CSO Global Intelligence Report: The State of Cybersecurity in 2021

CSO Magazine

That’s the clear message of CSO’s Global Intelligence Report: The State of Cybersecurity in 2021, fielded via online survey in May and June of this year.

CSO 111

The Uber CSO indictment

Adam Shostack

Mark Rasch, who created the Computer Crime Unit at the United States Department of Justice, has an essay, “ Conceal and Fail to Report – The Uber CSO Indictment.”

CSO 116
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Summer Webinar Series with CSO Sam Curry

Security Boulevard

Join Cybereason CSO Sam Curry for this webinar series where he revisits some of the cybersecurity highlights of the first half of 2021, from the SolarWinds supply chain attacks to DarkSide and other major ransomware operations.

CSO 87

CSO Hall of Fame honorees

CSO Magazine

The CSO Hall of Fame was created to spotlight outstanding leaders who have significantly contributed to the practice of information risk management and security. Their work has advanced the CSO/CISO role, secured business, and inspired others in the industry.

CSO 60

The CSO guide to top security conferences, 2020

CSO Magazine

From major events to those that are more narrowly focused, this list from the editors of CSO, will help you find the security conferences that matter the most to you.

CSO 103

Data Privacy Is in 23andMe CSO's DNA

Dark Reading

How serious is the company about safeguarding its customers and their genetic information? We're hiding data even from ourselves," says the biotech and genetic testing company's head of security

CSO 64

The CSO role today: Responsibilities and requirements for the top security job

CSO Magazine

CSO definition. A CSO is a departmental leader responsible for information security, corporate security or both. That's the simplest answer to the question "What is a CSO?", At many companies, the term CSO is still used in this way.

CSO 76

CSO on AppSec at the Speed of Devops

Adam Shostack

“ 20 Ways to Make AppSec Move at the Speed of DevOps ” is in CSO. It’s a good collection, and I’m quoted. Security Software Engineering

CSO 100

SAP CSO: Security Requires Context

Dark Reading

SAP CSO Justin Somiani discusses three scenarios Security depends on the apps and networks it protects.

CSO 42

Enterprises confident Chief Sustainability Officer (CSO) will improve cybersecurity

Tech Republic Security

98% of enterprises want CSOs, but 56% of industrial businesses don't have plans to introduce one to their company, according to a new Kaspersky report

CSO 111

CSO's ultimate guide to security and privacy laws, regulations, and compliance

CSO Magazine

CSO's ultimate guide to security and privacy laws, regulations, and compliance Security and privacy laws, regulations, and compliance: The complete guide This directory includes laws, regulations and industry guidelines with significant security and privacy impact and requirements.

CSO 77

Ransomware and the C-I-A Triad

Security Boulevard

CISO Suite Cyberlaw Security Bloggers Network availability Confidentiality CSO/CISO Perspectives Cyber-Physical Systems cybercrime Cyberwarfare General Integrity ransom payments Ransomware SpotlightIn earlier, more innocent (?) times, cyberattacks seemed to be fairly straightforward.

CSO 113

Former Uber CSO Charged in Hack Cover-up

Dark Reading

The charges stem from a 2016 attack in which 57 million records were breached

CSO 63

Intelligent Waves LLC Promotes John Hammes to Chief Strategy Officer (CSO)

CyberSecurity Insiders

The post Intelligent Waves LLC Promotes John Hammes to Chief Strategy Officer (CSO) appeared first on Cybersecurity Insiders RESTON, Va.–( –( BUSINESS WIRE )– ?Intelligent Intelligent Waves (IW?) , a leading-edge trusted IT systems integrator that delivers high-impact transformational IT solutions to Government’s most mission-critical challenges, announced it promoted John Hammes as its new Chief Strategy Officer.

CSO 40

CSO of the Year | Dan Meacham helps Legendary Entertainment’s movie magic live safely in the cloud

SC Magazine

Dan Meacham is chief information security officer and CSO with Legendary Entertainment, the production company behind Godzilla vs. Kong and other popular films such as The Dark Knight and Jurassic World.

