CISO, Cybersecurity, Risk and Security Awareness

Author’s Q&A: It’s high time for CISOs to start leading strategically — or risk being scapegoated

The Last Watchdog

MAY 13, 2025

The cybersecurity landscape has never moved faster and the people tasked with defending it have never felt more exposed. This is the backdrop for The CISO on the Razors Edge , a new book by Steve Tout , longtime identity strategist and advisor to Fortune 500 security leaders. Its not a people problem. Its a structural one.

CISO

CISO Risk Cybersecurity Government

The Risk-Conscious, Security-Aware Culture: The Forgotten Critical Security Control

Cisco Security

JULY 12, 2021

Chief Information Security Officers (CISOs) across the Global 2000 and Fortune 1000 are obsessed with protecting the workforce endpoints as critical vulnerabilities in the cybersecurity and risk management posture of their enterprises.

Security Awareness

Security Awareness Risk CISO Cybersecurity

The Biggest Cybersecurity Risk We're Ignoring—And No, It's Not AI

SecureWorld News

FEBRUARY 28, 2025

But amidst all these flashy, futuristic threats, the biggest cybersecurity risk remains the same as it's always beenhumans. Cybersecurity Through Human Behaviour just confirmed what most of us in the field already know: Cybersecurity isn't just a tech problemit's a behavior problem. Nobody rewards good security behavior.

Cybersecurity

Cybersecurity Risk Social Engineering Phishing

What Maslow’s Hierarchy of Needs Reveals About Cybersecurity Flaws

Jane Frankland

APRIL 18, 2025

This is the state of cybersecurity today. Organisations invest heavily in governance, risk, and compliance (GRC) and risk management efforts while neglecting foundational elements like leadership and culture. To break free from this cycle, we must rethink how we approach cybersecurity. The result?

Cybersecurity

Cybersecurity Technology Risk Security Awareness

Your Security Awareness Training Isn’t Working

Security Boulevard

MAY 11, 2021

Humans are the biggest risk to an organization’s cybersecurity posture, and it might be a bigger risk than many realize. The post Your Security Awareness Training Isn’t Working appeared first on Security Boulevard.

Security Awareness

Security Awareness Data breaches Risk Cybersecurity

CISOs Brace for LLM-Powered Attacks: Key Strategies to Stay Ahead

Security Boulevard

FEBRUARY 12, 2025

For chief information security officers (CISOs), understanding and mitigating the security risks associated with LLMs is paramount. The post CISOs Brace for LLM-Powered Attacks: Key Strategies to Stay Ahead appeared first on Security Boulevard.

CISO

CISO Information Security Risk Security Awareness

Should the CISO Report to the CIO?

Cisco Security

JULY 1, 2021

The Chief Information Security Officer (CISO) is the organization’s senior executive in charge of the cybersecurity and the information technology risk management posture of the enterprise. federal government in particular, the CISO reports to the Chief Information Officer (CIO).

CISO

CISO Technology Risk Government

CISO Stories Podcast: No Insider Cybersecurity Risk? Guess Again!

Security Boulevard

JUNE 9, 2021

The post CISO Stories Podcast: No Insider Cybersecurity Risk? appeared first on Security Boulevard. What happens when an employee decides to leave the organization and start their own business – but with your Intellectual property or customer lists? . Guess Again!

CISO

CISO Risk Cybersecurity Security Awareness

Cybersecurity Insights with Contrast CISO David Lindner | 8/30/24

Security Boulevard

AUGUST 30, 2024

This poses a significant risk to businesses, as these individuals can gain access to sensitive information and intellectual property. The post Cybersecurity Insights with Contrast CISO David Lindner | 8/30/24 appeared first on Security Boulevard.

CISO

CISO Cybersecurity Authentication Security Awareness

A Chief Security Concern for Executive Teams

Krebs on Security

DECEMBER 18, 2018

KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Nobody’s saying these companies don’t have CISOs and/or CSOs and CTOs in their employ.

CSO

CSO CISO Marketing Banking

Nine Top of Mind Issues for CISOs Going Into 2023

Cisco Security

JANUARY 10, 2023

As the majority of the global Covid fog finally started lifting in 2022, other events – and their associated risks – started to fill the headspace of C-level execs the world over. In my role, I regularly engage with CISOs in all kinds of sectors, representatives at industry bodies, and experts at analyst houses.

