CSO, Cybersecurity and Risk - Cyber Security Informer

Report finds women are declining CISO/CSO roles

Tech Republic Security

SEPTEMBER 30, 2022

Professional risk factors into career decisions, and successful women need to encourage other women to accept the risks, says Accenture. The post Report finds women are declining CISO/CSO roles appeared first on TechRepublic.

CSO

CSO CISO Risk Cybersecurity

CSO Global Intelligence Report: The State of Cybersecurity in 2021

CSO Magazine

JULY 30, 2021

Any lingering indifference to cybersecurity risk has evaporated in the face of spiking ransomware attacks, software supply chain threats , and the challenges of securing remote workers. Unsurprisingly, half of those surveyed said they had seen an increase in security incidents at their organizations over the past year.

CSO

CSO Cybersecurity Ransomware Software

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Krebs on Security

JULY 21, 2023

A review of the executives pages published by the 2022 list of Fortune 100 companies found only four — BestBuy , Cigna , Coca-Cola , and Walmart — that listed a Chief Security Officer (CSO) or Chief Information Security Officer (CISO) in their highest corporate ranks. Nor is the average pay hugely different among all these roles.

CSO

CSO CISO Insurance Risk

Strategic risk analysis is key to ensure customer trust in product, customer-facing app security

CSO Magazine

APRIL 5, 2023

CISOs are no longer only responsible for the cybersecurity of systems used internally. In many organizations they also focus on securing products and public-facing applications, and one way to do this well is through risk assessment.

Risk

Risk CSO CISO Cybersecurity

Real-time is where the cybersecurity risk is

CSO Magazine

APRIL 5, 2022

I don’t know how many times I’ve heard cybersecurity professionals say something like, “Not having multi-factor authentication is a huge risk for our organization.” The real risk is the probability of a ransomware incident, for example, or the leak of personally identifiable information (PII) from a customer database.

Risk

Risk Cybersecurity Authentication Ransomware

9 notable government cybersecurity initiatives of 2021

CSO Magazine

SEPTEMBER 2, 2021

Cybersecurity has steadily crept up the agenda of governments across the globe. This has led to initiatives designed to address cybersecurity issues that threaten individuals and organizations.

Government

Government Cybersecurity CSO Data breaches

The Week in Security: Former Uber CSO convicted over hack cover-up, supply chain attack targets media

Security Boulevard

NOVEMBER 10, 2022

Welcome to the latest edition of The Week in Security , which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond. This week: Former Uber CSO is convicted for his attempted cover-up of a 2016 hack of the company.

CSO

CSO Media Hacking Software

11 cybersecurity buzzwords you should stop using right now

CSO Magazine

NOVEMBER 2, 2021

Cybersecurity buzzwords and buzz phrases are a dime a dozen. However, such terms are not always helpful and can be inaccurate, outdated, misleading, or even risk causing harm. Learn 8 pitfalls that undermine security program success and 12 tips for effectively presenting cybersecurity to the board.

Cybersecurity

Cybersecurity CSO Marketing Information Security

5 strategies to manage cybersecurity risks in mergers and acquisitions

CSO Magazine

APRIL 3, 2023

Mergers and acquisitions (M&A) have the potential to introduce significant cybersecurity risks for organizations.

Risk

Risk Cybersecurity Technology

Using the NIST Cybersecurity Framework to address organizational risk

CSO Magazine

JANUARY 25, 2022

federal government has been very active the past year, particularly with the cybersecurity executive order (EO) and associated tasks and goals that have come out of it. One framework and industry source that has been getting increased attention is the NIST Cybersecurity Framework (CSF).

Risk

Risk Cybersecurity Government

How Jefferson Health enhanced cybersecurity via its cloud transformation

CSO Magazine

AUGUST 16, 2021

The cybersecurity mantra at Jefferson Health is “if we can’t do it well, we’re not going to do it” says Mark Odom, CISO of the Philadelphia-based healthcare organization. Learn the 7 keys to better risk assessment. | Get the latest from CSO by signing up for our newsletters. ]. Learn the 7 keys to better risk assessment. |

Cybersecurity

Cybersecurity CSO Healthcare CISO

Cyber arms race, economic headwinds among top macro cybersecurity risks for 2023

CSO Magazine

FEBRUARY 21, 2023

Despite the billions of dollars poured annually into cybersecurity by investors, organizations, academia, and government, adequate and reliable cybersecurity remains an ever-elusive goal. Chief among the challenges for decision-makers and experts is simply identifying and comprehending society's cybersecurity risks.

Risk

Risk Cybersecurity Government Technology

GAO report faults CIOs, OMB for slow adoption of cybersecurity recommendations

CSO Magazine

AUGUST 3, 2021

The US General Accountability Office (GAO) issued the 19-page report , “Cybersecurity and Information Technology: Federal Agencies need to Strengthen Efforts to Address High-Risk Areas” on July 29. Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan.

CSO

CSO Cybersecurity Government Accountability

How Northfield Hospital uses AI to minimize risk from cyberattacks

CSO Magazine

MAY 16, 2023

Like all healthcare providers, US-based Northfield Hospital has a big responsibility when it comes to cybersecurity as sensitive data and the lives of patients could be at stake. To read this article in full, please click here

Risk

Risk CSO Healthcare Cybersecurity

Unpatched Exchange Servers an overlooked risk

CSO Magazine

SEPTEMBER 1, 2021

The US Cybersecurity and Infrastructure Security Agency (CISA) has started a list of what it deems to be bad security practices. Get the latest from CSO by signing up for our newsletters. ] The two on the list so far instruct any organization that provides national critical functions (NCF) what not to do.

