Lenny Zeltser

JUNE 7, 2024

Perhaps you'll glean from these short episodes the insights that will help you chart your own path in cybersecurity. I pursued a degree in computer science and was inspired to enter the cybersecurity field after deploying my first firewall. Cybersecurity is an interdisciplinary field requiring diverse knowledge. Some takeaways.

Penetration Testing 54

Penetration Testing System Administration CISO Firewall 54

Security Boulevard

NOVEMBER 15, 2022

The post BSidesKC 2022 – Joshua Brown’s ‘So, You Want To Be A CISO…?’ ’ appeared first on Security Boulevard. Our sincere thanks to [BSidesKC 2022][1] for publishing their [outstanding conference videos][2] on the organization's [YouTube][3] channel.

CISO 40

CISO Education Information Security Cybersecurity 40

Security Boulevard

JULY 20, 2022

Our sincere thanks to Security BSides San Francisco for publishing their outstanding conference videos on the organization's YouTube channel. The post BSidesSF 2022 – Tom Alcock’s, Caleb Sima’s, Fermin Serna’s, Jessica Ferguson’s ‘CISO Panel Discussion’ appeared first on Security Boulevard.

CISO 40

CISO Education Information Security Cybersecurity 40

SecureWorld News

MAY 19, 2020

When David Sherry became Chief Information Security Officer at Princeton University, he says cybersecurity was done well. "I I don't want you to think security at Princeton was some sort of vast wasteland. In many ways, leading a security mission out of a university is like securing a city. Sherry said.

Cybersecurity 53

Cybersecurity CISO Risk Education 53

Spinone

OCTOBER 19, 2018

Cybersecurity professionals encompass a wide range of job roles including security engineer, cryptographer, ethical hacker, security analyst, vulnerability tester, security consultant, and more. The demand for cybersecurity professionals is expected to rise 53% through 2018.

Cybersecurity 61

Cybersecurity Engineering CISO Architecture 61

Krebs on Security

OCTOBER 20, 2022

In late September 2022, KrebsOnSecurity warned about the proliferation of fake LinkedIn profiles for Chief Information Security Officer (CISO) roles at some of the world’s largest corporations. A follow-up story on Oct. A follow-up story on Oct.

Accountability 282

Accountability Cryptocurrency Scams CISO 282

eSecurity Planet

FEBRUARY 21, 2023

Red, blue and purple teams simulate cyberattacks and incident responses to test an organization’s cybersecurity readiness. Blue team members might be led by a chief information security officer (CISO) or director of security operations, making this team the largest among the three.

Social Engineering 109

Social Engineering Penetration Testing Engineering Risk 109

Security Boulevard

NOVEMBER 15, 2022

While the majority of enterprise IT security managers rely on threat intelligence to reduce cybersecurity risk, many still lack the necessary skills and resources to carry out these initiatives fully, according to a Vulcan Cyber report on threat intelligence adoption trends and challenges.

Information Security 98

Information Security Risk Cybersecurity CISO 98

Spinone

JULY 29, 2020

IT security is one of the most fast-paced industries in the world. million unfilled cybersecurity jobs by 2021. There is clearly a demand for skilled security professionals. So let’s take a look at some of the most common IT security roles and what it takes to fit into them. An estimation shows that there will be 3.5

Penetration Testing 52

Penetration Testing CISO Engineering Software 52

SC Magazine

JANUARY 29, 2021

For example, companies with exposed IoT are more than 50% more likely to have email security issues, according to a new report and blog post from the Cyentia Institute and RiskRecon. But what does that correlation mean for chief information security officers? So, how can CISOs operationalize that kind of information?

IoT 98

IoT Internet Internet CISO 98

SecureWorld News

JUNE 23, 2020

Some of this shift was in place before the global pandemic, but coronavirus is a pivot point, particularly when it comes to managing remote employees and cybersecurity. COVID-19 also revealed and created significant security gaps around Identity and Access Management (IAM). Interested in the rest of this discussion?

Authentication 98

Authentication CISO Cybersecurity Accountability 98

Security Boulevard

OCTOBER 25, 2021

Wouldn’t it be great if you had enough confidence in your information security program that if a criminal gang attacked you, you would be able to defend yourself, keep your business going and notify the appropriate legal authorities and any vendor partners that might be impacted? The post Can you Become Ransomware-Proof?