CISO

CISO Insurance Cyber Insurance Phishing

AI Integration, Budget Pressures Challenge CISOs

Security Boulevard

AUGUST 12, 2024

Chief information security officers (CISOs) are struggling to manage cybersecurity effectively due to a lack of strategic support from other C-suite executives, according to a LevelBlue survey of 1,050 C-suite and senior executives.

CISO

CISO Information Security Cybersecurity Security Awareness

Introducing our new Senior CISO Advisor, Bruce Brody

Cisco Security

JUNE 16, 2021

I’m delighted to announce the latest member of my CISO Advisors team, Bruce Brody. Bruce joins us with three decades of proven security leadership under his belt. He was the first executive-level CISO at the Departments of Veterans Affairs and Energy, and has had more recent success as CISO at Cubic Corporation and DRS Technologies.

CISO

CISO Security Awareness Risk Cybersecurity

Survey Sees Modern CISOs Becoming More Comfortable With Risk

Security Boulevard

JULY 10, 2024

A survey of 1,031 CISOs finds that cybersecurity leaders are paradoxically getting more comfortable with current levels of risks at a time when CEOs may be finally becoming more cautious. The post Survey Sees Modern CISOs Becoming More Comfortable With Risk appeared first on Security Boulevard.

CISO

CISO Risk Cybersecurity Security Awareness

Time suck: Security awareness pros are getting sidetracked from core functions

SC Magazine

MARCH 29, 2021

“Awareness programs are great for a number of reasons, but they do not take priority over the daily fire drills that most security teams face,” said Brian Johnson, chief security officer at Armorblox. Just under 40 percent of respondents said they spent only 10% of their time on security awareness.

Security Awareness

Security Awareness InfoSec CISO Media

Verizon's 2025 DBIR: Threats Are Faster, Smarter, and More Personal

SecureWorld News

APRIL 23, 2025

Manufacturing: IP theft and ransomware are top risks; OT/ICS systems still lag in basic controls. The 2025 DBIR is a call to arms for CISOs and security leaders to rethink how they detect, respond to, and recover from breaches. We asked experts at cybersecurity vendors for their comments and additional insights.

Ransomware

Ransomware CISO Backups Risk

2021 Security Outcomes Study: Stress Relief for CISOs

Cisco Security

FEBRUARY 19, 2021

This affected all levels of the cybersecurity landscape, and it has had a particularly broad impact for those in the C-Suite, specifically, the Chief Information Security Officer (CISO). So, what is an already over-stressed CISO to do? Building a Cybersecurity Platform for the Future. Cybersecurity strategy.

CISO

CISO Technology Digital transformation Cybersecurity

World Backup Day: A Clarion Call for Cyber Resilience

SecureWorld News

MARCH 31, 2025

Each year on March 31st, just before April Fool's Day, cybersecurity professionals, IT teams, and business leaders alike are reminded of a simple truth: data loss isn't a matter of if, but when. To add more security, they should also be automated and encrypted to provide data privacy."

Backups

Backups Mobile Encryption CISO

Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk

Security Boulevard

FEBRUARY 6, 2024

The post Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk appeared first on Security Boulevard. By aligning priorities into a shared game plan, HR and IT can finally set their organizations up to defend against modern cyberthreats.

Risk

Risk Cybersecurity Social Engineering Cyber Risk

Different Types of CISOs, Diverse Missions

Security Boulevard

NOVEMBER 30, 2023

There are a range of distinct roles/missions that hold the CISO title. The post Different Types of CISOs, Diverse Missions appeared first on Security Boulevard. Their ultimate goals are similar, but how they are positioned to do that varies.

CISO

CISO Security Awareness Risk Government

CISO’s Guide to Presenting Cybersecurity to Board Directors

CyberSecurity Insiders

MARCH 30, 2023

Seasoned CISOs/CSOs understand the importance of effectively communicating cyber risk and the need for investment in cybersecurity defense to the board of directors. To ensure cybersecurity becomes a strategic part of the corporate culture, it is crucial for CISOs to present the topic in a clear, concise, and compelling manner.

