CISO, Firewall and Information Security

How CISOs Limit Downtime Without Impacting Security

Security Boulevard

MARCH 25, 2021

In the last decade the role of the chief information security officer (CISO) has evolved considerably. Not long ago, the CISO was considered a part of the IT team and their main focus was on building firewalls, implementing antivirus and keeping spam emails at bay. Today, however, things are very different.

CISO

CISO Antivirus Firewall Information Security

Today’s CISO Insights – How to Tackle the Quantum Threat

CyberSecurity Insiders

MAY 3, 2023

By: Craig Debban , Chief Information Security Officer, QuSecure, Inc. This is why CISOs everywhere should be concerned. CISOs should begin to familiarize themselves with these and evaluate their potential suitability for adoption. Qualifying that effort is another added value CISOs bring through this exercise.

CISO

CISO Identity Theft Encryption Social Engineering

The truth about VDI and cloud computing

InfoWorld on Security

MARCH 1, 2022

It’s the CISO, or chief information security officer. This is typically a senior-level executive responsible for developing and implementing information security programs and the person first on the hook if a breach occurs. One of the weapons that CISOs keep leveraging is virtual desktop infrastructure or VDI.

CISO

CISO Firewall Information Security

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Five considerations for cloud migration, from the House of Representatives CISO

SC Magazine

MAY 18, 2021

Companies transitioning to the cloud have to think of cybersecurity as more than firewalls, access controls and incident response, and define goals of security that go beyond confidentiality, integrity and availability, said Randy Vickers, chief information security officer for the U.S. (Sean Gallup/Getty Images).

Cloud Migration

Cloud Migration CISO Firewall Risk

Grandson of FISMA: Why We Desperately Need New Cybsersecurity Legislation from the 117th Congress

Cisco Security

AUGUST 12, 2021

The 47-page report provided significant detail to support the conclusion that “According to agency inspectors general, the average grade of the agencies’ overall information security maturity is C-.”. The modern CISO is more than “IT security.”

CISO

CISO Information Security Risk Cloud Migration

Startup Traceable turns to CISO investors for next phase of growth

SC Magazine

FEBRUARY 11, 2021

Their platform operates as both a web application firewall and run time application self-protection, using machine learning to monitor their customers’ APIs and applications, identify baseline user and application behaviors and over time, learn how to best to detect and block malicious activity.

CISO

CISO Marketing Media Software

Water utility CISO offers tips to stay secure as IT and OT converge

SC Magazine

APRIL 26, 2021

Kristin Sanders, CISO for the Albuquerque Bernalillo County Water Utility Authority, revealed how New Mexico’s largest water and wastewater utility has been addressing the security challenge. The post Water utility CISO offers tips to stay secure as IT and OT converge appeared first on SC Media. Asaavedra32, CC BY-SA 3.0

CISO

CISO IoT VPN InfoSec

New SEI CERT chief and first ever federal CISO: old cybersecurity models have ‘been overcome’

SC Magazine

APRIL 30, 2021

Gregory Touhill, former federal chief information security officer and deputy assistant Homeland Security secretary for cyber security operations, seen here at a House Foreign Affairs Committee hearing in 2015 in Washington, DC. chief information security officer. Photo by Mark Wilson/Getty Images).

CISO

CISO Cybersecurity Artificial Intelligence Government

Salary given to cybersecurity specialists in UK

CyberSecurity Insiders

NOVEMBER 4, 2021

Security administrator- Already this position is facing a lot of talent scarcity as the job designation needs the person to install, administer and troubleshoot any security software like anti-virus solutions, patch management systems and firewalls- resolving tickets from time to time.

Cybersecurity

Cybersecurity CISO DDOS Cyber Risk

Security Affairs newsletter Round 467 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

APRIL 14, 2024

Crooks manipulate GitHub’s search results to distribute malware BatBadBut flaw allowed an attacker to perform command injection on Windows Roku disclosed a new security breach impacting 576,000 accounts LastPass employee targeted via an audio deepfake call TA547 targets German organizations with Rhadamanthys malware CISA adds D-Link multiple (..)

Data breaches

Data breaches Social Engineering Malware Hacking

Spotlight on Cybersecurity Leaders: Arun DeSouza

SecureWorld News

SEPTEMBER 5, 2023

Arun DeSouza is the Chief Information Security Officer and Chief Privacy Officer for Nexteer Automotive. He has been a CISO for 20 years and has extensive global IT and security leadership and transformation experience. A : The World Economic Forum found that 95% of security incidents are due to human error.

