Security Boulevard

MAY 24, 2024

Insight #1 Tool consolidation continues, with Palo Alto’s plans to absorb IBM's QRadar software. This movement will continue and makes sense for the consumers of security software, as well. The post Cybersecurity Insights with Contrast CISO David Lindner | 5/24/24 appeared first on Security Boulevard. This can’t go on.

CISO 62

CISO Cybersecurity Software 62

Dark Reading

FEBRUARY 28, 2023

The biggest dilemmas in running a modern cybersecurity team are not all about software, said CISOs from HSBC, Citi, and Sepio.

CISO 121

CISO Cybersecurity Software 121

Tech Republic Security

MARCH 24, 2023

The post Even after armed with defense tools, CISOs say successful cyberattacks are ‘inevitable’: New study appeared first on TechRepublic. Cisco’s just-released 2023 Cybersecurity Index shows companies will invest more in security, but the solution may be a larger tent, not more umbrellas.

CISO 197

CISO Cybersecurity Software 197

Veracode Security

OCTOBER 2, 2023

As a CISO, my team and I advocate for these practices constantly within our organization. Software Updates – The Why & How Software updates are essential for keeping your computer secure and up-to-date. To secure our world, Cybersecurity Awareness Month encourages four steps that make it easy to stay safe online.

CISO 114

CISO Software Cybersecurity 114

Javvad Malik

OCTOBER 29, 2020

The movie starts on the outskirts of a jungle and the CISO (Arnie) with his team land in their helicopters. This is a perfect metaphor for how a CISO operates in day to day situations. It represents a struggle many CISO’s around the world face. This shows how quickly a CISO can get burnt out on the job.

CISO 246

CISO InfoSec Banking Backups 246

Security Boulevard

JANUARY 4, 2023

That has CISOs and boards worried. Learn from these notable 2022 software supply chain attacks. . The post 10 software supply chain attacks you can learn from appeared first on Security Boulevard. Supply chain attacks are surging — and no one is immune.

Software 112

Software CISO 112

Security Boulevard

SEPTEMBER 1, 2022

Interview with Mike Manrod, CISO, and Christian Taillon, IT Security Engineer at Grand Canyon Education. The post DHS Calls for “Excellence in Software” in Log4j Report appeared first on Security Boulevard.

Software 132

Software CISO Education Engineering 132

CSO Magazine

JANUARY 31, 2022

It’s still early days, but if this year is anything like years past, it’s safe to say CISOs will have a lot to contend with, from a continuing labor shortage to the increasing sophistication of cyberattacks to an ongoing threat from nation-state actors. However, they also have plenty of ideas on how they’ll tackle those challenges.

CISO 98

CISO Software 98

Security Boulevard

NOVEMBER 3, 2023

The post Cybersecurity Insights with Contrast CISO David Lindner | 11/3 appeared first on Security Boulevard. The most troubling part of this isn’t that they can’t find people to hire; it's that they aren’t actually hiring, leaving holes in their ability to protect their organization.

CISO 113

CISO Cybersecurity Software 113

Security Boulevard

FEBRUARY 5, 2021

This CISO‘s guide to secure software development can help. The post CISO’s Guide to Secure Software Development appeared first on Security Boulevard.

Software 111

Software CISO Information Security Security Awareness 111

Security Boulevard

DECEMBER 15, 2023

Insight #1 2023 saw the "transparency" movement continue for software organizations. In 2024, this will continue, and we as software organizations should fully embrace it and start following frameworks like the Minimum Viable Secure Product (MVSP) controls, which are important for vulnerability management.

CISO 62

CISO Cybersecurity Software 62

Security Boulevard

APRIL 14, 2023

Insight #2 " June 14 th is getting ever so close (timeline for compliance with OMB 22-18), are you ready to start providing security self-attestations and SBOMs for your software?" Insight #3 " If you are not generating SBOMs at runtime, how can you assure the accuracy of your SBOM?"

CISO 98

CISO Cybersecurity Software 98

Security Boulevard

MARCH 3, 2023

Have you started pulling together information for the government’s requirement of self-attestation as to the security practices you follow in your SDLC for any software used or purchased by the U.S. The post Cybersecurity Insights with Contrast CISO David Lindner | 3/3 appeared first on Security Boulevard. federal government?

