CISO, Data breaches and Information Security

GUEST ESSAY: The key differences between ‘information privacy’ vs. ‘information security’

The Last Watchdog

JUNE 12, 2023

Information privacy and information security are two different things. Related: Tapping hidden pools of security talent Information privacy is the ability to control who (or what) can view or access information that is collected about you or your customers. still available for you to use.

Information Security

Information Security Data breaches CISO Encryption

Former Uber CISO Faces Prison Time For Mishandling Cyberattack: Justice, Scapegoating, or Both?

Joseph Steinberg

OCTOBER 6, 2022

A jury yesterday found former Uber security chief Joe Sullivan guilty of covering up a massive data breach; the conviction makes Sullivan likely to become the first executive to face prison time over the mishandling of a cyberattack. Serving as a Chief Information Security Officer is a daunting task.

CISO

CISO Artificial Intelligence Data breaches Cybersecurity

From Compliance to Resilience: Cyber Governance as the Cornerstone of CISO Strategy

SecureWorld News

MAY 2, 2024

The role of a Chief Information Security Officer (CISO) is undeniably complex, yet incredibly rewarding. However, the challenges faced by CISOs are mounting, exacerbated by the evolving threat landscape and regulatory environment. The recent release of NIST's Cybersecurity Framework version 2.0

CISO

CISO Government CSO Artificial Intelligence

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

The Top Challenges Faced by CISOs in 2023

CyberSecurity Insiders

APRIL 11, 2023

As the world continues to face unprecedented cyber threats, Chief Information Security Officers (CISOs) are facing a growing number of challenges in their roles. In 2023, these challenges are likely to increase, and CISOs will have to be well-equipped to overcome them.

CISO

CISO Data privacy Cyber threats Cybersecurity

CISO Magazine Honors KrebsOnSecurity

Krebs on Security

DECEMBER 10, 2019

CISO Magazine , a publication dedicated to covering issues near and dear to corporate chief information security officers everywhere, has graciously awarded this author the designation of “ Cybersecurity Person of the Year ” in its December 2019 issue. KrebsOnSecurity is grateful for the unexpected honor.

CISO

CISO Data breaches Media Information Security

5 top qualities you need to become a next-gen CISO

CSO Magazine

NOVEMBER 30, 2022

Ransomware and data breaches pose a massive risk to organizations, resulting in loss of customer trust and shareholder value, reputation damage, hefty fines, and penalties. Cyber risk is a top concern in US corporate boardrooms, elevating the role of the chief information security officer to rapid prominence.

CISO

CISO Cyber Risk Data breaches Information Security

CISOs: How to improve cybersecurity in an ever-changing threat landscape

CyberSecurity Insiders

MAY 15, 2023

Everybody within an organization should work to establish and maintain good cybersecurity habits and measures, but much of the security burden falls on the chief information security officer (CISO). Below are some key insights for any CISO to take into consideration.

CISO

CISO Cybersecurity Data breaches Technology

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Krebs on Security

JULY 21, 2023

A review of the executives pages published by the 2022 list of Fortune 100 companies found only four — BestBuy , Cigna , Coca-Cola , and Walmart — that listed a Chief Security Officer (CSO) or Chief Information Security Officer (CISO) in their highest corporate ranks. Image: IANS Research.

CSO

CSO CISO Insurance Risk

The Resurgence of Zero Trust: Why it’s Essential for CISOs and CIOs to Include in Their Strategy

CyberSecurity Insiders

JUNE 8, 2023

Zero trust provides a risk-based approach to access control and data protection, allowing organizations to enforce granular access controls based on user roles, responsibilities, and context, and minimize the risk of data breaches and compliance violations.

CISO

CISO Cyber threats Risk Cybersecurity

New CISOs should focus more on people and less on tech, report finds

SC Magazine

MARCH 31, 2021

Last September, Twitter hired Rinki Sethi as its new chief information security officer. Other major companies to recently install a new CISO include Uber and Square. Two major themes emerged from the research and interviews conducted with CISOs. Justin Sullivan / Staff).

