (AppSec), and so they’re critically important for organizations to understand and implement in their IT systems ASAP.

Cyber threats 203

Cyber threats Software Risk CISO 203

SC Magazine

MAY 18, 2021

“It’s about how you can do your business mission” in a different environment, with its own requirements for protecting data, Vickers said during his talk at the RSA Show’s Cloud Security Alliance CISO Summit. Google, Amazon Web Service, and Oracle are very large companies that have a deep bench for software development.

Cloud Migration 87

Cloud Migration CISO Firewall Risk 87

CSO Magazine

APRIL 26, 2022

The Cloud Security Alliance (CSA) recently published the Software-Defined Perimeter (SDP) 2.0 SDP ties closely to the pursuit of implementing a zero-trust architecture, and what follows are the key aspects of SDP 2.0 in zero-trust environments that CISOs and other security leaders need to know.

CISO 86

CISO Architecture Software 86

The Last Watchdog

JANUARY 8, 2023

When it comes down to it, C-level goals and CISO initiatives are not all that misaligned. The need for reset and oversight is so great that a new class of technology is emerging to give organizations a better grip on the digital sprawl that’s come to define modern-day enterprise architecture.

Risk 214

Risk Cybersecurity Technology CISO 214

Notice Bored

AUGUST 5, 2022

Other slides in the deck appear to equate ' security posture ' to vulnerability management and software/systems patching - a rather narrow/specific technical concern for metrics suggested to senior management, although arguably it is a major factor in cybersecurity - or to security strategy.

CISO 63

CISO Risk Artificial Intelligence Marketing 63

CyberSecurity Insiders

MAY 18, 2022

A foundational approach to cybersecurity empowers CISOs to see abnormalities and block threats before they do damage. By increasing visibility into DNS traffic, CISOs can detect, block, and respond to incidents more quickly as well as use this data to institute new controls and increase overall resiliency.

DNS 140

DNS Cybersecurity CISO Social Engineering 140

Security Boulevard

JULY 23, 2023

Permalink The post BSides Sofia 2023 – Alexandar Andonov – The Secure Software Supply Chain Function S3C appeared first on Security Boulevard. Our thanks to BSides Sofia for publishing their presenter’s tremendous BSides Sofia 2023 content on the organizations’ YouTube channel.

Software 98

Software Architecture CISO Education 98

The Last Watchdog

JULY 30, 2018

This has left many CISOs questioning if today’s incumbent cybersecurity solutions are enough. This has left many CISOs to questions whether or not today’s cybersecurity categories are still relevant. It requires a massive architecture overhaul. CISO need to change the conversation. Categorizing solutions.

CISO 140

CISO Cyber Attacks Data collection Cybersecurity 140

Cisco Security

OCTOBER 18, 2021

The primary job of the Chief Information Security Officer (CISO) is to exercise continuous diligence in reducing risk, within the risk appetite and risk tolerance of the organization, so that the likelihood of a boom is low, and the corresponding magnitude of harm is limited. Some “Left of Boom” Processes. Frameworks.

Cybersecurity 142

Cybersecurity CISO Insurance Risk 142

Security Boulevard

MAY 20, 2025

That urgency was echoed powerfully in JPMorgan CISO Patrick Opets open letter to SaaS vendors. SaaS Is the New Enterprise Perimeter Weve long known our software supply chains carry risk. We must modernize security architecture to optimize SaaS integration and minimize risk. That letter stuck with me. And we need to.

Risk 52

Risk CISO Architecture Firewall 52

CyberSecurity Insiders

DECEMBER 18, 2022

A look ahead to 2023 we can expect to see changes in MFA, continued Hactivism from non-state actors, CISOs lean in on more proactive security and crypto-jackers will get more savvy. 5 – Recession requires CISOs to get frank with the board about proactive security. By Marcus Fowler, CEO of Darktrace Federal.

Cybersecurity 125

Cybersecurity CISO Insurance Ransomware 125

SC Magazine

FEBRUARY 11, 2021

The new partnership with Silicon Valley CISO Investments will include an additional $250,000, but perhaps more importantly, support and guidance from the more than 55 practicing chief information security officers that make up SVCI. The post Startup Traceable turns to CISO investors for next phase of growth appeared first on SC Media.

