Blog, CISO and Risk - Cyber Security Informer

Navigating PAM Implementation Risks: A Comprehensive Guide for CISOs

Heimadal Security

SEPTEMBER 11, 2023

Chief Information Security Officers (CISOs) bear the responsibility of safeguarding their organizations against an ever-evolving array of cyber threats. However, implementing PAM solutions involves navigating multifaceted risks and intricacies that demand the unwavering attention of these senior security executives.

CISO

CISO Risk Cyber threats Information Security

GUEST ESSAY: Could CISOs be on the verge of disproving the ‘security-as-a-cost-center’ fallacy?

The Last Watchdog

MARCH 13, 2023

So how will this affect chief information security officers (CISOs) and security programs? Given the perennial skills and staffing shortage in security, it’s unlikely that CISOs will be asked to make deep budget or staffing cuts, yet they may not come out of this period unscathed. Related: Attack surface management takes center stage.

CISO

CISO Insurance Cybersecurity Risk

5 Tips to be an awesome CISO

Javvad Malik

NOVEMBER 22, 2021

I’m not a CISO, I never have been and hope I never will be. It seems like a lot of hard work and stress, and if you’re the CISO at a company when you suffer a breach it’s difficult to blame the intern without a mob of security professionals criticising you. Risk Appetite. Make everything about risk appetite.

CISO

CISO Risk Firewall Cybersecurity

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Nine Top of Mind Issues for CISOs Going Into 2023

Cisco Security

JANUARY 10, 2023

As the majority of the global Covid fog finally started lifting in 2022, other events – and their associated risks – started to fill the headspace of C-level execs the world over. In my role, I regularly engage with CISOs in all kinds of sectors, representatives at industry bodies, and experts at analyst houses.

CISO

CISO Insurance Cyber Insurance Phishing

Cybersecurity Insights with Contrast CISO David Lindner | 10/28

Security Boulevard

OCTOBER 28, 2022

CVSS score does not directly relate to the risk to your organization. Please for everyone’s sake, including your developers, produce a better algorithm for managing risk in your organization. See my first insight from this week, find a better algorithm that fits your organization that mirrors your risk profile and tolerance.". .

CISO

CISO Cybersecurity Risk

Why Predator is the ultimate CISO movie

Javvad Malik

OCTOBER 29, 2020

The movie starts on the outskirts of a jungle and the CISO (Arnie) with his team land in their helicopters. This is a perfect metaphor for how a CISO operates in day to day situations. This is a reminder to all security pros that they need to continually keep their skills up to date or risk becoming a dinosaur. Well read on.

CISO

CISO InfoSec Banking Backups

My Top 5 Blogs of the Year

Javvad Malik

NOVEMBER 27, 2020

I saw Cygenta posted their top 5 blogs of the year on Twitter and thought that it was a wonderful idea to rip off / borrow / be inspired by. So, I proudly present, my top 5 read blogs during the course of 2020. From my blog that is. 5: Writing better risk statements Do you struggle to articulate security risks?

InfoSec

InfoSec CISO Risk

Cyber Insurance Reduces Risk: Five Ways to Lower Your Rates

Security Boulevard

APRIL 4, 2024

Suddenly, panic mode kicks in, and you’re transported back to those school days, facing an exam that seemed more daunting than Mount Everest. […] The post Cyber Insurance Reduces Risk: Five Ways to Lower Your Rates appeared first on CISO Global.

Cyber Insurance

Cyber Insurance Insurance Risk CISO

Understanding SEC Cyber Disclosure Rules and CISO Liability

Centraleyes

NOVEMBER 8, 2023

The SEC’s proposed cybersecurity disclosure rule , known as the Proposed Rule for Public Companies (PRPC), has ushered in a wave of concerns and challenges, particularly for CISOs. This tight timeline raises questions about the rules’ practicality and potential impact on CISOs’ liability.

CISO

CISO Cyber Risk Risk Cybersecurity

Valentine’s Day for CISOs: How to Woo Your CEO

Security Boulevard

FEBRUARY 14, 2022

CISO is a high-stakes position, and possibly the most important business relationship/direct report a CEO can have. At Axio, our platform enables companies to perform cyber risk quantification (CRQ), which analyzes the unique risks to.

