Tech Republic Security

DECEMBER 4, 2023

Recorded Future CISO Jason Steer said software digital supply chains are one of the top risks being faced. The ASEAN region is seeing more cyber attacks as digitisation advances.

Risk 206

Risk CISO Cyber Attacks Software 206

The Last Watchdog

DECEMBER 18, 2024

Part three of a four-part series In 2024, global pressure on companies to implement advanced data protection measures intensified, with new standards in encryption and software transparency raising the bar. Balonis Frank Balonis , CISO, Kiteworks By 2025, 75% of the global population will be protected under privacy laws, including U.S.

Cybersecurity 130

Cybersecurity CISO Risk Government 130

Javvad Malik

OCTOBER 29, 2020

The movie starts on the outskirts of a jungle and the CISO (Arnie) with his team land in their helicopters. This is a perfect metaphor for how a CISO operates in day to day situations. This is a reminder to all security pros that they need to continually keep their skills up to date or risk becoming a dinosaur. Well read on.

CISO 246

CISO InfoSec Banking Technology 246

Security Boulevard

NOVEMBER 1, 2024

Insight #1: You can be sued for your junky software, EU says The EU recently updated its Product Liability Directive ( PDF ) to reflect the critical role of software in modern society. This means software vendors are now liable for defects that cause harm, including personal injury, property damage or data loss.

CISO 59

CISO Cybersecurity Data breaches Software 59

The Last Watchdog

MARCH 13, 2023

So how will this affect chief information security officers (CISOs) and security programs? Given the perennial skills and staffing shortage in security, it’s unlikely that CISOs will be asked to make deep budget or staffing cuts, yet they may not come out of this period unscathed. Related: Attack surface management takes center stage.

CISO 203

CISO Insurance Cybersecurity Risk 203

The Last Watchdog

DECEMBER 18, 2024

Shashanka Dr. Madhu Shashanka , Chief Data Scientist, Concentric AI Generative AI in 2025 will bring transformative opportunities but heightened cybersecurity risks, including data exposure, AI misuse, and novel threats like prompt injection attacks. FIPS-203 enables legal PQC deployment, prompting CISOs to overhaul encryption strategies.

Risk 173

Risk Threat Detection Technology Phishing 173

CSO Magazine

AUGUST 16, 2021

Security's all-too-frequent appearance as a front-page headline making topic has put CISOs in the hot seat as CEOs and boards worry that it could be their names next in news stories trying to explain how a breach occurred. Yet the CISO message to the C-suite might not be all that reassuring.

CISO 143

CISO Software Risk Cybersecurity 143

The Last Watchdog

JANUARY 10, 2022

It’s possible to de-risk work scenarios involving personal data by carrying out a classic risk assessment of an organization’s internal and external infrastructure. This de-risks personal data that does not fit in a separate security contour. Related: The dangers of normalizing encryption for government use. Encryption.

Risk 240

Risk Encryption Data privacy CISO 240

The Last Watchdog

APRIL 29, 2020

Many organizations have picked up on that, yet haven’t been able to manage the devices being used by employees and third parties, such as contractors, vendors and software developers. Some CISOs, at first, were reserved and said, ‘We’re not moving to the cloud.’ Nassar We’re in a very mobile environment.

Mobile 193

Mobile CISO Risk Cloud Migration 193

Security Boulevard

MARCH 14, 2025

1 We are frogs, falling asleep in security-debt stew Companies are drowning in high-risk software security debt , with critical vulnerabilities festering for an average of 252 days before theyre fixed long enough to turn your tech stack into a hackers swamp. Insight No. Your move, tech world.

CISO 52

CISO Cybersecurity Software Risk 52

Jane Frankland

APRIL 25, 2025

While this progress is impressive and efficient, it comes with substantial risks. We need cybersecurity leadersCISOs, cyber risk owners, and IT decision makerswho are willing to challenge the norm, think critically, and make ethical decisions to protect our organisations, and world. Thats essentially the position were in today.

Technology 130

Technology Cyber threats Risk CISO 130

SecureWorld News

OCTOBER 23, 2024

Check Point Software Technologies Ltd., The SEC charged the companies with "materially misleading disclosures regarding cybersecurity risks and intrusions." The SEC further noted that Unisys lacked proper internal controls to ensure accurate and timely reporting of such high-risk incidents. Check Point Software Technologies Ltd.