Ransomware 130

Ransomware Information Security Cyber Risk CISO 130

SC Magazine

FEBRUARY 8, 2021

discussion… The key is how remote access can be implemented securely – with strong authentication mechanisms, access controls, auditing, and session recording.”. There is a justifiable reason for providing remote access,” agreed Mike Hamilton, president and chief information security officer at CI Security and former CISO of Seattle.

CISO 144

CISO Internet Internet Media 144

Security Boulevard

MAY 31, 2023

External attack surface management (EASM) has become a vital strategy for improving cybersecurity, particularly amid recession fears that have stressed the business landscape across several sectors for many months.

Cybersecurity 109

Cybersecurity Penetration Testing CISO Security Awareness 109

SC Magazine

JUNE 24, 2021

The 2017 Department of Health and Human Services Health Care Industry Cybersecurity Task Force report revealed a damning state of affairs: three out of four hospitals don’t have a designated security person and have been forced to get creative with security needs. ” Andrew Neville, F-Secure cybersecurity strategist.

Healthcare 62

Healthcare CISO Cybersecurity Marketing 62

eSecurity Planet

AUGUST 1, 2023

No one can be an expert at everything, and very few organizations can afford to hire experts in every facet of information technology (IT). Yet without a solid foundation of IT fundamentals, even the most capable cybersecurity tools and experts will be undermined.

Cybersecurity 98

Cybersecurity Cloud Migration Firewall Penetration Testing 98

SC Magazine

FEBRUARY 4, 2021

Executives from security company Kaspersky speak at a global partner conference about information security is a key business success factor – a reality that is starting to shine a brighter spotlight on security chiefs. Ian Gavan/Getty Images for Kaspersky Lab ). Our profile is certainly getting higher.

CISO 115

CISO Digital transformation Insurance Risk 115

Spinone

DECEMBER 26, 2018

In this article we will learn how to address and effectively respond to major enterprise cybersecurity threats and provide tips to mitigate IT security risk. Today, c yber security incidents lead to significant damage, alarming organizations of all types and sizes in different geographic locations.

Security Awareness 40

Security Awareness Risk Cyber threats Cyber Risk 40

Spinone

NOVEMBER 21, 2019

The growing risks leave us with the fact that cybersecurity education is not a matter of choice anymore – it’s a matter of necessity. Also, there is a shortage of cybersecurity skills in the world, which makes it a plentiful field to make a career. To protect personal information and feel safe while surfing the internet; 2.

Social Engineering 40

Social Engineering Accountability Phishing Cybersecurity 40

SC Magazine

FEBRUARY 1, 2021

Companies can sometimes struggle to operationalize the constant churn of threat intelligence divvied from the cybersecurity community, whether it be independent researchers or enormous vendors like Microsoft. To wit: most organizations only have the capacity to investigate about 1% of security alerts they receive. Microsoft).

Cyber threats 80

Cyber threats CISO Media Retail 80

CyberSecurity Insiders

SEPTEMBER 3, 2021

These kinds of stories are reported with so much frequency that data-rich companies – and the chief information security officers (CISOs) responsible for their IT network security – have resigned themselves to the certainty that they will become the target of a cybersecurity breach. About CloudCover.

Cybersecurity 40

Cybersecurity Data breaches Threat Detection Technology 40

eSecurity Planet

MAY 12, 2023

ratings correspond to: 9.0 – 10.0 = Critical Severity 7.0 – 8.9 = High Severity 4.0 – 6.9 = Medium Severity 0.1 – 3.9 = Low Severity 0.0 = No Severity (Informational) These scores do not suggest likelihood of exploitation, but do suggest a level of how much an attacker can affect a system or how much effort may be required.

Penetration Testing 109

Penetration Testing Risk Firmware Software 109

The Last Watchdog

JULY 29, 2021

The good news is that there is a very powerful, proven tool that can help companies decipher complex networking security relationships. With Black Hat USA 2021 just around the corner, I had a deep discussion about this with Eric Kedrosky, CISO and Director of Cloud Research at Sonrai Security.

Risk 214

Risk Cloud Migration Digital transformation Software 214

eSecurity Planet

MAY 28, 2021

Last week’s RSA Conference covered a litany of network security vulnerabilities, from developing more robust tokenization policies and to addressing UEFI-based attacks, and non-endpoint attack vectors. Sadly, advancements in cybersecurity extend to malicious actors as much as they do to industry professionals.