Cybersecurity

Cybersecurity CISO Risk Firewall

Firms with exposed IoT have a higher concentration of other security problems

SC Magazine

JANUARY 29, 2021

For example, companies with exposed IoT are more than 50% more likely to have email security issues, according to a new report and blog post from the Cyentia Institute and RiskRecon. But what does that correlation mean for chief information security officers? So, how can CISOs operationalize that kind of information?

IoT

IoT Internet Internet CISO

The DDR Advantage: Real-Time Data Defense

Security Affairs

MARCH 27, 2024

Speaking of zero trust, Dave Lewis , the global advisory CISO for Duo Security, offered some words of advice that could sum up the rationale of DDR in a soundbite: “Don’t trust something simply because it’s inside your firewall — there’s no reason for that.” Or, inside any of your access-controlled spaces, we might add.

Data privacy

Data privacy Risk CISO Firewall

AT&T Cybersecurity’s managed SASE service wins CyberSecurity Breakthrough award

CyberSecurity Insiders

NOVEMBER 8, 2021

The award-winning AT&T SASE with Fortinet broadens that reach, layering in controls like secure web gateway, firewall as a service (FWaaS), cloud access security broker (CASB) and zero trust network access (ZTNA) into the mix.

Cybersecurity

Cybersecurity Digital transformation Architecture Technology

Common IT Security Roles and Responsibilities Explained

Spinone

JULY 29, 2020

To automate your job and remain time-efficient, you’ll probably need specialized software that helps you with app security assessment and whitelisting/blacklisting. Security Administrator An IT security admin is a role that includes a wide range of skills and responsibilities to manage the protection of the company’s data.

Penetration Testing

Penetration Testing CISO Engineering Software

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

Duo's Security Blog

OCTOBER 18, 2021

This is part of protecting your campus and driving down information security risk for your campuses, but it also helps protect your faculty, staff, researchers and students from loss of productivity when a problem arises. “We

Insurance

Insurance Education Risk Cyber Insurance

10 Reasons to Trust Your Enterprise APIs

Cisco Security

AUGUST 30, 2021

Using this list as a backdrop the following best practices are presented as a call to action to help organizations take a proactive approach at addressing API security risk. This step should align with existing web security best practices such as having a web or API firewall which can parse and validate traffic.

Software

Software Authentication Risk Encryption

CryptoAgility to take advantage of Quantum Computing

Thales Cloud Protection & Licensing

MAY 4, 2021

The same goes with the advent of Quantum Computing , which is supposed to bring exponential computing power that shall not only bring endless benefits but also raises question marks on the current state of cryptography that is the bedrock of all information security as we know today. Data Firewall. Data security.

Computers and Electronics

Computers and Electronics Banking IoT Risk

Health care’s security challenges spurred by constrained resources, limited staffing

SC Magazine

JUNE 24, 2021

The following year, Ponemon research showed the majority of healthcare organizations find it difficult to recruit security staff, with nearly 50% reporting that they don’t have a chief information security officer on staff. Virtual CISOs are another option, and their use has been rapidly increasing in the health care space.

Healthcare

Healthcare CISO Cybersecurity Marketing

State auditor’s office clashes with file transfer service provider after breach

SC Magazine

FEBRUARY 2, 2021

But the SAO is accusing Accellion of being less than forthcoming, with officials explaining in a virtual press conference and a public statement that it was not aware of any security incident at Accellion until the Jan. 12 bug notification, and it was “not until the week of Jan. Future exploits, however, are a constant threat.

Government

Government CISO Media Encryption

Years overdue, the profile of the CISO begins to rise as cyber grabs attention in boardrooms

SC Magazine

FEBRUARY 4, 2021

Executives from security company Kaspersky speak at a global partner conference about information security is a key business success factor – a reality that is starting to shine a brighter spotlight on security chiefs. Ian Gavan/Getty Images for Kaspersky Lab ). Our profile is certainly getting higher.

CISO

CISO Digital transformation Insurance Risk

Vulnerability Management Policy Template

eSecurity Planet

MAY 12, 2023

For example, a vulnerability in a wi-fi router firewall configuration may expose Windows 95 machines required to run manufacturing equipment. Common mitigations include, but are not limited to: Deploy mitigating security control such as a new security tool (Firewall, etc.)

Penetration Testing

Penetration Testing Risk Firmware Software

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

The Last Watchdog

JUNE 4, 2019

GCIS was a Davos-level conference with no vendors and no selling, where scores of chief security information officers (CISOs), top CEO’s, industry and government thought leaders and leading innovators discussed the myriad challenges in and around cybersecurity and possible solutions in today’s environment.