CISO 59

CISO Marketing Media Software 59

Lenny Zeltser

OCTOBER 5, 2023

As the CISO at a tech company, my responsibilities include empowering our software engineering teams to maintain a strong security posture of our products. Understand the Teams' Motivations To collaborate with software teams, first understand their worldview. What motivates them?

Engineering 66

Engineering Software Risk CISO 66

CyberSecurity Insiders

NOVEMBER 16, 2021

While in past years, InfoSec was previously the focus and CISOs were the norm – we’re moving to a new cybersecurity world order that expands the role of the CISO to a CSO (Chief Security Officer). The transition from hybrid to a software-defined world. The report will be published in January 2022.

Cybersecurity 125

Cybersecurity Energy and Utilities Manufacturing Healthcare 125

SecureWorld News

APRIL 8, 2021

And the developers say this chip could end the "patch and pray" strategy that keeps security teams running in circles and lower the stress level of CISOs in the process. Undefined semantics are nooks and crannies of the computing architecture—for example the location, format, and content of program code.

CISO 130

CISO Encryption Engineering Telecommunications 130

Security Boulevard

MAY 2, 2025

Check out best practices, recommendations and insights on protecting your cloud environments, OT systems, software development processes and more. Maintain a comprehensive asset inventory, and keep software updated and patched. SBOMs purpose is to provide granular visibility into all software components in your environment.

Cybersecurity 52

Cybersecurity Software Cyber Risk Risk 52

eSecurity Planet

NOVEMBER 17, 2022

JupiterOne CISO Sounil Yu, creator of a Cyber Defense Matrix adopted by OWASP, noted the concentration of security products in protection and detection and wondered, “Is our industry actually solving the right problems? Read next: Best Incident Response Tools and Software.

Backups 135

Backups CISO Encryption Ransomware 135

The Last Watchdog

DECEMBER 8, 2020

And so this led to the emergence of software-defined wide-area networking, or SD-WAN. SD-WAN arose in 2014 as a way to use software to manage traffic moving across large networks, especially to-and-from geographically dispersed branches. But MPLS has proven to be expensive and inflexible.

Firewall 213

Firewall Digital transformation Internet Internet 213

Cisco Security

APRIL 19, 2022

In 2017, Sandworm infiltrated Ukrainian accounting software MeDoc and hijacked the company’s update mechanism which resulted in malicious software being introduced to copies of the MeDoc software used by its customers. Cisco Secure Endpoint and MITRE ATT&CK: Why it matters to CISOs right now. Scenario 2: Sandworm.

Software 142

Software CISO Architecture Healthcare 142

Veracode Security

JANUARY 7, 2021

Over the past several years, there have been many changes to software development and software security, including new and enhanced application security (AppSec) scans and architectural shifts like serverless functions and microservices. How to determine and prove that development teams are adopting software security practices.

Software 98

Software CISO Architecture Data breaches 98

SC Magazine

JANUARY 29, 2021

If it’s an accident, then geez, you’re not managing your environment and you don’t have effective security architecture to prevent exposure of assets. So, how can CISOs operationalize that kind of information? As former CISO, I know that you have you have to have really thought through your systems and configurations.

IoT 98

IoT Internet Internet CISO 98

CyberSecurity Insiders

JANUARY 19, 2022

Seven Cloud Security Predictions CISOs Can Use in 2022. In addition, many companies use multiple providers, which can easily result in inconsistent security processes being applied across cloud infrastructure, storage, software as a service applications, and other assets. Now, it’s time to right the ship.

CISO 126

CISO Data breaches Artificial Intelligence Digital transformation 126

The Last Watchdog

JUNE 27, 2024

Infinidat’s InfiniSafe ACP enables enterprises to easily integrate with their Security Operations Centers (SOC), Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR) cybersecurity software applications, and simple syslog functions for less complex environments. improvement in performance.

