Krebs on Security

DECEMBER 18, 2018

KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Not that these roles are somehow more or less important than that of a CISO/CSO within the organization.

CSO 254

CSO CISO Marketing Banking 254

Tech Republic Security

OCTOBER 26, 2020

98% of enterprises want CSOs, but 56% of industrial businesses don't have plans to introduce one to their company, according to a new Kaspersky report.

CSO 180

CSO Cybersecurity 180

The Last Watchdog

NOVEMBER 12, 2024

Daniel Lakier , Field CSO, Myriad360 Lakier Cyber professionals represent the companies they work for and are meant to protect them. Richard Bird , CSO, Traceable Bird These penalties are hollow.The SEC fixates on time-to-report metrics and vague “materiality” without defining it.

CISO 263

CISO CSO Risk Cyber threats 263

Schneier on Security

APRIL 3, 2020

However, CSO's investigation shows that the bug bounty platforms have turned bug reporting and disclosure on its head, what multiple expert sources, including HackerOne's former chief policy officer, Katie Moussouris, call a "perversion." [.]. Leitschuh, the Zoom bug finder, agrees.

CSO 263

CSO Marketing 263

Krebs on Security

JULY 21, 2023

A review of the executives pages published by the 2022 list of Fortune 100 companies found only four — BestBuy , Cigna , Coca-Cola , and Walmart — that listed a Chief Security Officer (CSO) or Chief Information Security Officer (CISO) in their highest corporate ranks. Nor is the average pay hugely different among all these roles.

CSO 245

CSO CISO Insurance Risk 245

Security Boulevard

MAY 26, 2025

In this post, we look at a few of the highlights, focusing on the work of three Tenable thought leaders: information security engineer Arnie Cabral, CSO Robert Huber and CIO Patricia Grant. Ultimately, you cant do exposure management the right way without a strong relationship between the CIO and the CSO, she wrote.

CSO 52

CSO Risk Cyber Risk Engineering 52

CSO Magazine

JULY 26, 2022

Get the latest from CSO by signing up for our newsletters. ]. ISACs also facilitate the sharing of data between public and private sector groups. Learn what you need to know about defending critical infrastructure. |

Cyber threats 142

Cyber threats CSO 142

The Last Watchdog

APRIL 20, 2023

Guest expert: Scott Gerlach, CSO, StackHawk We had a great conversation about how the venerable “ shift left ” security philosophy is being refined so that it better aligns with the way software gets developed today – at light speed.

CSO 201

CSO Software Internet Internet 201

Security Boulevard

APRIL 3, 2023

Out of an abundance of caution, we replaced our RSA SSH host key used to secure Git operations for GitHub.com,” GitHub CSO and SVP. In an attempt to get ahead of fallout from the exposure of its private SSH key in a public repository, the software development platform GitHub proactively rotated its host key last week.

CSO 124

CSO Software Risk Government 124

Security Boulevard

NOVEMBER 9, 2023

Den Jones shares his perspective as a CSO on the recent Okta breach, and what that means for the broader security community. The post CSO’s Perspective: The Okta Breach and What It Means to the Broader Community first appeared on Banyan Security.

CSO 115

CSO 115

The Last Watchdog

MAY 5, 2022

About the essayist: Den Jones, CSO at Banyan Security , which supplies s imple, least-privilege, multi-cloud application access technologies. Food for thought, eh!

Ransomware 247

Ransomware Risk Internet Internet 247

The Last Watchdog

MAY 5, 2025

Jay” Abdullah , Mastercards Deputy CSO who gave a keynote address at The CSA Summit from Cloud Security Alliance at RSAC 2025. And also that intuitive, discerning human oversight is going to be essential at every step. Abdullah Lets start with Dr. Alissa “Dr.

Engineering 130

Engineering DDOS Threat Detection Risk 130

SecureWorld News

MAY 2, 2024

RELATED: Uber CSO Found Guilty: The Sky Is Not Falling. Similarly, SolarWinds and its Chief Information Security Officer faced fraud and internal control failure charges from the SEC. These incidents underscore the critical importance of effective governance in cybersecurity programs.

CISO 103

CISO Government CSO Artificial Intelligence 103

Security Boulevard

MARCH 7, 2025

(Source: ISACAs Tech Workplace and Culture 2025 report, March 2025) For more information about recruiting and retaining cybersecurity professionals: 10 Ways to Boost Cybersecurity Talent Retention (InformationWeek) 60% of cybersecurity pros looking to change employers (CSO) The cybersecurity industry has an urgent talent shortage.