CISO 111

CISO Cybersecurity Insurance Software 111

Security Boulevard

OCTOBER 17, 2022

With software supply chain attacks ramping up — and presenting a very real new risk category for security teams and CISOs — software bills of materials (SBOMs) are getting the nod from both government and industry experts as a "no brainer.".

Software 120

Software CISO Government Risk 120

SecureWorld News

JUNE 26, 2023

SolarWinds Corporation, which suffered a major breach of its Orion software platform in December 2020, submitted a U.S. In a LinkedIn post today, June 26th, Jamil Farshchi, EVP and CISO at Equifax, had this to say about the news: "This is a really big deal. federal securities laws."

CISO 87

CISO CSO Data privacy Cyber Risk 87

Security Boulevard

OCTOBER 14, 2022

And if we are getting what we wish for, expand these labels to all software.". . Keeping software up to date is one of the best ways to prevent successful attacks. Maybe it’s time we have a “Patch Monday” for the masses to make sure their most often used software is up to date with the latest security patches.". .

CISO 102

CISO Cybersecurity IoT Security Awareness 102

Malwarebytes

NOVEMBER 1, 2023

The Securities and Exchange Commission (SEC) has announced charges against software company SolarWinds Corporation and its chief information security officer (CISO), Timothy G. Brown, for “fraud and internal control failures relating to allegedly known cybersecurity risks and vulnerabilities.”

CISO 100

CISO Risk Software Cybersecurity 100

Security Boulevard

MARCH 31, 2023

Without a significant increase in budget for cyber security, the ability to execute on the recent executive orders, operational directives, and cyber security strategy won’t be successful." Insight #3 " Generative AI is exciting for software developers, and it should be.

CISO 103

CISO Cybersecurity Software 103

Security Boulevard

DECEMBER 15, 2022

CISO communication skills have never been more essential. Organizations are facing unprecedented cybersecurity risks, not the least of which are software vulnerabilities that can turn into nightmarish supply chain attacks. Enhancing CISO Communication with Boards and C-Suites in 2023.

CISO 52

CISO Software Risk Cybersecurity 52

Security Boulevard

NOVEMBER 22, 2023

Chief information security officers (CISOs) should proactively implement strategies and protect their infrastructures against hacking months and weeks leading up to this busy time of the year.  Top holiday cybersecurity tips for CISOs With so many things going on, where should you focus your resources?

CISO 67

CISO Cybersecurity Phishing Backups 67

Threatpost

OCTOBER 13, 2021

Sounil Yu, CISO at JupiterOne, discusses software bills of materials (SBOMs) and the need for a shift in thinking about securing software supply chains.

Software 114

Software CISO InfoSec 114

Security Boulevard

DECEMBER 16, 2022

Lobbying from ITIC has pushed back on the recent OMB 22-18 directive to require self-attestations and SBOMs from software vendors selling to the US Government. It’s time we all start being more transparent about our secure software development processes and stop delaying the inevitable.". . Insight #1. ". Insight #2. ".

CISO 98

CISO Cybersecurity Government Accountability 98

InfoWorld on Security

JULY 19, 2022

Who owns software supply chain security? In the past, the CIO, CISO, or CTO and their security team would decide which Linux distribution, operating system, and infrastructure platform the company would be getting its support contracts and security SLAs from. Developers? Or the platform and security engineering teams supporting them?

Software 115

Software CISO Engineering 115

CSO Magazine

SEPTEMBER 16, 2022

Earlier this week, Chris DeRusha, federal CISO and deputy national cyber director in the White House, announced the release of Office of Management and Budget (OMB) guidance to ensure federal agencies rely only on software that has been built following standard cybersecurity practices. To read this article in full, please click here

Software 108

Software CISO Cybersecurity 108

IT Security Guru

MARCH 28, 2023

As cyber threats increase in frequency and complexity, organizations recognize the importance of having a Chief Information Security Officer (CISO) to protect their sensitive data and infrastructure. Commit to Learning and Participation As a CISO, you probably have an endless to do list of vital chores that can keep you preoccupied.