Cybersecurity 113

Cybersecurity Risk Hacking Software 113

Jane Frankland

FEBRUARY 7, 2025

But as a CISO or cyber risk owner, it’s not just about locking down sensitive informationits about doing it without slowing down your people. It encompasses everything from ensuring the confidentiality and integrity of information to reducing risks, maintaining compliance, and building trust with customers.

Cyber Risk 130

Cyber Risk CISO Risk Encryption 130

The Last Watchdog

MARCH 1, 2023

According to BetterCloud, the average number of software as a service (SaaS) applications used by organizations worldwide has increased 14x between 2015 and 2021. The increasing prevalence of code and services means that software- and code-related risks will not dissipate any time soon.

Authentication 222

Authentication CISO Software Passwords 222

Security Boulevard

MARCH 20, 2025

Third-party cybersecurity incidents are on the rise, but organizations face challenges in mitigating risks arising for the software supply chain, a survey of 200 chief information security officers (CISOs) has found.

Cyber Risk 82

Cyber Risk CISO Risk Information Security 82

Security Boulevard

DECEMBER 30, 2024

In this post, we look at the enforcement actions the SEC has taken and what public company CISOs should do to stay in compliance. As part of their fiduciary duties, boards play a key role in the oversight of risks from cybersecurity threats. This pushed C-level executives and boards to adopt measures for compliance and transparency.

Cybersecurity 85

Cybersecurity Cyber Risk CISO Risk 85

Penetration Testing

APRIL 29, 2025

In an open letter, Patrick Opet, Chief Information Security Officer (CISO) at JPMorgan Chase, raises a critical alarm The post JPMorgan Chase CISO Warns of SaaS Security Crisis and Supply Chain Risk appeared first on Daily CyberSecurity.

CISO 86

CISO Risk Information Security Cybersecurity 86

Krebs on Security

DECEMBER 18, 2018

KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Nobody’s saying these companies don’t have CISOs and/or CSOs and CTOs in their employ.

CSO 254

CSO CISO Marketing Banking 254

Malwarebytes

NOVEMBER 1, 2023

The Securities and Exchange Commission (SEC) has announced charges against software company SolarWinds Corporation and its chief information security officer (CISO), Timothy G. Brown, for “fraud and internal control failures relating to allegedly known cybersecurity risks and vulnerabilities.”

CISO 132

CISO Risk Software Cybersecurity 132

Security Boulevard

OCTOBER 17, 2022

With software supply chain attacks ramping up — and presenting a very real new risk category for security teams and CISOs — software bills of materials (SBOMs) are getting the nod from both government and industry experts as a "no brainer.".

Software 122

Software CISO Government Risk 122

Security Boulevard

MARCH 1, 2021

Even if you haven’t used any Governance, Risk and Compliance (GRC) software yourself, you’re likely familiar with this. The post Many Businesses Have GRC Software, Yet Most Still Struggle to Manage IT Risks Consistently appeared first on Hyperproof.

Software 118

Software Risk Government CISO 118

SecureWorld News

MAY 13, 2025

million to evaluate NSO's software ( though it's unclear if they used it operationally). Third- party software risks extend beyond the supply chain to nation- state surveillance contractors. Third- party software risks extend beyond the supply chain to nation- state surveillance contractors.

Spyware 99

Spyware Surveillance CISO Government 99

Security Boulevard

SEPTEMBER 15, 2023

Insight #1 Software Bills of Materials (SBOMs) are nothing more than a data point for determining risk. The post Cybersecurity Insights with Contrast CISO David Lindner | 9/15 appeared first on Security Boulevard. They shouldn’t be treated as gospel.

CISO 111

CISO Cybersecurity Software Risk 111

SecureWorld News

FEBRUARY 20, 2025

Tim Mackey, Head of Software Supply Chain Risk Strategy at Black Duck, explains: "Attacks on legacy cyber-physical, IoT, and IIoT devicesparticularly in an OT environmentare to be expected and must be planned for as part of the operational requirements for the device. For the latest updates and resources, visit StopRansomware.gov.

Ransomware 112

Ransomware IoT Encryption Social Engineering 112

SecureWorld News

JANUARY 3, 2025

And now, you finally got that call, to be a CISO at an organization. Can you balance the needs of the business, versus the risks they face? Before diving into security strategies, CISOs need to invest time in understanding the organization's culture, strategic roadmaps, operational dynamics, industry, and so forth.