CISO

CISO Media Digital transformation Technology

SolarWinds hires CISO from within, enabling a quicker security transformation

SC Magazine

MAY 6, 2021

SolarWinds this week announced that its vice president of security Tim Brown has taken on the additional title of CISO, as part of the company’s ongoing efforts to institute a secure-by-design posture. (“ SolarWinds letters” by sfoskett at is licensed under CC BY-NC-SA 2.0 ). Hard to say. Only my paycheck.”.

CISO

CISO Media CSO Information Security

Data Breach Cover Up: Uber's Former CSO Faces Up to 8 Years Behind Bars

SecureWorld News

AUGUST 21, 2020

Department of Justice just filed federal charges against Uber's former Chief Security Offier (CSO) for allegedly covering up a company data breach and bribing hackers to stay silent about the attack. SecureWorld wrote about this case in Uber Data Breach: 3 Things Revealed in Testimony to Congress.

CSO

CSO Data breaches CISO Internet

The CISO’s Top Priority: Elevating Data-Centric Security

Security Boulevard

APRIL 25, 2024

The shift to cloud computing has enhanced the resilience and security of most organizations. Despite this, a layered defense model is still necessary […] The post The CISO’s Top Priority: Elevating Data-Centric Security appeared first on Blog.

CISO

CISO Information Security Data breaches

Security Affairs newsletter Round 467 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

APRIL 14, 2024

Crooks manipulate GitHub’s search results to distribute malware BatBadBut flaw allowed an attacker to perform command injection on Windows Roku disclosed a new security breach impacting 576,000 accounts LastPass employee targeted via an audio deepfake call TA547 targets German organizations with Rhadamanthys malware CISA adds D-Link multiple (..)

Data breaches

Data breaches Social Engineering Malware Hacking

The Penetration Testing Process

Mitnick Security

JUNE 27, 2023

As a Chief Information Security Officer (CISO), you have the responsibility of not only directing your organization’s security but also conveying your risk status to leadership. The stakes are high.

Penetration Testing

Penetration Testing Small Business CISO Data breaches

Tim Callahan: ‘CISOs must voluntarily be part of the solution’

SC Magazine

MARCH 30, 2021

A conversation with Tim Callahan, chief information security officer at Aflac. One of a series of security leadership profiles prepared by Cybersecurity Collaborative in conjunction with SC Media. Tim Callahan is chief information security officer at Aflac. What makes a successful security leader?

CISO

CISO Cybersecurity Information Security Risk

Fighting Bots and Saving Costs in a Time of Shrinking Resources

Security Boulevard

MARCH 10, 2023

Being a Chief Information Security Officer (CISO) is a challenging job, especially in today’s world where cyberattacks are on the rise and new data breaches seem to occur daily. Meanwhile, both financial and human resources are limited.

CISO

CISO Data breaches Cybercrime Information Security

A Chief Security Concern for Executive Teams

Krebs on Security

DECEMBER 18, 2018

KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Nobody’s saying these companies don’t have CISOs and/or CSOs and CTOs in their employ.

CSO

CSO CISO Marketing Banking

The Risk-Conscious, Security-Aware Culture: The Forgotten Critical Security Control

Cisco Security

JULY 12, 2021

Chief Information Security Officers (CISOs) across the Global 2000 and Fortune 1000 are obsessed with protecting the workforce endpoints as critical vulnerabilities in the cybersecurity and risk management posture of their enterprises. Should a risk-conscious, security-aware culture be considered a critical security control?

Security Awareness

Security Awareness Risk CISO Cybersecurity

A Cybersecurity Role Has Topped List of Best Jobs

CyberSecurity Insiders

JANUARY 14, 2022

“Information security analyst” tops the U.S. Information security analysts are increasingly critical as organizations work to protect against data breaches and cyber attacks,” says Antonio Barbera, consumer advice senior editor at U.S. News & World Report 2022 Best Jobs list. News & World Report.

Cybersecurity

Cybersecurity Healthcare Information Security CISO

Many Public Salesforce Sites are Leaking Private Data

Krebs on Security

APRIL 27, 2023

This misconfigured Salesforce Community site from the state of Vermont was leaking pandemic assistance loan application data, including names, SSNs, email address and bank account information. “To address the issue further, I reached out to several CISOs on LinkedIn and Twitter. Akiri said he notified the Washington D.C.