Cybersecurity 64

Cybersecurity Scams CSO Risk 64

Adam Shostack

JANUARY 2, 2025

It is not a book for the CSO. I'm giving little away by saying the twist is that attackers do innovate, and it's a surprisingly solid frame on which Kip hangs a readable and actionable book for executives who need to make cybersecurity decisions. And it doesn't fall into the jargon trap either in security or management.

CSO 130

CSO Cyber Risk Backups Risk 130

SecureWorld News

AUGUST 14, 2024

If you would like to learn more about PQC, SecureWorld recently hosted a Remote Sessions broadcast in which Keyfactor CSO Chris Hickman offered an in-depth primer on PQC fundamentals for practical application. You may view the session on-demand here. Follow SecureWorld News for more stories related to cybersecurity.

CSO 113

CSO Encryption System Administration Backups 113

Cisco Security

SEPTEMBER 20, 2022

As Diana Kelley, CSO and CISO at Cybrize notes, “it’s not about giving up, it’s about being better prepared.” If threats do compromise your business, time is of the essence when it comes to detection, response, and recovery. The longer an organization is unable to operate normally, the more at risk it becomes for damaging financial losses.

CISO 143

CISO CSO Risk 143

SecureWorld News

JUNE 26, 2023

[RELATED: Suing the CISO: SolarWinds Fires Back ] Shawn Tuma, Co-Chair, Data Privacy & Cybersecurity Practice, at Spencer Fane, LLP and frequent SecureWorld instructor and speaker, offered this perspective: "The law evolves in incremental steps and, in my opinion, what this shows is a very early in developing—yet consistent—trend toward trying (..)

CISO 112

CISO CSO Data privacy Cyber Risk 112

SecureWorld News

NOVEMBER 16, 2023

Glenn Kapetansky, CSO and Technology Lead at Trexin, had this to say about Bogac, whom he knows well: "I know Amy Bogac both professionally and personally, and she is well regarded in both circles.

CISO 112

CISO Cybersecurity CSO Risk 112

Duo's Security Blog

NOVEMBER 20, 2023

“It took nearly 11 months (328 days) to identity and contain data breaches resulting from stolen or compromised credentials.” – IBM’s Cost of Data Breach Report 2023 I recently came across a 2012 article from CSO Online , and realized that it has been more than 11 years since the phrase “Identity is the new perimeter” was coined!

Threat Detection 138

Threat Detection Authentication Accountability Data breaches 138

BH Consulting

APRIL 30, 2025

CSO Online marked the progress as 66 per cent done. The company says 99.2 per cent development pipelines are fully inventoried with enforced security measures. The initiative also emphasises a security-first culture, with security now included as part of performance reviews.

Data breaches 59

Data breaches Scams Cybercrime Engineering 59

Jane Frankland

APRIL 15, 2025

One of my friends, Greg van der Gaast tells this great story that perfectly illustrates one of the biggest challenges we face in cybersecurity today. It goes something like this… “Imagine someone who loves coffee. They have a fantastic coffee shop just steps from their home, serving the best lattes and espressos in town.

Risk 100

Risk Technology Cybersecurity Security Awareness 100

SecureWorld News

DECEMBER 9, 2024

The Chief Information Security Officer (CISO) has become one of the most critical roles in modern organizations. Tasked with safeguarding data and infrastructure, CISOs face mounting pressures as cyber threats escalate, regulatory demands grow, and the role expands to encompass strategic business responsibilities.

CISO 104

CISO Cyber threats Risk Cybersecurity 104

SecureWorld News

MAY 29, 2024

A: Arlan McMillian —now CSO at Kirkland & Ellis LLP—was one of my early mentors and helped me understand what it took to be a leader in the cyber community and profession. Q: In honor of our 2024 conference theme, Legacies Untold: Revealing Cybersecurity's Hidden Figures , who is someone that you consider to be a Cyber Hero?

Cybersecurity 114

Cybersecurity CSO Technology Telecommunications 114

Security Boulevard

FEBRUARY 14, 2025

For more information about recent ransomware trends and incidents: Ransomware: Predictions and Actions in 2025 (SC Magazine) New ransomware group Funksec is quickly gaining traction (CSO) Ransomware isn't always about the money: Government spies have objectives, too (Dark Reading) Ransomware isn't always about the money: Government spies have (..)