CSO 68

Cybersecurity Lessons from the Pandemic: Why Not

Security Boulevard

CISO Suite Security Bloggers Network Cost Anxiety COVID-19 CSO/CISO Perspectives Cybersecurity General Human Elements SpotlightYou might notice there’s no question mark at the end of the title. That is intentional. In a May 18, 2021 Opinion article in The New York Times by Dr. Sema K.

CISO Interview Series: How Aiming for the Sky Can Help Keep Your Organization Secure

Security Boulevard

CISO Suite Data Security Security Bloggers Network Business CISO CSO IT Security and Data Protection SkillsOrganizations need the right internal personnel like a CISO to keep their systems and data secure. But what kind of skills do these leaders need?

CISO 87

RFP Lessons Learned by Oracle's CSO from Monty Python

eSecurity Planet

At the RSA Conference, Oracle's CSO used humorous anecdotes to help provide best practices on what not to do when building a security questionnaire

CSO 40

Podcast Episode 113: SAP CSO Justin Somaini and Election Hacks – No Voting Machines Required!

The Security Ledger

SAP CSO Justin Somaini. Somaini has the distinction of being the first CSO at Yahoo and also at Symantec. CSO cybereason DHS elections Podcasts SAP Top Stories voting APT hacking Internet of Things vulnerabilitiesEverybody worries about hacked voting machines. But an exercise in Boston last week showed how hackers can compromise the vote without ever touching an election system. Also: October is just around the corner and that means Cyber Security Awareness Month is upon us.

CSO 40

CSO's Guide to 'Employee-First' Security Operations During COVID-19 & Beyond

Dark Reading

As the work-at-home environment continues to inform new ways of doing business, it's important that security teams remain flexible and ready for change

CSO 44

At Pride Summit: A Warning On Cyber Literacy

The Security Ledger

economy, according to Dr. Alissa Abdullah, Deputy CSO at MasterCard. Poor cyber literacy is at the root of many of the cybersecurity problems plaguing the U.S. The post At Pride Summit: A Warning On Cyber Literacy appeared first on The Security Ledger with Paul F. Roberts.

Don’t Count on Cybersecurity Data

Security Boulevard

Analytics & Intelligence CISO Suite Security Bloggers Network AI Artificial Intelligence CSO/CISO Perspectives Cyber-Physical Systems General ids intrusion detection Intrusion Prevention IPS ML SpotlightIt is a common theme of mine, but one which bears repeating.

CSO 73

Former Uber CSO Charged With Paying ‘Hush Money’ in 2016 Breach Cover-Up

Threatpost

Joseph Sullivan allegedly paid off $100K to the hackers responsible for a 2016 data breach, which exposed PII of 57 million passengers and drivers.

CSO 72

Inadequate Cybersecurity

Security Boulevard

CISO Suite Governance, Risk & Compliance Security Bloggers Network CSO/CISO Perspectives cybersecurity governance cybersecurity risk General Spotlight Y2K Y2K governance

Krebs on Ransomware

Security Boulevard

CISO Suite Cyberlaw Security Bloggers Network Brian Krebs Chris Krebs CSO/CISO Perspectives cybercrime Cyberwarfare General Information Security News Ransomware ransomware insurance SpotlightThe Krebses—Chris and Brian—are not related, but they have both come out with positions on ransomware.

A Chief Security Concern for Executive Teams

Krebs on Security

KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Not that these roles are somehow more or less important than that of a CISO/CSO within the organization. Spitzner notes: “Ten years prior, the CSO reported to the CIO, however they had strong personality conflicts.

CSO 156

18 new cybersecurity bills introduced as US congressional interest heats up

CSO Magazine

In the little more than two months since CSO reported on what was then a busy Congressional cybersecurity agenda, lawmakers have introduced at least 18 additional bills to shore up and expand the nation's cybersecurity capabilities. [

CSO 110

2021 Healthcare Cybersecurity Priorities: Experts Weigh In

Threatpost

IoT Webinars breach CSO Healthcare Hospital Medical device security MIoT Ordr Patching ransomware webinar Windows XPHackers are putting a bullseye on healthcare. Experts explore why hospitals are being singled out and what any company can do to better protect themselves.