Banking

Banking Government Information Security Authentication

Capital One Shifts Its CISO to New Role

Dark Reading

NOVEMBER 7, 2019

The bank is searching for a new chief information security officer months after its major data breach.

CISO

CISO Data breaches Banking Information Security

These Roles Require Cybersecurity Training

CyberSecurity Insiders

APRIL 26, 2021

With data breach rates rising and criminal attack methods becoming more sophisticated each day, it is essential for every organization to take security seriously. Even if a company employs a Chief Information Security Officer (CISO) or Chief Security Officer (CSO), the position may still report to the CIO.

Cybersecurity

Cybersecurity CISO Education CSO

5 Benefits of Retaining a Virtual CISO

NopSec

JUNE 12, 2017

From whistleblowers to major data breaches, issues once kept strictly in the confines of board rooms and restricted government offices, are now plastered all over the news. Even the average layman is now aware of the sinister consequences of compromised non-public information. What is a Virtual CISO (vCISO)?

CISO

CISO Cybersecurity Government Information Security

MailChimp breached, intruders conducted phishing attacks against crypto customers

Security Affairs

APRIL 4, 2022

During the weekend, multiple owners of Trezor hardware cryptocurrency wallets reported having received fake data breach notifications from Trezor, BleepingComputer first reported. A statement shared by Mailchimp CISO Siobhan Smyth with TechCrunch revealed that the company discovered the security breach on March 26.

Phishing

Phishing Data breaches Cryptocurrency Social Engineering

GoDaddy Incident Leaks Data of More Than 1 Million Wordpress Customers

SecureWorld News

NOVEMBER 24, 2021

GoDaddy responds to data breach. GoDaddy's Chief Information Security Officer (CISO) Demetrius Comes says once the breach was detected GoDaddy contacted authorities immediately and blocked the third-party user, determined to be a malicious hacker. November 23, 2021.

Data breaches

Data breaches Passwords CISO Media

GUEST ESSAY: Now more than ever, companies need to proactively promote family Online Safety

The Last Watchdog

FEBRUARY 15, 2021

In response to continuing waves of data breaches and network disruptions, companies have made a concerted effort and poured substantial resources into promoting data security awareness among employees, suppliers and clients. Safeguarding data in workplace settings gets plenty of attention.

Education

Education CISO Security Awareness Cybersecurity

Security Affairs newsletter Round 452 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 31, 2023

INC RANSOM ransomware gang claims to have breached Xerox Corp Spotify music converter TuneFab puts users at risk Cyber attacks hit the Assembly of the Republic of Albania and telecom company One Albania Russia-linked APT28 used new malware in a recent phishing campaign Clash of Clans gamers at risk while using third-party app New Version of Meduza (..)

Artificial Intelligence

Artificial Intelligence Cyber Attacks Malware Ransomware

Build trust in your business: how ISO 27001 & 27701 certification can help

BH Consulting

APRIL 27, 2021

More and more organisations are making information security a priority. Data breaches and cyber attacks are, unfortunately, becoming a regular occurrence. At the same time, many companies are increasingly asking organisations they work with to show they handle all data securely. Comply with regulations.

Financial Services

Financial Services Information Security CISO Manufacturing

Why CISA is Warning CISOs About a Breach at Sisense

Krebs on Security

APRIL 11, 2024

On April 10, Sisense Chief Information Security Officer Sangram Dash told customers the company had been made aware of reports that “certain Sisense company information may have been made available on what we have been advised is a restricted access server (not generally available on the internet.)”

CISO

CISO Encryption Telecommunications Financial Services

Episode 247: Into the AppSec Trenches with Robinhood CSO Caleb Sima

The Security Ledger

DECEMBER 21, 2022

As a security analyst at the pioneering security firm Internet Security Systems (ISS) Caleb was happy to prove them wrong and turned what he learned exposing security weaknesses in corporate websites into a thriving business: SPI Dynamics, which was sold to HP in 2007. Once more unto the (data) breach!