Banking 64

Banking Cybercrime Cybersecurity Ransomware 64

SecureWorld News

MAY 23, 2024

And the recent clarifications—focusing on material cybersecurity incidents—is a step in the right direction," said Glenn Kapetansky , CSO, Trexin Group. "In "The SEC's intent in their latest cybersecurity incident disclosure rules—to enhance transparency for investors—is good.

CISO 109

CISO CSO Risk Cybersecurity 109

Security Boulevard

MAY 16, 2025

My absolute congratulations and respect to Coinbase executive leadership: Brian Armstrong CEO, Jeff Lunglhofer CISO, and Philip Martin CSO The post Coinbase Hacked and Turns the Tables on the Cybercriminals! Craft your defense and response capabilities to be able to respond like Coinbase, in the unfortunate event of a breach.

Hacking 66

Hacking CSO Social Engineering CISO 66

Thales Cloud Protection & Licensing

OCTOBER 28, 2024

At that time generative AI was not a major consideration and novel privacy-preserving techniques (PPT) were not featured heavily on a CSO 5yr budgetary plan. The world has changed. The responsible use of GenAI, and adoption of PPT play a crucial role in aligning with DORA legislation while safeguarding sensitive data.

Encryption 62

Encryption Risk Data privacy Artificial Intelligence 62

Security Boulevard

MAY 9, 2025

Evan Schuman has written a timely article in CSO , articulating many of the risks that both users and employers should avoid. The industry pushback was immediate and it looks like Microsoft is listening. They are delaying the release, probably to better understand the potential risks.

CSO 59

CSO Architecture Risk Marketing 59

SecureWorld News

DECEMBER 11, 2023

Understanding the nature of the threat and how to appropriately mitigate that risk should be a shared responsibility, not solely the purview of the CISO or CSO. I would think that boards would want to have that experience, even though it is somewhat difficult to come by.

CISO 104

CISO Risk Government CSO 104

Security Boulevard

JUNE 6, 2025

critical infrastructure must be ready for cyber war In addition to preventing and mitigating standalone cyber threats and attacks, U.S. critical infrastructure organizations must have a plan in case a lengthy, widespread cyber war breaks out.

CISO 52

CISO Cybersecurity Cyber threats Government 52

Security Boulevard

APRIL 21, 2025

In this post, Tenable CSO Robert Huber shares practical advice on using an exposure management program to focus on risks that have business impact. Each Monday, the Tenable Exposure Management Academy provides the practical, real-world guidance you need to shift from vulnerability management to exposure management.

Risk 52

Risk CSO Software 52

Tech Republic Security

OCTOBER 21, 2024

CISA advisor Nicole Perlroth closed out ISC2 Security Congress’ keynotes with a wake-up call for security teams to watch for nation-state-sponsored attacks.

Cyber Attacks 193

Cyber Attacks Big data CSO Healthcare 193

SecureWorld News

AUGUST 21, 2024

I really respect Dave Kennedy, who is an extremely successful member of the security community having started two security companies after being a CSO himself. A: Maybe obvious, but the first "hackers" I ever saw was Kevin Mitnick (RIP). Q: Lastly, what are you most looking forward to at your regional SecureWorld conference this year?

Cybersecurity 104

Cybersecurity Energy and Utilities CISO CSO 104

The Last Watchdog

APRIL 11, 2024

In addition, 15 of today’s most successful business leaders back the company, including Olivier Pomel, Co-founder and CEO at Datadog; Pankaj Patel, Co-founder and CEO at Nile; Diogo Monica, Co-founder and CEO at Anchorage Digital; Joe Sullivan, former CSO at Facebook, Uber and CloudFlare; Bharat Shah, former CVP of Microsoft Security; Suresh Batchu, (..)

CSO 100

CSO Marketing Risk CISO 100

SecureWorld News

MAY 21, 2024

RELATED: Uber CSO Found Guilty: The Sky Is Not Falling. Having dedicated privacy personnel helps centralize expertise, authority, and accountability. " Jaworski added.

Data privacy 109

Data privacy CISO Small Business CSO 109

eSecurity Planet

APRIL 27, 2023

“The software supply chain issues identified … in OpenAI’s breach are not surprising, as most organizations are struggling with these challenges, albeit perhaps less publicly,” said Peter Morgan, who is the co-founder and CSO of Phylum.io, a cybersecurity firm that focuses on the supply chain.

Engineering 116

Engineering Risk CSO Software 116