Cybersecurity

Cybersecurity Computers and Electronics Technology Marketing

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

The Last Watchdog

MARCH 21, 2022

Until now, organizations have relied on firewalls, intrusion detection and similar techniques to protect their data. You almost certainly need a chief information security officer (CISO). Also, it’s not unusual for regulators to assess multi-million dollar fines to companies that don’t properly protect customer data.

Encryption

Encryption Data privacy Cloud Migration Risk

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

Cyber threat management , being an advanced discipline, craves analytical attention and a commander’s strategic skills of information security executives to confront and overcome the multi-dimensional cyber threats.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

IoT Devices a Huge Risk to Enterprises

eSecurity Planet

JULY 22, 2021

The increasingly distributed nature of IT – with data and applications living in and being accessed through the cloud, outside of traditional data centers protected by firewalls and antivirus software – is helping to fuel the zero-trust push, which states that identity is key. ” Most Devices Communicate in Plaintext.

IoT

IoT Risk Architecture Manufacturing

Threat intel is a game changer, if only firms can figure out how to bake it into cyber programs

SC Magazine

FEBRUARY 1, 2021

Alyssa Miller, business information security officer at S&P Global Ratings, told SC Media that organizations who build out their programs from scratch tend to first stumble in two areas that underpin most threat intelligence programs: asset discovery and log management. Starting from scratch.

Cyber threats

Cyber threats CISO Media Retail

Important Strategies for Aligning Security With Business Objectives

Security Boulevard

APRIL 14, 2021

Know the business objectives inside out One of the key challenges in aligning security with business objectives is that information security/data security executives (i.e. CISO/Chief Information Security Officer) are often too concerned about security and not the overall business objectives.

Cybersecurity

Cybersecurity Marketing CISO Social Engineering

7 Cyber Security Courses Online For Everybody

Spinone

NOVEMBER 21, 2019

Network Security: In this module, you will learn more about how to secure network: firewalls, password managers, and more. Cybersecurity: The CISO’s View: You’ll know about the pillars and rules that assure cybersecurity, find out about the role of the Chief Information Security Officer.

Social Engineering

Social Engineering Accountability Phishing Cybersecurity

Using Proactive Intelligence Against Adversary Infrastructure

Security Boulevard

FEBRUARY 7, 2024

But in the wake of the attack, manychief information security officers (CISOs) realized that PDNS was the answer to early detection and resiliency against similar attacks simply because log4j was surprisingly easy to detect at a DNS level.

DNS

DNS Architecture Marketing Cyber threats

Best Cybersecurity and IT Outsourcing Options

eSecurity Planet

AUGUST 1, 2023

The broad categories consist of: IT Distributors typically sell one-off IT equipment such as firewalls , Wi-Fi routers , network access controllers (NACs), and servers that do not require significant modifications for installation and integration; distributors outsource some selling and installation functions, but not much for IT departments.

Cybersecurity

Cybersecurity Cloud Migration Firewall Penetration Testing

How to Select the Right MDR Service

Security Boulevard

JULY 26, 2022

Osterman Research explores why organizations early to embrace MDR services report higher security posture across multiple dimensions in. The Rush to MDR: Achieving the Promise of Elevated Security Posture. Over the years, Ray built, managed, and grew a number of security teams — but he also offloaded some capabilities to MDR providers.

Energy and Utilities

Energy and Utilities CISO Marketing Threat Detection

Security Affairs newsletter Round 461 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 3, 2024

Private Plane Owners’ Data Linked to LA Intl.

Cybercrime

Cybercrime Retail Artificial Intelligence Hacking

The Road to Zero Trust

Thales Cloud Protection & Licensing

APRIL 21, 2021

Based on the notion of “never trust, always verify”, Zero Trust has given enterprises some guiding principles to build a new security stack that is better suited for the modern-day organization. The path to a Zero Trust posture is not linear, and the tall claims by security vendors often cloud the decision-making.

Risk

Risk Technology Mobile Digital transformation

Vulnerability Risk Management: Making the Move beyond Compliance

NopSec

JUNE 26, 2015

Information security professionals have a single core mission: to understand technological risks and take the necessary steps to protect information assets from harm. As someone who has sat in the role of CISO for many years, I can offer a variety of perspectives. But in the end, we are still getting hacked.