CISO

CISO Cyber Risk Risk Cyber Attacks

Developing a Risk Management Approach to Cybersecurity

Security Boulevard

MARCH 30, 2021

By now most CISOs understand that focusing your cybersecurity program on regulatory compliance is no longer sufficient. The post Developing a Risk Management Approach to Cybersecurity appeared first on Hyperproof. The post Developing a Risk Management Approach to Cybersecurity appeared first on Security Boulevard.

Risk

Risk Cybersecurity CISO Government

What CISOs Need to Know: Qmulos Shares Top 6 Insights From This Year’s Conferences

Security Boulevard

NOVEMBER 20, 2023

By: Igor Volovich, VP, Compliance Strategy Technology and the threats and vulnerabilities that impact its resilience and trustworthiness keep cybersecurity professionals, especially CISOs, constantly vigilant. The post What CISOs Need to Know: Qmulos Shares Top 6 Insights From This Year’s Conferences appeared first on Security Boulevard.

CISO

CISO Technology Risk Cybersecurity

A Letter to the Modern CISO: Part 3

Security Boulevard

MARCH 13, 2023

Reading Time: 4 minutes Your Cloud Can Be Deleted At Any Moment This blog is the final piece of a three-part series. As jarring as it sounds, your cloud is probably at risk of being deleted at any moment, and you probably have no idea. The series begins here.

CISO

CISO Risk

Navigating the Supply Chain Security Maze with SBOMs

Appknox

OCTOBER 18, 2023

Dive into Appknox's SBOM blog guide. Essential for CISOs & CTOs to elevate supply chain security with unmatched transparency & proactive risk mitigation.

CISO

CISO Risk Software

Is fighting cybercrime a losing battle for today’s CISO?

CyberSecurity Insiders

JANUARY 12, 2022

In this blog, we’ll look at the root causes of concern for today's CISO and share some practical strategies to deter cybercriminals. The CISO role can be an unenviable one. Is the cyber deck stacked against today's CISO? If you own the risks, who owns the elimination? ' is usually swift.

CISO

CISO Cybercrime Risk Healthcare

How CISOs Can Impact Security for All

Cisco Security

APRIL 26, 2021

Insights from our new Advisory CISO, Helen Patton. If there’s anyone who’s been put through their paces in the security industry, it’s Helen Patton , our new Advisory Chief Information Security Officer (CISO). Helen has come to Cisco from The Ohio State University, where she served as CISO for approximately eight years.

CISO

CISO Education Technology Media

Time is Not on Your Side: Why Every CISO needs a Cyber Risk Quantification Strategy before It’s Too Late

Security Boulevard

SEPTEMBER 23, 2021

Cyber Risk Quantification needs to be the strategy driving your cybersecurity roadmap and priorities starting now. Read article > The post Time is Not on Your Side: Why Every CISO needs a Cyber Risk Quantification Strategy before It’s Too Late appeared first on Axio.

Cyber Risk

Cyber Risk CISO Risk Ransomware

Hello, I am CISO Helen. Nice To Meet You :-)

Duo's Security Blog

FEBRUARY 23, 2021

Hello, I am Helen Patton, and I am the newest Advisory CISO at Duo. While I was a CISO at Ohio State we partnered with Duo to implement MFA across our organization. Talk to a Higher Education CISO (note to security product engineers – if you ever want a testbed for your ideas, partner with a university). We don’t care.

CISO

CISO Education Banking Retail

2024 IT Risk and Compliance Benchmark Report Findings: Why Unifying Risk and Compliance Work Is No Longer Optional

Security Boulevard

MARCH 26, 2024

What we found was this: in the rapidly evolving landscape of governance, risk, and compliance (GRC), siloed approaches are becoming increasingly obsolete. The post 2024 IT Risk and Compliance Benchmark Report Findings: Why Unifying Risk and Compliance Work Is No Longer Optional appeared first on Hyperproof. Our fifth annual IT.

Risk

Risk Government CISO

A Conversation with Mark Houpt, CISO of Radware Partner DataBank

Security Boulevard

FEBRUARY 3, 2023

Houpt, the CISO of data center provider and longtime Radware partner DataBank Holdings, Ltd. The post A Conversation with Mark Houpt, CISO of Radware Partner DataBank appeared first on Radware Blog. The post A Conversation with Mark Houpt, CISO of Radware Partner DataBank appeared first on Security Boulevard.