CSO

CSO Financial Services CISO Mobile

Security Researchers Find Nearly 400,000 Exposed Databases

eSecurity Planet

MAY 3, 2022

According to Group-IB, the likelihood of the database systems being used in cybercrime and security breaches is high. A data breach, a follow-up strike on clients whose data was exposed, and other risks may result from an exposed database. Hackers could use the same methods as Group-IB to exploit the databases.

Social Engineering

Social Engineering Internet Internet Risk

Attention CEOs: No news can be good news when investigating a breach

SC Magazine

MAY 18, 2021

David Estlick, chief information security officer of Chipotle Mexican Grill joined James Christiansen, vice president and CSO of cloud security transformation at Netskope, to speak about managing corporate expectation. ” CISOs and security leaders must therefore communicate that expectations, Christiansen added.

CSO

CSO Data breaches CISO Information Security

Security resilience: 4 ways to achieve company-wide buy-in

Cisco Security

JUNE 15, 2022

I was joined by Liz Waddell, Incident Response Practice Lead at Cisco Talos , who’s often there at ground zero for data breaches, helping teams put out fires in remediation. And finally, Christos Syngelakis, CISO, and Data Privacy Officer at Motor Oil Group. Lead with, “How can I make your life easier?”.

CISO

CISO Digital transformation Risk Data privacy

How Information Security Breaks The Classic IT Model

Security Boulevard

JUNE 26, 2022

How Information Security Breaks The Classic IT Model. Cost of Breach Could Be Greater Than The Expected Cost Savings. IBM’s annual Cost of a Data Breach study revealed a single data breach could cost a company up to $3.29 How does information security fit into the producer/consumer model?

Information Security

Information Security Technology Marketing Cyber Insurance

How to Enhance Data Loss Prevention in Office 365

Security Boulevard

MARCH 17, 2021

tag=IT Security'>IT Security</a> Protecting customer data from loss and leakage has become a top priority for enterprises over the past decade. Furthermore, data visibility was cited as the number one cybersecurity weakness, closely followed by an inability to meet regulatory challenges. Request a Demo.

Data breaches

Data breaches Ransomware Financial Services CISO

Security Roundup March 2024

BH Consulting

MARCH 21, 2024

Its findings included data from Irish businesses, which ranked cyber attacks and data breaches as their top risk they face. Symantec has identified many of the tools gangs use to remove data from compromised networks. MORE Jane Frankland argues that making CISOs into heroes isn’t helpful. for $50,000.”

Cyber threats

Cyber threats Ransomware Healthcare Risk

The Top Five Habits of Cyber-Aware Employees

CyberSecurity Insiders

JULY 21, 2021

By: Matt Lindley, COO and CISO at NINJIO. Ensure that account credentials are secure. According to Verizon’s 2021 Data Breach Investigations Report , credentials are the type of data cybercriminals most want to steal in a breach. Let’s take a closer look at a few of those habits.

Social Engineering

Social Engineering Password Management Passwords Phishing

New York Takes Bold Stance Against Hospital Cyber Attacks

SecureWorld News

DECEMBER 6, 2023

Hospitals will be required to implement comprehensive cybersecurity programs, including vulnerability assessments, access controls, and security awareness training for their employees. I view it as a welcomed step in helping security teams secure the funding and support they need to keep our heads above water.

Cyber Attacks

Cyber Attacks Healthcare Computers and Electronics Financial Services

Common IT Security Roles and Responsibilities Explained

Spinone

JULY 29, 2020

To automate your job and remain time-efficient, you’ll probably need specialized software that helps you with app security assessment and whitelisting/blacklisting. Network Security Engineer As the name suggests, a network security engineer’s job is to protect corporate networks from data breaches, human error, or cyberattacks.

Penetration Testing

Penetration Testing CISO Engineering Software

Episode 156: Looming over Black Hat: doing Security at Massive Scale

The Security Ledger

AUGUST 6, 2019

In this episode of the Security Ledger Podcast (#156), we're joined by Michael Coates, the former Chief Information Security Officer at Twitter and the CEO and co-founder of Altitude Networks.* » Related Stories Unsecured Database Exposes Data of 80M U.S. Read the whole entry. »

CISO

CISO Information Security Technology Risk

Why do CISOs Keep Quitting on Florida?