Akamai CSO Talks Cryptominers, IoT and the Reemergence of Old Threats

Threatpost

Andy Ellis, CSO Akamai, discusses how the company works with others within the cybersecurity landscape to help keep the internet safe. IoT Malware RSAC Videos Web Security Akamai Andy Ellis Cryptominers

CSO 41

I’m quoted in CSO Online article: 25 API Security Tips You’re Probably Not Considering

Architect Security

I contributed to this article by David Spark of CISO/Security Vendor Relationship Series. These are some of the best API security tips right now: 25 API Security Tips You’re Probably Not Considering. Defense enterprise Interviews Media SDLC Software Tips

CISO 40

Proposed bill would create a new federal agency to protect consumer data

CSO Magazine

Check out CSO's ultimate guide to security and privacy laws, regulations, and compliance. | Get the latest from CSO by signing up for our newsletters. ]

CSO 94

Mitre D3FEND explained: A new knowledge graph for cybersecurity defenders

CSO Magazine

Get the latest from CSO by signing up for our newsletters. ] What is D3FEND? D3FEND is a new schema released by Mitre last month to establish a common language to help cyber defenders share strategies and methods. It is a companion project to the company’s ATT&CK framework.

CSO 106

Apps Built Better: Why DevSecOps is Your Security Team’s Silver Bullet

Threatpost

Phil Richards, vice president and CSO at Ivanti, explains how organizations can design DevOps processes and systems to thwart cyberattacks. Cloud Security InfoSec Insider Vulnerabilities Web Security

CSO 65

The future of work: Coming sooner than you think

CSO Magazine

Today's work-from-home world has given us a glimpse of the future, as these five articles from CIO, Computerworld, CSO, InfoWorld, and Network World illustrate What will your worklife be like years from now?

CSO 86

Bolstering Our Nation's Defenses Against Cybersecurity Attacks

Dark Reading

Shawn Henry, former Executive Assistant Director of the FBI and current CrowdStrike president of services and CSO, shares the top three cybersecurity priorities that the Biden administration needs to address

CSO 81

The future of work: Coming sooner than you think

InfoWorld on Security

Today's work-from-home world has given us a glimpse of the future, as these five articles from CIO, Computerworld, CSO, InfoWorld, and Network World illustrate What will your worklife be like years from now?

CSO 66

The 15 biggest data breaches of the 21st century

CSO Magazine

Get the latest from CSO by signing up for our newsletters. ] In today’s data-driven world, data breaches can affect hundreds of millions or even billions of people at a time.

Managing security in the spotlight: TikTok’s CSO Roland Cloutier to kick off InfoSec World

SC Magazine

Prior to ADP, he was CSO at data storage vendor EMC (now owned by Dell). The post Managing security in the spotlight: TikTok’s CSO Roland Cloutier to kick off InfoSec World appeared first on SC Media.

CSO 52

REvil gang suddenly goes silent leaving victims unable to recover systems

CSO Magazine

Get the latest from CSO by signing up for our newsletters. ] The dark web sites operated by the notorious REvil ransomware group suddenly went offline on Tuesday, prompting speculation that the US or Russian governments stepped in.

CSO 103

STEMatch creates new cybersecurity education and career paths

CSO Magazine

The purpose of STEMatch is to make the opportunities that are created by STEM education more visible, accessible and affordable for people that are underrepresented in our industry,” Chris Zannetos, creator of CSO50 recognized project STEMatch tells CSO.

5 riskiest mobile apps

CSO Magazine

Get the latest from CSO by signing up for our newsletters. ] Unsanctioned software and applications running on corporate mobile devices is a security nightmare.

PrintNightmare vulnerability explained: Exploits, patches, and workarounds

CSO Magazine

Get the latest from CSO by signing up for our newsletters. ] Microsoft has started releasing emergency security updates to fix a publicly disclosed remote code execution vulnerability in the Windows printing functionality that could allow attackers to take full control of vulnerable systems.

CSO 91

CISO Jason Lee on Zoom's response to its pandemic security challenges

CSO Magazine

Sign up for CSO newsletters. ]. CSO had an opportunity to speak with Lee about his experience coming into the CISO role mid-crisis. Jason Lee joined Zoom in June 2020 to become the videoconferencing platform’s CISO.

CSO 72