Risk

Risk Information Security CISO Firewall

The Biggest Lessons about Vulnerabilities at RSAC 2021

eSecurity Planet

MAY 28, 2021

As of now, the information security industry is at the outset of implementing SBOM for software products. While CIOs, CISOs, and purchasing managers often make a faith-based decision on software, greater accountability in software development starting below the OS can lead to more data and risk-driven decisions.

Software

Software Firmware DNS VPN

How to Save Your Organization $9.05 Million with a Nominal Investment in Cybersecurity

CyberSecurity Insiders

SEPTEMBER 3, 2021

These kinds of stories are reported with so much frequency that data-rich companies – and the chief information security officers (CISOs) responsible for their IT network security – have resigned themselves to the certainty that they will become the target of a cybersecurity breach.

Cybersecurity

Cybersecurity Data breaches Threat Detection Technology

Day-1 Skills That Cybersecurity Hiring Managers Are Looking For

Daniel Miessler

AUGUST 31, 2019

If you’re on any security team at a junior to mid-level, these are exactly the types of things you’re likely to spend your first few years working on. Technical skills So many of these are a combination of soft and hard skills. Tech skills can really help here, but the best teacher is experience on this one as well.

Cybersecurity

Cybersecurity Hacking Engineering CISO

On first-ever Identity Management Day, experts detail steps to a better IAM program

SC Magazine

APRIL 14, 2021

When we started our identity management journey… we were struggling with defining it,” admitted Greg McCarthy, chief information security officer with the city of Boston. “We Greg McCarthy, CISO of Boston. We wanted… a clear definition [so that] our users would understand what we’re doing.

Passwords

Passwords Architecture Password Management Government

Podcast Episode 189: AppSec for Pandemic Times, A Conversation with GitLab Security VP Jonathan Hunt

The Security Ledger

SEPTEMBER 30, 2020

In this podcast, Security Ledger Editor in Chief Paul Roberts talks about it with Jonathan Hunt, Vice President of Security at the firm GitLab. In this podcast, Security Ledger Editor in Chief Paul Roberts talks about it with Jonathan Hunt, Vice President of Security at the firm GitLab. Read the whole entry. »

Software

Software CISO Firewall Ransomware

How CISOs Limit Downtime Without Impacting Security

Today’s CISO Insights – How to Tackle the Quantum Threat

Webinars

Trending Sources

The truth about VDI and cloud computing

Webinars

Five considerations for cloud migration, from the House of Representatives CISO

Grandson of FISMA: Why We Desperately Need New Cybsersecurity Legislation from the 117th Congress

Startup Traceable turns to CISO investors for next phase of growth

Water utility CISO offers tips to stay secure as IT and OT converge

New SEI CERT chief and first ever federal CISO: old cybersecurity models have ‘been overcome’

Salary given to cybersecurity specialists in UK

Security Affairs newsletter Round 467 by Pierluigi Paganini – INTERNATIONAL EDITION

Spotlight on Cybersecurity Leaders: Arun DeSouza

Firms with exposed IoT have a higher concentration of other security problems

The DDR Advantage: Real-Time Data Defense

AT&T Cybersecurity’s managed SASE service wins CyberSecurity Breakthrough award

Common IT Security Roles and Responsibilities Explained

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

10 Reasons to Trust Your Enterprise APIs

CryptoAgility to take advantage of Quantum Computing

Health care’s security challenges spurred by constrained resources, limited staffing

State auditor’s office clashes with file transfer service provider after breach

Years overdue, the profile of the CISO begins to rise as cyber grabs attention in boardrooms

Vulnerability Management Policy Template

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

Cyber Security Awareness and Risk Management

IoT Devices a Huge Risk to Enterprises

Threat intel is a game changer, if only firms can figure out how to bake it into cyber programs

Important Strategies for Aligning Security With Business Objectives

7 Cyber Security Courses Online For Everybody

Using Proactive Intelligence Against Adversary Infrastructure

Best Cybersecurity and IT Outsourcing Options

How to Select the Right MDR Service

Security Affairs newsletter Round 461 by Pierluigi Paganini – INTERNATIONAL EDITION

The Road to Zero Trust

Vulnerability Risk Management: Making the Move beyond Compliance

The Biggest Lessons about Vulnerabilities at RSAC 2021

How to Save Your Organization $9.05 Million with a Nominal Investment in Cybersecurity

Day-1 Skills That Cybersecurity Hiring Managers Are Looking For

On first-ever Identity Management Day, experts detail steps to a better IAM program

Podcast Episode 189: AppSec for Pandemic Times, A Conversation with GitLab Security VP Jonathan Hunt

Stay Connected