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

What the Charges Against the SolarWinds CISO Mean for Security in 2024

Security Boulevard

JANUARY 29, 2024

The indictment of the SolarWinds CISO by the SEC served as a harsh wake-up call to the corporate world. The post What the Charges Against the SolarWinds CISO Mean for Security in 2024 appeared first on Security Boulevard.

CISO

CISO Security Awareness Risk Government

Cloud Security Risk Prioritization is Broken. Here’s How to Fix It.

Security Boulevard

SEPTEMBER 23, 2024

Understanding business risk empowers CISOs to provide a comprehensive picture of the business’ cloud security posture, which will help teams detect, prioritize and remediate threats to stop cloud and app-related breaches. The post Cloud Security Risk Prioritization is Broken. Here’s How to Fix It.

Risk

Risk CISO Security Awareness Cybersecurity

GUEST ESSAY: Now more than ever, companies need to proactively promote family Online Safety

The Last Watchdog

FEBRUARY 15, 2021

Cybersecurity training has steadily gained traction in corporate settings over the past decade, and rightfully so. In response to continuing waves of data breaches and network disruptions, companies have made a concerted effort and poured substantial resources into promoting data security awareness among employees, suppliers and clients.

Education

Education CISO Security Awareness Cybersecurity

Best Cybersecurity Awareness Training for Employees in 2021

eSecurity Planet

JUNE 17, 2021

Employee cybersecurity training has come a long way in the last few years. Back in the day, security training was largely reserved for IT security specialists and then extended to include IT personnel in general. Security awareness training for employees has come into its own of late. Elevate Security.

Cybersecurity

Cybersecurity Phishing Security Awareness Education

Cybersecurity CEO: Security Awareness is An Ongoing Commitment

Herjavec Group

OCTOBER 27, 2020

If you’re part of the cybersecurity community, then you know that October is Cybersecurity Awareness Month ( CSAM ), initially launched by the National Cyber Security Alliance (NCSA) and the U.S. Department of Homeland Security (DHS) in October 2004. Cyber Primer for the C-Suite.

Security Awareness

Security Awareness Cybersecurity Cybercrime Education

Hi-5 With A CISO Mário Fernandes, Banco BPI

Security Boulevard

MAY 30, 2021

Mário João Fernandes, born and raised in Mozambique, has been working in the banking sector for 29 years and has been fulfilling dedicated security roles in the cybersecurity space for over 11 years. The post Hi-5 With A CISO <br><br> Mário Fernandes, Banco BPI appeared first on CybeReady.

CISO

CISO InfoSec Banking Cybersecurity

Innovation at the Expense of Cybersecurity? No More!

Security Boulevard

FEBRUARY 24, 2023

Earlier this month, Jen Easterly and Eric Goldstein of the Cybersecurity and Infrastructure Security Agency (CISA) at the Department of Homeland Security signaled a major shift in the federal government’s approach to cybersecurity risk and responsibility. The post Innovation at the Expense of Cybersecurity?

Cybersecurity

Cybersecurity Risk CISO Security Awareness

3 Metrics to Gauge Cybersecurity Program Health

Security Boulevard

AUGUST 12, 2021

That’s what it can be like when security teams share metrics and data with their organization’s board of directors.

Cybersecurity

Cybersecurity CISO Security Awareness Risk

New data could help CISOs quantify the value of a strong security culture

SC Magazine

FEBRUARY 26, 2021

Building a security awareness training program to develop a strong infosec culture requires time and money, and chief information security officers frequently try to make a case for such an investment by citing return on investment and other metrics of success. . Huisman also had some advice for CISOs trying to make a case.

CISO

CISO Security Awareness Phishing InfoSec

Cybersecurity Insights with Contrast CISO David Lindner | 11/8/24

Security Boulevard

NOVEMBER 8, 2024

This ensures comprehensive security coverage, faster incident response and reduced complexity by combining the strengths of both SIEM and ADR. The post Cybersecurity Insights with Contrast CISO David Lindner | 11/8/24 appeared first on Security Boulevard.