CISO 113

CISO Risk Technology Cybersecurity 113

eSecurity Planet

OCTOBER 18, 2024

They install technologies like firewalls and intrusion detection, keep software up to date, enforce security standards, and choose protocols and best practices. Chief Information Security Officer (CISO) As Chief Information Security Officer, you’ve arrived at the C-Suite. Security Engineer Security engineers build secure systems.

Cybersecurity 125

Cybersecurity Artificial Intelligence Penetration Testing CISO 125

SecureWorld News

MAY 2, 2025

This surge is driven by a convergence of factorsfrom a spike in ransom ware attacks to the digital transformation of healthcarethat CISOs and healthcare executives must understand and act upon. Breaches can disrupt care delivery and put lives at risk, not to mention lead to hefty compliance fines.

Healthcare 95

Healthcare Marketing Cybersecurity CISO 95

The Last Watchdog

JANUARY 8, 2023

Smarter security to me broadly refers to relentlessly focusing on fundamentals while maturing the program, making sure your risk posture aligns with your business strategy. When it comes down to it, C-level goals and CISO initiatives are not all that misaligned. This leads to revenue gains and positive customer outcomes.

Risk 214

Risk Cybersecurity Technology CISO 214

Security Boulevard

JUNE 17, 2025

Pat Opet, CISO at JPMorganChase, recently posted an open letter regarding third-party software risk that was a call to action. In it, he describes the non-negotiable software supply chain risks that are inherent in the software procurement process and issues a clear plea to suppliers: “We need your action.”

CISO 52

CISO Software Risk 52

CyberSecurity Insiders

JANUARY 12, 2022

In this blog, we’ll look at the root causes of concern for today's CISO and share some practical strategies to deter cybercriminals. The CISO role can be an unenviable one. We are living in a software-defined world, and the vulnerability of web apps is a growing problem. If you own the risks, who owns the elimination?

CISO 126

CISO Cybercrime Risk Healthcare 126

CSO Magazine

AUGUST 25, 2022

Cybersecurity and Infrastructure Security Agency (CISA), formed the Information and communications technology (ICT) Supply Chain Risk Management task force in an effort to unite public and private entities with the goal of developing an actionable strategy to enhance supply chain security. To read this article in full, please click here

Software 111

Software CISO Risk Technology 111

SecureWorld News

APRIL 23, 2025

Manufacturing: IP theft and ransomware are top risks; OT/ICS systems still lag in basic controls. The 2025 DBIR is a call to arms for CISOs and security leaders to rethink how they detect, respond to, and recover from breaches. Another challenge is the rapid nature of software development. Your response must be equally fast."

Ransomware 98

Ransomware CISO Backups Risk 98

Security Boulevard

MAY 5, 2025

The post Strengthening Software Security Under the EU Cyber Resilience Act: A High-Level Guide for Security Leaders and CISOs appeared first on Security Boulevard. Get guidance on key tenets of the EU CRA and how Legit can help address them.

CISO 85

CISO Software Risk Government 85

SecureWorld News

FEBRUARY 3, 2025

The DOJ emphasized that the sites marketed these tools as "fully undetectable" by antispam software, further fueling large-scale phishing campaigns. BEC attacks: a growing financial and security risk BEC remains one of the most financially devastating cyber threats, with losses worldwide reaching into the billions.

Phishing 110

Phishing Cybercrime Scams Authentication 110

IT Security Guru

MARCH 28, 2023

As cyber threats increase in frequency and complexity, organizations recognize the importance of having a Chief Information Security Officer (CISO) to protect their sensitive data and infrastructure. Commit to Learning and Participation As a CISO, you probably have an endless to do list of vital chores that can keep you preoccupied.

CISO 109

CISO Information Security Cyber Risk Cyber threats 109

SecureWorld News

JUNE 26, 2023

SolarWinds Corporation, which suffered a major breach of its Orion software platform in December 2020, submitted a U.S. In a LinkedIn post today, June 26th, Jamil Farshchi, EVP and CISO at Equifax, had this to say about the news: "This is a really big deal. federal securities laws."

CISO 111

CISO CSO Data privacy Cyber Risk 111

Security Boulevard

SEPTEMBER 10, 2022

Measure the risk, re-prioritize the roadmap, and grow your current team.". . Transparency will be the key to all security initiatives and potential risks, especially for organizations selling software. The post Cybersecurity Insights with Contrast CISO David Lindner | 9/9 appeared first on Security Boulevard.

CISO 110

CISO Cybersecurity Risk Software 110