CISO

CISO Cyber threats Cybersecurity Risk

Cyber Risk Management: A Beginner’s Guide

Security Boulevard

MARCH 28, 2024

However, underlying these regulations is a significant emphasis on organizations fully integrating cyber risk management into their operations. Understandably, this has resulted in […] The post Cyber Risk Management: A Beginner’s Guide appeared first on Security Boulevard.

Cyber Risk

Cyber Risk Risk Cybersecurity CISO

People Skills Outweigh Technical Prowess in the Best Security Leaders

SecureWorld News

OCTOBER 5, 2023

Michael Gregg, the CISO for the State of North Dakota, speaks across the country, including keynoting at SecureWorld Detroit on Sep. A recent blog by Frank Domizio titled " The CISO Role: Beyond Technology " explores exactly what I am talking about. That's a soft skill that even the most adept CISOs are still trying to master.

CISO

CISO Risk Government Cybersecurity

Enterprise Risk Management Solutions: Giving Equal Weight to Governance, Risk, and Compliance

Security Boulevard

FEBRUARY 20, 2024

In enterprise risk management (ERM), the “R” in Governance, Risk, and Compliance often commands the spotlight. Let’s shed light on how enterprise risk management solutions can be your guiding light in achieving resilience and lasting success in. However, organizations must assign equal importance to all three components.

Risk

Risk Government CISO

Three Ways CISOs Can Drive More Meaningful Collaboration

Lenny Zeltser

MAY 15, 2023

Today’s CISOs are more than technologists—we strive to make ourselves well-rounded business leaders. In fact, Gartner’s research found that top-performing CISOs regularly meet with three times as many non-IT stakeholders as they do with IT personnel. This way we can more effectively collaborate.

CISO

CISO Marketing Cybersecurity Technology

No Deep AI Security Secrets In This Post!

Anton on Security

MAY 24, 2023

talk to us :-) These are the episodes: EP52 Securing AI with DeepMind CISO EP68 How We Attack AI? What portion of AI-related “badness” (harm, risk, etc) fits within the cybersecurity domain? BTW, if you have anything fun to say about LLM security (easy!) and you actually know what you are talking about (hard!),

Artificial Intelligence

Artificial Intelligence CISO Risk Marketing

7 Things Every CISO Needs to Know About PKI

Security Boulevard

OCTOBER 7, 2022

7 Things Every CISO Needs to Know About PKI. With PKI, CISOs and other information security specialists can implement hardware, software, policies, and procedures to better establish, manage, distribute, implement, and protect digital certificates and key policies. Reduce risk and achieve compliance. Alexa Cardenas.

CISO

CISO Risk Cyber Attacks Technology

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

The Last Watchdog

JANUARY 8, 2023

Smarter security to me broadly refers to relentlessly focusing on fundamentals while maturing the program, making sure your risk posture aligns with your business strategy. When it comes down to it, C-level goals and CISO initiatives are not all that misaligned. This leads to revenue gains and positive customer outcomes.

Risk

Risk Cybersecurity Technology CISO

AI: Risk or Opportunity?

Duo's Security Blog

JULY 11, 2023

Put simply, how do we make sure we’re managing the potential risks while capitalizing on any opportunities? To illustrate the point and prove my dedication to keeping fellow CISOs fully informed, I decided to test the new capability by asking an AI tool to generate an introductory slide for a presentation that I was giving at a conference.

Risk

Risk CISO Government Technology

Unmasking the Cracks of Today’s Cyber Defence

Jane Frankland

OCTOBER 31, 2023

Instead, they’ve become complacent in their defence practices and may be exposing themselves to increased risks without even realising it. Having surveyed over 500 CISOs and ITDMs responsible for cybersecurity on the challenges faced with SOCs, their insights are not to be missed.

CISO

CISO Threat Detection Cyber threats Cybercrime

75% Organizations Struggle with Recurring Cyber Attacks

Security Boulevard

DECEMBER 4, 2023

In a time when advancements in technology rule these days, the constant risk of cyber attacks hangs over businesses all over the world. As part of the ‘Mind of the CISO: Behind the Breach’ project, Trellix, recently performed research.

Cyber Attacks

Cyber Attacks CISO Risk Technology

Anton’s Security Blog Quarterly Q1 2021

Security Boulevard

MARCH 29, 2021

Sometimes great old blog posts are hard to find (especially on Medium …), so I decided to do a periodic list blog with my favorite posts of the past quarter or so. It covers both Anton on Security and my posts from Google Cloud blog [and now our Cloud Security Podcast too!]. Here is my second. Data Security and Threat Models”.