CISO 86

CISO Information Security Cyber Risk Cyber threats 86

Dark Reading

AUGUST 24, 2022

SolarWinds CISO Tim Brown explains how organizations can prepare for eventualities like the nation-state attack on his company’s software.

CISO 94

CISO Software 94

CSO Magazine

AUGUST 25, 2022

From the CISO perspective, a recent industry report from Coalfire on Software Supply Chain Risk hit the nail on the head: “Managing risk within software supply chains and product development lifecycles has become as important as protecting traditional, physical inventories and equipment supply lines.”

Software 111

Software CISO Risk Technology 111

The Security Ledger

OCTOBER 7, 2021

Pondurance CISO Dustin Hutchison joins me to talk about how companies can operationalize MDR within their environment. The post Spotlight: Operationalizing MDR with Pondurance CISO Dustin Hutchison appeared first on The Security Ledger with Paul F. Dustin Hutchison is CISO at Pondurance. Click the icon below to listen.

CISO 98

CISO InfoSec Backups Ransomware 98

Tech Republic Security

DECEMBER 4, 2023

Recorded Future CISO Jason Steer said software digital supply chains are one of the top risks being faced. The ASEAN region is seeing more cyber attacks as digitisation advances.

Risk 175

Risk CISO Cyber Attacks Software 175

Security Boulevard

JANUARY 25, 2023

And though apps get most of the credit, application programming interfaces, or APIs, provide the underlying connectivity between software and services that make it all possible. The post 5 Reasons Why CISOs are Investing in API Security appeared first on Security Boulevard. And API attacks have unfortunately been on the rise.

CISO 76

CISO Digital transformation Software 76

Security Boulevard

MARCH 10, 2023

Providing SBOMs should be standard for any software producer." Insight #2 " The tech industry is fast to adopt some of the new AI functionality provided by ChatGPT, Google, Microsoft, and others. and like 75% of other CISOs, I believe there will be a serious email-born attack in the next year." Phishing continues to plague the world.

CISO 62

CISO Cybersecurity Phishing Software 62

IT Security Guru

JUNE 7, 2024

Update Your Software Ensuring that all personnel within your organization maintain their software current is paramount. Security updates are automatically applied when utilizing cloud-based software. Foster accountability among your team by employing software that prompts users to install updates on their individual devices.

Cybersecurity 112

Cybersecurity CISO Passwords Backups 112

Security Boulevard

SEPTEMBER 23, 2022

Empowering developers will be critical in moving the software security bar over the next decade. The post Cybersecurity Insights with Contrast CISO David Lindner | 9/23 appeared first on Security Boulevard. The pace of development and growth of the number of developers far outpaces those dedicated to security.

CISO 97

CISO Cybersecurity Government Software 97

Security Boulevard

SEPTEMBER 10, 2022

Transparency will be the key to all security initiatives and potential risks, especially for organizations selling software. The post Cybersecurity Insights with Contrast CISO David Lindner | 9/9 appeared first on Security Boulevard. Insight #3. ". Be transparent and start today.". . . .

CISO 108

CISO Cybersecurity Risk Software 108

The Security Ledger

OCTOBER 7, 2021

Pondurance CISO Dustin Hutchison joins me to talk about how companies can operationalize MDR within their environment. The post Spotlight: Operationalizing MDR with Pondurance CISO Dustin Hutchinson appeared first on The Security Ledger with Paul F. Dustin Hutchinson is CISO at Pondurance. Click the icon below to listen.

CISO 97

CISO InfoSec Backups Ransomware 97

Security Boulevard

MARCH 24, 2023

Insight #1 " Cybersecurity is no longer just a CISO or CIO problem, it’s a business problem. These systems typically run out of date software and are extremely difficult to update, a malicious actor’s playground. The post Cybersecurity Insights with Contrast CISO David Lindner | 3/24 appeared first on Security Boulevard.

CISO 52

CISO Cybersecurity Software 52

Security Boulevard

AUGUST 26, 2022

We continue to see zero days found that have been in software for many years. The post Cybersecurity Insights with Contrast CISO David Lindner | 8/26 appeared first on Security Boulevard. Insight #2. ". One of the most recent was an 8-year-old Linux kernel vulnerability.

CISO 98

CISO Cybersecurity Phishing Software 98