Security Boulevard

OCTOBER 17, 2022

With software supply chain attacks ramping up — and presenting a very real new risk category for security teams and CISOs — software bills of materials (SBOMs) are getting the nod from both government and industry experts as a "no brainer.".

Software 122

Software CISO Government Risk 122

Javvad Malik

OCTOBER 29, 2020

The movie starts on the outskirts of a jungle and the CISO (Arnie) with his team land in their helicopters. This is a perfect metaphor for how a CISO operates in day to day situations. This is a reminder to all security pros that they need to continually keep their skills up to date or risk becoming a dinosaur. Well read on.

CISO 246

CISO InfoSec Banking Backups 246

Security Boulevard

JANUARY 18, 2024

Cybersecurity risks increase every year and bludgeon victims who fail to prepare properly. For those interested in a better understanding of the oncoming risks, this is the information you are looking for. It can feel like crossing a major highway while blindfolded. Many never see the catastrophe about to happen, until it occurs.

Risk 115

Risk Cybersecurity CISO Technology 115

Security Boulevard

NOVEMBER 8, 2022

At the Forrester Security & Risk Forum, ReversingLabs Field CISO Matt Rose talks about what an SBOM provides — and how it can be put to good use. The post Forrester Security & Risk talk: Go beyond the SBOM for software supply chain security appeared first on Security Boulevard. Here's a preview.

Software 52

Software Risk CISO 52

CSO Magazine

AUGUST 25, 2022

Cybersecurity and Infrastructure Security Agency (CISA), formed the Information and communications technology (ICT) Supply Chain Risk Management task force in an effort to unite public and private entities with the goal of developing an actionable strategy to enhance supply chain security. To read this article in full, please click here

Software 111

Software CISO Risk Technology 111

IT Security Guru

MARCH 28, 2023

As cyber threats increase in frequency and complexity, organizations recognize the importance of having a Chief Information Security Officer (CISO) to protect their sensitive data and infrastructure. Commit to Learning and Participation As a CISO, you probably have an endless to do list of vital chores that can keep you preoccupied.

CISO 100

CISO Information Security Cyber Risk Cyber threats 100

Security Boulevard

DECEMBER 15, 2022

CISO communication skills have never been more essential. Organizations are facing unprecedented cybersecurity risks, not the least of which are software vulnerabilities that can turn into nightmarish supply chain attacks. Enhancing CISO Communication with Boards and C-Suites in 2023.

CISO 52

CISO Software Risk Cybersecurity 52

Security Boulevard

APRIL 12, 2024

The post Sisense Hacked: CISA Warns Customers at Risk appeared first on Security Boulevard. A hard-coded credential catastrophe: The analytics firm kept big companies’ secrets in an insecure AWS bucket. Government says victims include the “critical infrastructure sector.”

Risk 139

Risk Hacking Government Digital transformation 139

Security Boulevard

MAY 13, 2021

The volume and complexity of risks today’s organizations face are growing exponentially due to rapidly advancing technology and. The post How to Choose the Right Risk Management Software appeared first on Hyperproof. The post How to Choose the Right Risk Management Software appeared first on Security Boulevard.

Risk 85

Risk Software Technology CISO 85

SecureWorld News

JUNE 26, 2023

SolarWinds Corporation, which suffered a major breach of its Orion software platform in December 2020, submitted a U.S. In a LinkedIn post today, June 26th, Jamil Farshchi, EVP and CISO at Equifax, had this to say about the news: "This is a really big deal. federal securities laws."

CISO 87

CISO CSO Data privacy Cyber Risk 87

The Last Watchdog

JANUARY 10, 2022

It’s possible to de-risk work scenarios involving personal data by carrying out a classic risk assessment of an organization’s internal and external infrastructure. This de-risks personal data that does not fit in a separate security contour. Related: The dangers of normalizing encryption for government use. Encryption.

Risk 240

Risk Encryption Data privacy CISO 240

Security Boulevard

MARCH 1, 2021

Even if you haven’t used any Governance, Risk and Compliance (GRC) software yourself, you’re likely familiar with this. The post Many Businesses Have GRC Software, Yet Most Still Struggle to Manage IT Risks Consistently appeared first on Hyperproof.

Risk 118

Risk Software Government CISO 118

Security Boulevard

SEPTEMBER 10, 2022

Measure the risk, re-prioritize the roadmap, and grow your current team.". . Transparency will be the key to all security initiatives and potential risks, especially for organizations selling software. The post Cybersecurity Insights with Contrast CISO David Lindner | 9/9 appeared first on Security Boulevard.