Cloud Migration

Cloud Migration Encryption CISO Threat Detection

How to Customize a Risk Register Template for Your Needs

Security Boulevard

MARCH 12, 2024

A risk register template is like a strategic checklist for your project. The post How to Customize a Risk Register Template for Your Needs appeared first on Hyperproof. The post How to Customize a Risk Register Template for Your Needs appeared first on Security Boulevard.

Risk

Risk Cybersecurity CISO Government

Residual Risk Defined: Expert Strategies for Management and Mitigation

Security Boulevard

FEBRUARY 22, 2024

You may think you’ve covered all your bases, but can modern organizations let their guard down in the face of residual risks? Today’s corporations face increasingly complex risks, including new challenges that can have far-reaching consequences.

Risk

Risk CISO Government

Tackling Cyber Threats: Is AI Cybersecurity Our Only Hope?

Jane Frankland

MAY 8, 2024

This is what I’ll be delving into in this blog, where I’ll be exploring how these two fields are intersecting and what that means for our digital landscape. This not only frees up valuable time for security professionals to focus on more complex tasks but also reduces the risk of human error.

Cyber threats

Cyber threats Cybersecurity Artificial Intelligence CISO

Managing Generative AI Risk and Meeting M-24-10 Mandates on Monitoring & Evaluation

Security Boulevard

APRIL 29, 2024

In addition to pre-deployment […] The post Managing Generative AI Risk and Meeting M-24-10 Mandates on Monitoring & Evaluation appeared first on Security Boulevard. Conduct ongoing monitoring.

Artificial Intelligence

Artificial Intelligence Risk CISO Government

Okta’s Breach Highlights Risk of Putting Crown Jewels in the Cloud

Security Boulevard

MARCH 24, 2022

Identity credentials and source code are critical assets that can create major risks for your organization when exposed by breaches of third-party cloud service companies that provide identity management and software composition analysis. Know the risks of pushing your crown jewels into other services running in the cloud.

Risk

Risk Software Engineering Passwords

GUEST ESSAY: Essential cyber hygiene practices all charities must embrace to protect their donors

The Last Watchdog

MARCH 4, 2024

Assess risks. Creating a solid cybersecurity foundation begins with understanding the organization’s risks. A recent study found only 27% of charities undertook risk assessments in 2023 and only 11% said they reviewed risks posed by suppliers. Keep software updated.

Social Engineering

Social Engineering Risk Cybersecurity Authentication

Has 2023 been the year of risk? Updates on our 8 predictions

Security Boulevard

JULY 6, 2023

Read More The post Has 2023 been the year of risk? The post Has 2023 been the year of risk? It’s been about six months since we released our top eight predictions for 2023, which covered everything from. Updates on our 8 predictions appeared first on Hyperproof. Updates on our 8 predictions appeared first on Security Boulevard.

Risk

Risk CISO Government Cybersecurity

How to Relieve Vendor Risk Assessment Headaches (With a Vendor Risk Management Solution)

Security Boulevard

JUNE 7, 2021

The post How to Relieve Vendor Risk Assessment Headaches (With a Vendor Risk Management Solution) appeared first on Hyperproof. The post How to Relieve Vendor Risk Assessment Headaches (With a Vendor Risk Management Solution) appeared first on Security Boulevard. SaaS vendors, cloud infrastructure, Read More.

Risk

Risk CISO Government Cybersecurity

Understanding AI Risk Management – Securing Cloud Services with OWASP LLM Top 10

Security Boulevard

JANUARY 5, 2024

However, the proliferation of AI does not preclude us from considering the new risks it poses. As you may recall, I have been supporting numerous initiatives around AI Risk Management as part of our ATO for […] The post Understanding AI Risk Management – Securing Cloud Services with OWASP LLM Top 10 appeared first on Security Boulevard.

Artificial Intelligence

Artificial Intelligence Risk CISO Government

The CISO’s Three-Point Checklist for Maximizing Cybersecurity ROI

Security Boulevard

SEPTEMBER 15, 2023

In this blog, we present the CISO’s Checklist for Maximizing Cybersecurity ROI, providing essential criteria to navigate this complex terrain effectively. The sheer number of vendors, and solutions […] The post The CISO’s Three-Point Checklist for Maximizing Cybersecurity ROI appeared first on Security Boulevard.