Software 119

Software DNS Firmware VPN 119

eSecurity Planet

JULY 22, 2021

. “For more than a year, most corporate offices have stood mostly abandoned as employees continued to work remotely during the COVID-19 pandemic,” Deepen Desai, chief information security officer (CISO) at Zscaler, said in a statement. Remote Work and Security. ” Most Devices Communicate in Plaintext.

IoT 145

IoT Risk Architecture Manufacturing 145

Cisco Security

JUNE 15, 2022

But for cybersecurity professionals, internet-connected medical devices are more likely to be top-of-mind. I tell them no, and here’s why,” said Matthew Clapham , a veteran product cybersecurity specialist. “In That doesn’t mean the risk is zero, noted Christos Sarris , a longtime information security analyst.

Internet 117

Internet Internet Manufacturing Healthcare 117

CyberSecurity Insiders

JUNE 25, 2021

By Shay Siksik, VP Customer Operations and CISO, XM Cyber. We call these things “unknown unknowns” — and they are the most challenging to deal with from the perspective of risk management and cybersecurity. In the context of cybersecurity, this might be user activity, misconfigurations and other vulnerabilities.

Cyber Risk 79

Cyber Risk Risk Penetration Testing Cybersecurity 79

Cisco Security

JUNE 25, 2021

Here at Cisco, we like to celebrate people in cybersecurity industry who are leading the fight against bad actors as well as those creating a secure culture for organizations and the people within them. This month, we interviewed Esmond Kane, CISO of Steward Health Care. I thank you all for keeping our patients safe and secure!

CISO 74

CISO Healthcare InfoSec Computers and Electronics 74

eSecurity Planet

FEBRUARY 8, 2023

Cybersecurity vendors and developers have responded to these growing challenges by evolving vulnerability scanning tools and integrating these solutions as part of an integral, holistic vulnerability management framework.

Penetration Testing 104

Penetration Testing Software IoT Policy Compliance 104

SC Magazine

MAY 13, 2021

On the flip side, just as security leaders should be scouring the open source community for talent, contributors to open source projects should be thinking about how they can use their unique skills to propel their careers forward, according to Bernard Brantley, the brand new chief information security officer at the aforementioned Corelight.

Engineering 76

Engineering Technology Media Data collection 76

SecureWorld News

MAY 29, 2020

Four expert panelists joined us to discuss data security through the lenses of insider threat, third-party risk, and remote work challenges on our series of SecureWorld Web Conferences for 90 minutes of Q&A. Who are the data security panelists? Jadee Hanson, CISO & CIO, Code42. Jake Bernstein, Esq. Arif Hameed, Sr.

Risk 52

Risk Technology Marketing Phishing 52

SC Magazine

APRIL 14, 2021

When we started our identity management journey… we were struggling with defining it,” admitted Greg McCarthy, chief information security officer with the city of Boston. “We Greg McCarthy, CISO of Boston. We wanted… a clear definition [so that] our users would understand what we’re doing. Introducing Identity Management Day.

Passwords 64

Passwords Architecture Password Management Government 64

Security Boulevard

JUNE 18, 2022

We should not be focused so much on the organization’s Return on investment or Return on asset around security spending; we should consider for a moment that with every significant security awareness training, every adaptive control, and every security policy only makes the task “of being hacked” even more expensive for the cybercriminals.

Hacking 83

Hacking CISO Cybersecurity Banking 83

SecureWorld News

OCTOBER 15, 2020

And also reached three significant conclusions, which you can summarize like this: Twitter is to blame for the cyberattack's success, because of inadequate cybersecurity going all the way to the top. New York should increase cybersecurity regulations as a result, especially for social media companies.

Social Engineering 99

Social Engineering Media Scams Financial Services 99

SC Magazine

MAY 14, 2021

Pitched as a response to SolarWinds and the string of high profile breaches, President Joe Biden’s Executive Order on Improving the Nation’s Cybersecurity operates on a variety of levels. So with many cybersecurity experts expressing optimism about the goals of the order, what might the community expect?

Government 60

Government Manufacturing Ransomware Marketing 60

SC Magazine

JULY 6, 2021

A bipartisan bill introduced last week would have the Department of Homeland Security research what most in cybersecurity refer to as “hacking back”: the use of offensive hacking as part of network defense or incident response. Daines co-sponsored a bill for DHS to research using hacking as a response to an incident.

Hacking 100

Hacking Government CISO Ransomware 100