CISO 110

CISO Cybersecurity Risk Software 110

Cisco Security

JANUARY 10, 2022

Over the last few months, we’ve engaged with scores of CISOs in a series of roundtable discussions. There’s potential to optimize communication between senior management teams, advisory boards, executive leadership teams and CISOs. 3: Risk should be a problem shared . 3: Risk should be a problem shared .

CISO 115

CISO Risk Ransomware Marketing 115

IT Security Guru

FEBRUARY 28, 2022

Given the connectivity needs of a remote workforce – and knowing a hybrid workforce is here to stay – many IT teams have had to make sudden changes in the way workers connect to corporate systems that could introduce new cyber risks and vulnerabilities. . Cloud dominance . Security landscape requires adaptation .

CISO 97

CISO Digital transformation Artificial Intelligence Risk 97

The Last Watchdog

MARCH 1, 2023

According to BetterCloud, the average number of software as a service (SaaS) applications used by organizations worldwide has increased 14x between 2015 and 2021. The increasing prevalence of code and services means that software- and code-related risks will not dissipate any time soon.

Authentication 222

Authentication CISO Passwords Software 222

Notice Bored

AUGUST 5, 2022

Other slides in the deck appear to equate ' security posture ' to vulnerability management and software/systems patching - a rather narrow/specific technical concern for metrics suggested to senior management, although arguably it is a major factor in cybersecurity - or to security strategy.

CISO 63

CISO Risk Artificial Intelligence Marketing 63

The Security Ledger

OCTOBER 7, 2021

Pondurance CISO Dustin Hutchison joins me to talk about how companies can operationalize MDR within their environment. The post Spotlight: Operationalizing MDR with Pondurance CISO Dustin Hutchison appeared first on The Security Ledger with Paul F. Dustin Hutchison is CISO at Pondurance. Click the icon below to listen.

CISO 98

CISO InfoSec Backups Ransomware 98

CyberSecurity Insiders

JANUARY 12, 2022

In this blog, we’ll look at the root causes of concern for today's CISO and share some practical strategies to deter cybercriminals. The CISO role can be an unenviable one. We are living in a software-defined world, and the vulnerability of web apps is a growing problem. If you own the risks, who owns the elimination?

CISO 126

CISO Cybercrime Risk Healthcare 126

Security Boulevard

MAY 5, 2023

Discuss risks, threats, and recovery from them." Insight #2 " The simplicity of the first draft of the secure software implementation attestation form by CISA and OMB is refreshing. The post Cybersecurity Insights with Contrast CISO David Lindner | 5/5 appeared first on Security Boulevard.

CISO 69

CISO Cybersecurity Data breaches Software 69

SC Magazine

JUNE 10, 2021

Dawn Cappelli is VP and CISO at Rockwell Automation. Cappelli started at Rockwell as director of insider risk. Instead, an effective CISO works with the teams across the company and is viewed as a business partner. A CISO needs to bring business value to the company. CISOs usually “grow up” in IT security.

CISO 108

CISO Risk Manufacturing Cybersecurity 108

The Last Watchdog

APRIL 29, 2020

Many organizations have picked up on that, yet haven’t been able to manage the devices being used by employees and third parties, such as contractors, vendors and software developers. Some CISOs, at first, were reserved and said, ‘We’re not moving to the cloud.’ Nassar We’re in a very mobile environment.

Mobile 193

Mobile CISO Risk Cloud Migration 193

The Security Ledger

OCTOBER 7, 2021

Pondurance CISO Dustin Hutchison joins me to talk about how companies can operationalize MDR within their environment. The post Spotlight: Operationalizing MDR with Pondurance CISO Dustin Hutchinson appeared first on The Security Ledger with Paul F. Dustin Hutchinson is CISO at Pondurance. Click the icon below to listen.

CISO 97

CISO InfoSec Backups Ransomware 97

The Last Watchdog

MARCH 4, 2024

Assess risks. Creating a solid cybersecurity foundation begins with understanding the organization’s risks. A recent study found only 27% of charities undertook risk assessments in 2023 and only 11% said they reviewed risks posed by suppliers. Keep software updated.

Social Engineering 213

Social Engineering Risk Cybersecurity Authentication 213

SecureWorld News

AUGUST 5, 2021

A group of investors filed the suit which specifically calls out SolarWinds, its former CEO, and also Tim Brown, who is VP of Security and CISO. This week, SolarWinds fired back on the lawsuit's claims and accusations as it defended its CISO and its own cybersecurity actions in court.

