CSO Magazine

SEPTEMBER 1, 2021

The two bad practices are: Use of unsupported (or end-of-life) software. Learn the must-have features in a modern network security architecture. | Get the latest from CSO by signing up for our newsletters. ] Use of known/fixed/default passwords and credentials. To read this article in full, please click here

CSO 127

CSO Risk Architecture Passwords 127

CSO Magazine

JUNE 22, 2022

The term “factory” related to software production might seem bizarre. However, software is produced in a factory construct as well. Software factory” generally refers to the collection of tools, assets and processes required to produce software in an efficient, repeatable and secure manner.

Software 87

Software Architecture Manufacturing 87

CSO Magazine

MAY 11, 2022

As the fallout from the Apache Log4J vulnerabilities earlier this year shows, the biggest risks in enterprise software today are not necessarily with insecure code written directly by in-house software development teams. Modern software today is modular.

Software 119

Software Architecture Engineering Risk 119

CSO Magazine

JULY 14, 2021

This has resulted in large-scale change for remote-access architectures, as well as for cloud and cloud-delivered services. In many cases, there has been an increased adoption of software-as-a-service (SaaS) models. Of course, with these significant changes have come heightened cybersecurity risks.

Cybersecurity 134

Cybersecurity Architecture Risk Software 134

CSO Magazine

FEBRUARY 1, 2023

The two biggest cloud security risks continue to be misconfigurations and vulnerabilities, which are being introduced in greater numbers through software supply chains, according to a report by Sysdig. Almost 90% of granted permissions are not used, which leaves many opportunities for attackers who steal credentials, the report noted.

Risk 110

Risk Architecture Software 110

CyberSecurity Insiders

NOVEMBER 16, 2021

While in past years, InfoSec was previously the focus and CISOs were the norm – we’re moving to a new cybersecurity world order that expands the role of the CISO to a CSO (Chief Security Officer). The transition from hybrid to a software-defined world. The report will be published in January 2022.

Cybersecurity 125

Cybersecurity Energy and Utilities Manufacturing Healthcare 125

CSO Magazine

MAY 4, 2022

The attack surfaces and security protection requirements of software in distributed cloud environments are vastly different from traditional network architectures where applications and data were hosted on enterprise-owned servers in on-premises data centers. To read this article in full, please click here

Architecture 105

Architecture Technology Software 105

eSecurity Planet

OCTOBER 18, 2021

Machine identities now outnumber humans in enterprises, according to Nathanael Coffing, co-founder and CSO of Cloudentity. That uncertainty lets software vulnerabilities and the cybercriminals that exploit them go undetected as they compromise organizations’ information. Zero Trust Architecture.

IoT 119

IoT Risk Architecture CSO 119

SecureWorld News

AUGUST 26, 2020

The Inspector General's report summarizes the IRS and its IT environment like this: "The reliance on legacy systems, aged hardware and software, and use of outdated programming languages poses significant risks, including increased cybersecurity threats and maintenance costs. And how many legacy systems do we have?

Risk 98

Risk Cybersecurity CSO Technology 98

CSO Magazine

APRIL 26, 2022

The Cloud Security Alliance (CSA) recently published the Software-Defined Perimeter (SDP) 2.0 SDP ties closely to the pursuit of implementing a zero-trust architecture, and what follows are the key aspects of SDP 2.0 specification , which is created by their SDP and zero-trust working groups.

CISO 86

CISO Architecture Software 86

CSO Magazine

OCTOBER 4, 2022

These include a new Zero Trust Center of Excellence for validating a zero-trust architecture for commercial enterprises, as well as new security advisory/vulnerability management services and products designed to enhance cybersecurity across hardware, firmware, software, and object storage.

Cybersecurity 79

Cybersecurity Firmware Architecture Technology 79

CSO Magazine

MAY 9, 2023

DigiCert ONE is a cloud-native SaaS platform that secures and centrally manages users, devices, servers, documents, and software. DigiCert and Oracle also have plans to collaborate on further integration into the OCI ecosystem to help joint customers manage their digital trust initiatives in a unified architecture.

Architecture 90

Architecture Marketing Software 90

CSO Magazine

FEBRUARY 1, 2021

Will you only be implementing a software-defined perimeter? This is a critical step since it will drive the bulk of the policy decisions in your architecture. The architecture will define how much of your ZTA is made up of software-defined perimeters, micro-segmentation, or governed by identity.

Architecture 96

Architecture B2B Government Risk 96

Security Boulevard

MAY 9, 2025

Evan Schuman has written a timely article in CSO , articulating many of the risks that both users and employers should avoid. I expect they will now do an internal review with security minded peoplewhich is what should have happened beginning at the architecture phase!

CSO 57

CSO Architecture Risk Marketing 57

SecureWorld News

JUNE 2, 2022

For more than 20 years, Glenn has advised senior executives and built teams throughout the delivery cycle: strategy, architecture, development, quality assurance, deployment, operational support, financials, and project planning. Fun fact: my six years as CSO of Trexin is my first official full-time security role!

Cybersecurity 98

Cybersecurity CSO Telecommunications Technology 98

The Last Watchdog

APRIL 11, 2024

Its founding team comprises leading AI researchers and security veterans who have created security products in broad use across enterprises today, and have 150+ patents across large language models, cloud computing, encryption, scalable architecture, transistors, and hardware design.