Cyber threats 113

Cyber threats CISO Backups Technology 113

eSecurity Planet

NOVEMBER 4, 2022

The two are addressing major issues like sprawling cloud and software supply chain risks, showing that good companies addressing real needs are having little trouble finding investors. Keep in mind that the typical CISO manages about 75 security tools and applications. Versa’s SASE Story. Customers certainly want more simplicity.

Cybersecurity 130

Cybersecurity Marketing Risk Architecture 130

CyberSecurity Insiders

OCTOBER 7, 2021

. & HYDERABAD, India–( BUSINESS WIRE )–Analytics Insight has named ‘ The 10 Most Influential CISOs to Watch in 2021 ’ in its October magazine issue. The magazine issue recognizes ten futuristic CISOs who are reimagining the business world and adopting new ways of working. He holds a Ph.D

CISO 40

CISO Computers and Electronics Information Security Technology 40

Security Boulevard

MARCH 24, 2022

Identity credentials and source code are critical assets that can create major risks for your organization when exposed by breaches of third-party cloud service companies that provide identity management and software composition analysis. Know the risks of pushing your crown jewels into other services running in the cloud.

Risk 122

Risk Software Engineering Passwords 122

Cisco Security

APRIL 20, 2021

Cisco Secure Endpoint and MITRE ATT&CK: Why it matters to CISOs right now. Cisco Secure Endpoint is security that works for your secure remote worker, SASE, XDR, and Zero Trust architecture. Securing your endpoints has never been more critical and you need endpoint security you can trust.

Financial Services 135

Financial Services CISO Architecture Malware 135

CyberSecurity Insiders

NOVEMBER 8, 2021

Rolled out earlier this year, the offering combines AT&T’s software-defined networking (SD-WAN) management with Fortinet network and security functions that are delivered in a SASE framework—all packaged into a service that’s managed by AT&T Cybersecurity experts.

Cybersecurity 101

Cybersecurity Digital transformation Architecture Technology 101

eSecurity Planet

SEPTEMBER 1, 2021

SAP National Security Services (NS2) CISO Ted Wagner told eSecurityPlanet that network slicing “adds complexity, which may lend itself to insecure implementation. To be successful, an attacker must gain access to the 5G Service Based Architecture. 5G Systems Architecture. So how does NFV relate to 5G? Policy and Standards.

Risk 137

Risk Cybersecurity IoT Wireless 137

Security Boulevard

SEPTEMBER 19, 2022

Some organizations are impacted by snap decisions to deploy a quick fix answer to new security requirements or develop new software. A critical part of achieving balanced security is for the organization to execute an architecture optimization. This action often is referred to as “technical debt.”

Cybersecurity 98

Cybersecurity Architecture Risk Insurance 98

Security Boulevard

JANUARY 9, 2025

Organizations have respondedand must continue toby adopting AI-powered cybersecurity tools and implementing zero trust architecture as a critical countermeasure. Once inside, they will use legitimate credentials and access to do real damage, especially if the organization uses legacy architecture involving firewalls and VPNs.

Social Engineering 99

Social Engineering Architecture Phishing Risk 99

Thales Cloud Protection & Licensing

MARCH 31, 2025

Microsofts Majorana 1 Breakthrough: A CISOs Roadmap to Post-Quantum Security madhav Tue, 04/01/2025 - 06:42 Imagine a future where a powerful quantum computer cracks the codes protecting bank transactions, secure exchanges, and sensitive documents like medical records in minutes. Investing in Crypto-Agile Architectures 4. Why Act Now?

CISO 62

CISO Encryption Architecture Digital transformation 62

SecureWorld News

OCTOBER 12, 2022

It was apropos that Ray Yepes, newly appointed CISO for the State of Colorado, opened the 2022 SecureWorld Denver conference on October 6th. Ray Yepes, CISO for the State of Colorado, presents the opening keynote. Down the hall, Brenden Smith, CISO at FirstBank, presented "Revisiting Deception Systems: Enterprise Use Cases."

CISO 98

CISO Healthcare Government Cybersecurity 98