CISO 98

CISO Passwords Software Cybersecurity 98

CyberSecurity Insiders

JUNE 8, 2023

Zero trust provides a risk-based approach to access control and data protection, allowing organizations to enforce granular access controls based on user roles, responsibilities, and context, and minimize the risk of data breaches and compliance violations.

CISO 87

CISO Cyber threats Risk Cybersecurity 87

CyberSecurity Insiders

MARCH 16, 2022

The research was compiled by Cider Security along with experts from Netflix, Atlassian, Mozilla, Lemonade Insurance, Rapid7, Databricks, and the former CISOs of Twitter and LivePerson. CI/CD environments, processes, and systems are the beating heart of any modern software organization. The risks outlined are: . Press Contact.

Risk 109

Risk CISO Insurance Engineering 109

Security Boulevard

JULY 13, 2023

In a move that further strengthens its commitment to empowering organizations with innovative risk and analytics management solutions, Incisive Software is excited to announce its partnership with Alteryx, a leading provider of data analytics platforms.

Government 98

Government Software Risk CISO 98

Security Boulevard

MAY 1, 2024

In the span of just a few years, software supply chain security has evolved from being a niche security topic to a top priority for development organizations, security practitioners and CISOs alike. The post What’s hot at RSAC 2024: 8 SSCS talks you don’t want to miss appeared first on Security Boulevard.

Cyber Risk 69

Cyber Risk CISO Software Risk 69

Lenny Zeltser

OCTOBER 5, 2023

As the CISO at a tech company, my responsibilities include empowering our software engineering teams to maintain a strong security posture of our products. Understand the Teams' Motivations To collaborate with software teams, first understand their worldview. Be pragmatic in deciding what residual risk levels are acceptable.

Engineering 62

Engineering Software Risk CISO 62

The Last Watchdog

JANUARY 8, 2023

Smarter security to me broadly refers to relentlessly focusing on fundamentals while maturing the program, making sure your risk posture aligns with your business strategy. When it comes down to it, C-level goals and CISO initiatives are not all that misaligned. This leads to revenue gains and positive customer outcomes.

Risk 214

Risk Cybersecurity Technology CISO 214

Security Boulevard

JULY 19, 2022

The Log4j vulnerabilities discovered in 2021 continue to pose significant risks to organizations worldwide. The Cyber Safety Review Board (CSRB) released a series of recommendations aimed at addressing that risk and underscoring the need for additional funding to support the open source software community.

Risk 119

Risk Software CISO Security Awareness 119

The Last Watchdog

DECEMBER 14, 2023

Last Watchdog posed two questions: •What should be my biggest takeaway from 2023, with respect to mitigating cyber risks at my organization? CISOs will have to get quantum resilient encryption on their cyber roadmap. Many API vulnerabilities also expose business logic functions in the software.

Cybersecurity 234

Cybersecurity Marketing Encryption CISO 234

The Last Watchdog

JANUARY 17, 2022

This reporting often requires a host of metrics that define success, like Annual Recurring Revenue and sales for software as a service (SaaS) companies. having only a certain number of “allowable” vulnerabilities before releasing software) are the only targets, there are few ways of predicting success. Related: Automating SecOps.

CISO 240

CISO Software B2B Marketing 240

SC Magazine

FEBRUARY 4, 2021

While technically part of the c-suite, CISOs historically received less attention within a company than your average CEO or chief financial officer. CISOs] are in more conversations, they’re asked for input,” said Leo Taddeo, chief security officer for Cyxtera. Our profile is certainly getting higher. Failure to communicate.

CISO 115

CISO Digital transformation Insurance Risk 115

Security Boulevard

OCTOBER 7, 2022

7 Things Every CISO Needs to Know About PKI. With PKI, CISOs and other information security specialists can implement hardware, software, policies, and procedures to better establish, manage, distribute, implement, and protect digital certificates and key policies. Reduce risk and achieve compliance. Alexa Cardenas.

CISO 52

CISO Risk Cyber Attacks Technology 52

SecureWorld News

AUGUST 12, 2020

Each student gets paired with a Chief Information Security Officer (CISO) to test cybersecurity tools for organizations. Flavio Villanustre, a vice president of technology and CISO for LexisNexis Risk Solutions, is an adviser for the program. How does the cybersecurity mentorship program work?

CISO 81

CISO Cybersecurity Education Technology 81