CISO

CISO Cybersecurity Security Awareness Risk

Survey Reveals Limits of CISOs’ Management Experience

Security Boulevard

DECEMBER 13, 2022

A global survey from recruitment firm Marlin Hawk that polled 470 CISOs at organizations with more than 10,000 employees found nearly half (45%) have been in their current role for two years or less. The post Survey Reveals Limits of CISOs’ Management Experience appeared first on Security Boulevard.

CISO

CISO Security Awareness Risk Government

The Key to Cybersecurity is an Educated Workforce

Security Boulevard

MAY 4, 2021

The United Kingdom's National Cyber Security Centre (NCSC) handled a record number of cybersecurity incidents over the last year, a 20% increase in cases handled the year before. With the increasing number and more innovative nature of cyber attacks, businesses of all sizes must prioritise cybersecurity.

Education

Education Cybersecurity Cyber Attacks Data breaches

People Skills Outweigh Technical Prowess in the Best Security Leaders

SecureWorld News

OCTOBER 5, 2023

Having helped build out many SecureWorld conferences, I have come to realize—likely to no one's surprise—that the best cybersecurity leaders indeed have some technical prowess, but it is their soft skills that make them exceptional leaders. That's a soft skill that even the most adept CISOs are still trying to master.

CISO

CISO Risk Government Architecture

Measuring Security Risk vs. Success

Security Boulevard

FEBRUARY 15, 2021

Oftentimes, how organizations measure risk determines how they will prioritize investments. For IT professionals, building a set of metrics for security needs is often accompanied by feelings of anxiety, because if measurements look at the wrong data or indicators, they may lead to a false sense of security.

Risk

Risk CISO Security Awareness Mobile

Inflation Is Making Cybersecurity Even More Challenging for Leaders

SecureWorld News

OCTOBER 19, 2023

Global inflation can have, and is having, a significant impact on cybersecurity. As prices rise, organizations may be tempted to cut back on cybersecurity spending, making them more vulnerable to cyberattacks. Additionally, inflation can make it more difficult for organizations to keep up with the latest cybersecurity threats.

Cybersecurity

Cybersecurity CISO Education Phishing

Sisense Hacked: CISA Warns Customers at Risk

Security Boulevard

APRIL 12, 2024

The post Sisense Hacked: CISA Warns Customers at Risk appeared first on Security Boulevard. A hard-coded credential catastrophe: The analytics firm kept big companies’ secrets in an insecure AWS bucket. Government says victims include the “critical infrastructure sector.”

Risk

Risk Hacking Government Digital transformation

Reaction to Social Engineering Indicative of Cybersecurity Culture

Security Boulevard

JULY 5, 2021

It was a master class in social engineering, one that put an organization’s security posture at risk. Social engineering attacks like phishing take advantage of an employee’s awareness of. The post Reaction to Social Engineering Indicative of Cybersecurity Culture appeared first on Security Boulevard.

Social Engineering

Social Engineering Engineering Cybersecurity Phishing

Cybersecurity is a Successfully Failure

Security Boulevard

OCTOBER 10, 2022

Cybersecurity is a Successfully Failure. Next-generation firewalls are well, XDRing, IPS in prevention mode, and we had 100% attainment of our security awareness weekly training podcast. Cybersecurity has become a react, overreact, and under-react process, not a solution or strategy. What Could Go Wrong?

Cybersecurity

Cybersecurity Digital transformation CISO Firewall

How Code42 automates insider risk response

CSO Magazine

JULY 11, 2022

When that happens, an analyst reaches out to the colleague to determine whether he or she violated any security rules and to confirm he or she understands the company’s cybersecurity best practices. Hanson, the CISO and CIO of Code42, a cybersecurity software company, sees value in that outreach.

Risk

Risk CISO Security Awareness Software

Employees and Cybersecurity: What Are Your Employees Thinking Now?

SecureWorld News

JULY 28, 2020

And that concern bleeds into their relationship with cybersecurity. How do technology leaders view remote work and cybersecurity? The majority of CISOs and CIOs are clear: remote work brings a cybersecurity risk. How concerned about cybersecurity are your end-users? The bag is somewhat mixed.