Cybersecurity

Cybersecurity CISO Risk Government

Risk Management Strategy in an Economic Downturn: How to Take a Holistic Approach to GRC

Security Boulevard

FEBRUARY 27, 2024

The post Risk Management Strategy in an Economic Downturn: How to Take a Holistic Approach to GRC appeared first on Hyperproof. The post Risk Management Strategy in an Economic Downturn: How to Take a Holistic Approach to GRC appeared first on Security Boulevard.

Risk

Risk CISO Government

2023 Regulatory Roundup: All the Major Compliance Changes that Happened

Security Boulevard

DECEMBER 15, 2023

Life comes at you fast, and that’s especially true for CISOs grappling with the many compliance risks in cybersecurity. From greater regulatory pressures and heightened privacy standards to increased personal liability, topped off with new rules for artificial intelligence — a lot happened in 2023.

Artificial Intelligence

Artificial Intelligence CISO Risk Cybersecurity

What is Third-Party Risk?

Security Boulevard

APRIL 5, 2021

As if managing your own risk profile isn’t challenging enough today, your organization must concern itself with how. The post What is Third-Party Risk? The post What is Third-Party Risk? appeared first on Hyperproof. appeared first on Security Boulevard.

Risk

Risk CISO Government Cybersecurity

Navigating PAM Implementation Risks: A Comprehensive Guide for CISOs

GUEST ESSAY: Could CISOs be on the verge of disproving the ‘security-as-a-cost-center’ fallacy?

Webinars

Trending Sources

5 Tips to be an awesome CISO

Webinars

Nine Top of Mind Issues for CISOs Going Into 2023

Cybersecurity Insights with Contrast CISO David Lindner | 10/28

Why Predator is the ultimate CISO movie

My Top 5 Blogs of the Year

Cyber Insurance Reduces Risk: Five Ways to Lower Your Rates

Understanding SEC Cyber Disclosure Rules and CISO Liability

Valentine’s Day for CISOs: How to Woo Your CEO

Developing a Risk Management Approach to Cybersecurity

What CISOs Need to Know: Qmulos Shares Top 6 Insights From This Year’s Conferences

A Letter to the Modern CISO: Part 3

Navigating the Supply Chain Security Maze with SBOMs

Is fighting cybercrime a losing battle for today’s CISO?

How CISOs Can Impact Security for All

Time is Not on Your Side: Why Every CISO needs a Cyber Risk Quantification Strategy before It’s Too Late

Hello, I am CISO Helen. Nice To Meet You :-)

2024 IT Risk and Compliance Benchmark Report Findings: Why Unifying Risk and Compliance Work Is No Longer Optional

A Conversation with Mark Houpt, CISO of Radware Partner DataBank

Cyber Risk Management: A Beginner’s Guide

People Skills Outweigh Technical Prowess in the Best Security Leaders

Enterprise Risk Management Solutions: Giving Equal Weight to Governance, Risk, and Compliance

Three Ways CISOs Can Drive More Meaningful Collaboration

No Deep AI Security Secrets In This Post!

7 Things Every CISO Needs to Know About PKI

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

AI: Risk or Opportunity?

Unmasking the Cracks of Today’s Cyber Defence

75% Organizations Struggle with Recurring Cyber Attacks

Anton’s Security Blog Quarterly Q1 2021

How to Customize a Risk Register Template for Your Needs

Residual Risk Defined: Expert Strategies for Management and Mitigation

Tackling Cyber Threats: Is AI Cybersecurity Our Only Hope?

Managing Generative AI Risk and Meeting M-24-10 Mandates on Monitoring & Evaluation

Okta’s Breach Highlights Risk of Putting Crown Jewels in the Cloud

GUEST ESSAY: Essential cyber hygiene practices all charities must embrace to protect their donors

Has 2023 been the year of risk? Updates on our 8 predictions

How to Relieve Vendor Risk Assessment Headaches (With a Vendor Risk Management Solution)

Understanding AI Risk Management – Securing Cloud Services with OWASP LLM Top 10

The CISO’s Three-Point Checklist for Maximizing Cybersecurity ROI

Risk Management Strategy in an Economic Downturn: How to Take a Holistic Approach to GRC

2023 Regulatory Roundup: All the Major Compliance Changes that Happened

What is Third-Party Risk?

Stay Connected