CSO 100

CSO Marketing Risk CISO 100

CSO Magazine

APRIL 4, 2022

Devsecops adoption is widely underway, with many organizations looking to break down silos among development, security and operations while leveraging cloud-native architectures to drive secure software outcomes for organizations.

Data breaches 71

Data breaches Architecture Software 71

CSO Magazine

MARCH 2, 2023

However, organizations should properly assess security risks CDEs can introduce and are unique to their architectures, especially since they haven't received much scrutiny from the security community. Cloud-based development environments are popular because they're easier to deploy and maintain than local ones and promise better security.

Architecture 75

Architecture Accountability Malware Risk 75

The Security Ledger

JUNE 29, 2023

A study of the security of IoT devices by Phosphorus Labs , a cybersecurity company, found that 68% of devices studied contained high-risk or critical software vulnerabilities. Boyd Multerer is the CEO of Kry10 And, as software and always on Internet connectivity extend to a greater range of endpoints, the stakes are getting higher.

IoT 52

IoT Internet Internet CSO 52

eSecurity Planet

JUNE 21, 2022

My advice for anybody that asks me which certifications they should get is this: find a certification in a subject that you wish to learn about,” Palo Alto Networks CSO Rick Howard said. “If If you are going to study the subject anyway, you might as well get a certification out of it.”. Also read: How to Get Started in a Cybersecurity Career.

Cybersecurity 120

Cybersecurity Penetration Testing System Administration Cyber Attacks 120

CSO Magazine

OCTOBER 5, 2022

Zero trust is an approach, an architecture, and a journey, not software, hardware, or a service to deploy. This is particularly prevalent in the marketing of multi-factor authentication (MFA) platforms and endpoint protection (EPP)/endpoint detection and response (EDR) point solutions, but it’s by no means limited to them.

Architecture 68

Architecture Marketing Authentication Internet 68

SC Magazine

MAY 1, 2021

With a career spanning two decades as a technology provider to businesses and government agencies, Levine brings a strategic and pragmatic approach to building secure software and cloud services without disrupting product velocity. David Poe is the vice president of data architecture and shared solutions for United Way Worldwide.

Computers and Electronics 126

Computers and Electronics Technology Information Security Education 126

Security Boulevard

DECEMBER 27, 2024

For more information about how CISOs should balance cloud adoption with AI security : A CISO game plan for cloud security (Infoworld) How CISOs can balance the risks and benefits of AI (CSO) The CISO's Guide to AI: Embracing Innovation While Mitigating Risk (SANS Institute) How Will AI Change the CISO Role?

CISO 57

CISO Cybersecurity CSO Data breaches 57

SecureWorld News

OCTOBER 12, 2022

You wouldn't believe the number of services you consume on a daily basis that are sitting on the back of cyber trust software.". Zero Trust architecture allows users full access only to the bare minimum they need to perform their jobs. Through use cases, he spoke about the principle of "never trust, always verify.". "If

CISO 98

CISO Healthcare Government Cybersecurity 98

ForAllSecure

SEPTEMBER 29, 2021

In August 2021, Dr James Ransome -- Veteran CISO, CSO, CPSO and Author -- hosted a fireside chat at FuzzCon 2021. Fagbemi of Resilient Software Security, and Jeff Costlow of Extrahop Networks to discuss the ins and outs of a successful security testing program. Contrary to popular belief the bottleneck is not finding new issues.

CSO 52

CSO Risk CISO Architecture 52

SC Magazine

MAY 3, 2021

said Dan Meacham, vice president of global security and corporate operations and CSO/CISO at film production company Legendary Entertainment. Too many vendors think their software product will address all issues. Informative software and services guides can also help convince prospective buyers of a solution provider’s credibility.

Software 59

Software Engineering Media CISO 59

The Last Watchdog

JULY 8, 2021

Like SolarWinds and Colonial Pipeline, Miami-based software vendor, Kaseya, was a thriving entity humming right along, striving like everyone else to leverage digital agility — while also dodging cybersecurity pitfalls. Dom Glavach, CSO and chief strategist, CyberSN. Conditioning employees to be aware of this threat is key.

Ransomware 257

Ransomware Hacking Architecture Software 257

Thales Cloud Protection & Licensing

MARCH 15, 2022

The directive’s third section, entitled “Modernizing Federal Government Cybersecurity,” requires Federal Civilian Executive Branch (FCEB) agencies to begin moving to a zero trust architecture (ZTA). For instance, it commands each agency head to “develop a plan to implement Zero Trust Architecture” with 60 days of the Order’s release.

Architecture 71

Architecture Government CSO Technology 71

CSO Magazine

MAY 12, 2022

The Biden administration premised the EO on elevating the government's protection and response capabilities across a wide range of digital technology systems and services, from moving the federal government to cloud services and zero-trust architectures to improving software supply chain security.

Cybersecurity 99

Cybersecurity Architecture Government Technology 99

CyberSecurity Insiders

NOVEMBER 12, 2021

Zero Trust’ is a kind of corporate policy that helps in preventing successful data breaches by weeding out the factor of ‘Trust’ from the corporate network architecture. David McKeown, the DoDs CSO, has confirmed the news and added that a CIO will lead the office, followed by a yet to be named senior executive/s.

Data breaches 133

Data breaches CSO Architecture Cyber threats 133