Cybersecurity

Cybersecurity CISO Security Awareness Identity Theft

NetSPI Lands $410 Million in Funding – And Other Notable Cybersecurity Deals

eSecurity Planet

OCTOBER 17, 2022

According to data from Crunchbase , the total amount of investments in cybersecurity startups came to $2.6 See the Top Cybersecurity Startups. Filling the Cybersecurity Talent Gap. Additionally, the scarcity of talent is still one of the biggest issues in the cybersecurity industry,” said Shilts. Arctic Wolf.

Cybersecurity

Cybersecurity Penetration Testing CISO Marketing

SPOTLIGHT: Women in Cybersecurity

McAfee

NOVEMBER 3, 2020

There are new and expanding opportunities for women’s participation in cybersecurity globally as women are present in greater numbers in leadership. Forrester also predicts that the number of women CISOs at Fortune 500 companies will rise to 20 percent in 2019 , compared with 13 percent in 2017. government clients.

Cybersecurity

Cybersecurity Architecture Cloud Migration Retail

Safe Security Adds Cybersecurity ROI Tool to Portfolio

Security Boulevard

OCTOBER 4, 2022

Safe Security, Inc. today announced it has added a Return on Security Investment (ROSI) Calculator module to its risk quantification and management platform. The post Safe Security Adds Cybersecurity ROI Tool to Portfolio appeared first on Security Boulevard.

Cybersecurity

Cybersecurity Risk CISO Security Awareness

Author’s Q&A: It’s high time for CISOs to start leading strategically — or risk being scapegoated

The Risk-Conscious, Security-Aware Culture: The Forgotten Critical Security Control

Trending Sources

The Biggest Cybersecurity Risk We're Ignoring—And No, It's Not AI

What Maslow’s Hierarchy of Needs Reveals About Cybersecurity Flaws

Your Security Awareness Training Isn’t Working

CISOs Brace for LLM-Powered Attacks: Key Strategies to Stay Ahead

Should the CISO Report to the CIO?

CISO Stories Podcast: No Insider Cybersecurity Risk? Guess Again!

Cybersecurity Insights with Contrast CISO David Lindner | 8/30/24

A Chief Security Concern for Executive Teams

Nine Top of Mind Issues for CISOs Going Into 2023

AI Integration, Budget Pressures Challenge CISOs

Introducing our new Senior CISO Advisor, Bruce Brody

Survey Sees Modern CISOs Becoming More Comfortable With Risk

Time suck: Security awareness pros are getting sidetracked from core functions

Verizon's 2025 DBIR: Threats Are Faster, Smarter, and More Personal

2021 Security Outcomes Study: Stress Relief for CISOs

World Backup Day: A Clarion Call for Cyber Resilience

Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk

Different Types of CISOs, Diverse Missions

CISO’s Guide to Presenting Cybersecurity to Board Directors

What the Charges Against the SolarWinds CISO Mean for Security in 2024

Cloud Security Risk Prioritization is Broken. Here’s How to Fix It.

GUEST ESSAY: Now more than ever, companies need to proactively promote family Online Safety

Best Cybersecurity Awareness Training for Employees in 2021

Cybersecurity CEO: Security Awareness is An Ongoing Commitment

Hi-5 With A CISO Mário Fernandes, Banco BPI

Innovation at the Expense of Cybersecurity? No More!

3 Metrics to Gauge Cybersecurity Program Health

New data could help CISOs quantify the value of a strong security culture

Cybersecurity Insights with Contrast CISO David Lindner | 11/8/24

Survey Reveals Limits of CISOs’ Management Experience

The Key to Cybersecurity is an Educated Workforce

People Skills Outweigh Technical Prowess in the Best Security Leaders

Measuring Security Risk vs. Success

Inflation Is Making Cybersecurity Even More Challenging for Leaders

Sisense Hacked: CISA Warns Customers at Risk

Reaction to Social Engineering Indicative of Cybersecurity Culture

Cybersecurity is a Successfully Failure

How Code42 automates insider risk response

Employees and Cybersecurity: What Are Your Employees Thinking Now?

NetSPI Lands $410 Million in Funding – And Other Notable Cybersecurity Deals

SPOTLIGHT: Women in Cybersecurity

Safe Security Adds Cybersecurity ROI Tool to Portfolio

Stay Connected