SecureWorld News

AUGUST 25, 2021

Chief Information Security Officers (CISO) have the luxury of being an incredibly hot commodity, so they can pretty much pick and choose where they work, as they are almost guaranteed to have a job waiting for them somewhere. Cybersecurity officials struggle in Florida. DeSantis appointed former state Rep.

CISO

CISO Cybersecurity Government Technology

Clone of How to Enhance Data Loss Prevention in Office 365

Security Boulevard

AUGUST 24, 2021

tag='></a> Protecting customer data from loss and leakage has become a top priority for enterprises over the past decade. Recent HelpSystems research with CISOs in global financial service organizations found that almost one-third believe data breaches have the potential to cause the most damage over the next 12 months.

Data breaches

Data breaches Ransomware Financial Services CISO

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

Security Boulevard

JANUARY 18, 2024

Recovery from supply chain attacks will cost 3x-5x more as compared to data breaches. The case against the UBER Chief Information Security Officer (CISO) concluded with a conviction last year and the case against the CISO of SolarWinds, announced in 2023, is ongoing.

Risk

Risk Cybersecurity CISO Technology

GUEST ESSAY: The key differences between ‘information privacy’ vs. ‘information security’

Former Uber CISO Faces Prison Time For Mishandling Cyberattack: Justice, Scapegoating, or Both?

Webinars

Trending Sources

From Compliance to Resilience: Cyber Governance as the Cornerstone of CISO Strategy

Webinars

The Top Challenges Faced by CISOs in 2023

CISO Magazine Honors KrebsOnSecurity

5 top qualities you need to become a next-gen CISO

CISOs: How to improve cybersecurity in an ever-changing threat landscape

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

The Resurgence of Zero Trust: Why it’s Essential for CISOs and CIOs to Include in Their Strategy

New CISOs should focus more on people and less on tech, report finds

SolarWinds hires CISO from within, enabling a quicker security transformation

Data Breach Cover Up: Uber's Former CSO Faces Up to 8 Years Behind Bars

The CISO’s Top Priority: Elevating Data-Centric Security

Security Affairs newsletter Round 467 by Pierluigi Paganini – INTERNATIONAL EDITION

The Penetration Testing Process

Tim Callahan: ‘CISOs must voluntarily be part of the solution’

Fighting Bots and Saving Costs in a Time of Shrinking Resources

A Chief Security Concern for Executive Teams

The Risk-Conscious, Security-Aware Culture: The Forgotten Critical Security Control

A Cybersecurity Role Has Topped List of Best Jobs

Many Public Salesforce Sites are Leaking Private Data

Capital One Shifts Its CISO to New Role

These Roles Require Cybersecurity Training

5 Benefits of Retaining a Virtual CISO

MailChimp breached, intruders conducted phishing attacks against crypto customers

GoDaddy Incident Leaks Data of More Than 1 Million Wordpress Customers

GUEST ESSAY: Now more than ever, companies need to proactively promote family Online Safety

Security Affairs newsletter Round 452 by Pierluigi Paganini – INTERNATIONAL EDITION

Build trust in your business: how ISO 27001 & 27701 certification can help

Why CISA is Warning CISOs About a Breach at Sisense

Episode 247: Into the AppSec Trenches with Robinhood CSO Caleb Sima

Security Researchers Find Nearly 400,000 Exposed Databases

Attention CEOs: No news can be good news when investigating a breach

Security resilience: 4 ways to achieve company-wide buy-in

How Information Security Breaks The Classic IT Model

How to Enhance Data Loss Prevention in Office 365

Security Roundup March 2024

The Top Five Habits of Cyber-Aware Employees

New York Takes Bold Stance Against Hospital Cyber Attacks

Common IT Security Roles and Responsibilities Explained

Episode 156: Looming over Black Hat: doing Security at Massive Scale

Why do CISOs Keep Quitting on Florida?

Clone of How to Enhance Data Loss Prevention in Office 365

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

Stay Connected