CSO

CSO Risk Architecture Passwords

BrandPost: Why a Risk-Based Cybersecurity Strategy is the Way to Go

CSO Magazine

OCTOBER 7, 2022

Business leaders spend most of their time conducting risk/reward analyses of virtually every decision they make. Cybersecurity is another critical area where risk must be constantly assessed. The risk of unanticipated service interruptions—not to mention the many direct and indirect costs of data loss—is substantial.

Risk

Risk Cybersecurity Marketing Government

Clorox's Cybersecurity Chief Departs Amidst Incident Recovery Efforts

SecureWorld News

NOVEMBER 16, 2023

In a move that has raised concerns about the company's cybersecurity posture, Amy Bogac, Clorox's CISO, has stepped down from her position. Some speculate that Bogac may have been frustrated with the company's slow response to the cyberattack and its lack of investment in cybersecurity measures.

CISO

CISO Cybersecurity CSO Risk

CISO’s Guide to Presenting Cybersecurity to Board Directors

CyberSecurity Insiders

MARCH 30, 2023

Seasoned CISOs/CSOs understand the importance of effectively communicating cyber risk and the need for investment in cybersecurity defense to the board of directors. To ensure cybersecurity becomes a strategic part of the corporate culture, it is crucial for CISOs to present the topic in a clear, concise, and compelling manner.

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

4 ways to keep the cybersecurity conversation going after the crisis has passed

CSO Magazine

MARCH 8, 2021

CISO Bill Brown knows how high-profile cybersecurity breaches like SolarWinds can raise alarm bells among executives and board members when they become headline news. But nothing more than that.” [ Learn the 7 keys to better risk assessment. | Get the latest from CSO by signing up for our newsletters. ]. Could this happen to us?

CSO

CSO Cybersecurity CISO Healthcare

Auditing the IRS: Asset Management Problems Causing Cybersecurity Risks

SecureWorld News

AUGUST 26, 2020

But this time, it is the Treasury Inspector General for Tax Administration auditing the IRS, the agency's legacy IT environment and its cybersecurity. What does effective asset management look like from a cybersecurity perspective? Aflac CSO Tim Callahan told us as much after his keynote at a SecureWorld conference last year.

Risk

Risk Cybersecurity CSO Technology

IT asset disposal is a security risk CISOs need to take seriously

CSO Magazine

JUNE 21, 2021

Lack of a program signals data may be at risk when equipment is recycled; presence of a program signals attention to data protection. Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan. Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ].

CISO

CISO Risk CSO Accountability

Does Cyber Risk Quantification Work? | Avast

Security Boulevard

MARCH 31, 2022

Cyber strategist Pete Lindstrom maintained in an article on CSO that cybersecurity risk is constantly changing in a way analogous to the probability odds in a March Madness tournament. The post Does Cyber Risk Quantification Work? Avast appeared first on Security Boulevard.

Cyber Risk

Cyber Risk Risk CSO Cybersecurity

Cybersecurity litigation risks: 4 top concerns for CISOs

CSO Magazine

APRIL 19, 2022

The threat of litigation is enough to keep any business leader up at night, and the increasing prevalence of data protection, privacy, and cybersecurity legislation and regulation is piling on the pressure for CISOs.

CISO

CISO Cybersecurity Risk

UK government considers strengthening security rules for MSPs to address supply chain risks

CSO Magazine

MAY 18, 2021

Learn the 7 keys to better risk assessment. | Get the latest from CSO by signing up for our newsletters. ]. The new proposals could require MSPs to meet the current Cyber Assessment Framework , a set of 14 cybersecurity principles designed for organisations that play a vital role in the day-to-day life of the UK.

Risk

Risk CSO Government Cyber Risk

Why UnionDigital Bank invests in an AI-driven approach to cybersecurity

CSO Magazine

AUGUST 2, 2022

The data-reliance of digital banking means an AI-driven approach to cybersecurity and risk management is integral to success, UnionDigital Bank CISO Dominic Grunden tells CSO. Working together, the two used autonomous technology to instill a “truly holistic” AI-enhanced security and risk management strategy.

Banking

Banking CSO Cybersecurity CISO

Mastercard expands cybersecurity, risk services with new attack simulation and assessment platform

CSO Magazine

MAY 26, 2022

Financial services giant Mastercard has announced the launch of a new attack simulation and assessment platform designed to help businesses and governments enhance their cybersecurity operational resilience. The launch comes as Mastercard continues to invest in cybersecurity and risk management capabilities.

Risk

Risk Cybersecurity Financial Services Government

Ballooning growth of digital identities exposing organizations to greater cybersecurity risk

CSO Magazine

APRIL 14, 2022

Those initiatives—especially those prioritizing remote or hybrid working, new digital services for customers and citizens, and increased outsourcing of remote vendors and suppliers—have created hundreds of thousands of new digital identities in each organization, which can increase their exposure to cybersecurity risk.

Risk

Risk Cybersecurity Ransomware

How to de-risk your digital ecosystem

CSO Magazine

FEBRUARY 28, 2023

Companies rightly see much promise for future revenues and productivity by building and participating in emerging digital ecosystems — but most have not given enough consideration to the risks and threats inherent in such ecosystems.

Risk

Risk Cyber threats Cybersecurity

These Roles Require Cybersecurity Training

CyberSecurity Insiders

APRIL 26, 2021

That means cybersecurity training and education so that key stakeholders understand the risks that businesses are facing, and which strategies are most effective for protection. Who should receive cybersecurity training in your organization? How much depends on the extent of the CIO’s involvement in cybersecurity.

Cybersecurity

Cybersecurity CISO Education CSO

Critical flaw in AI testing framework MLflow can lead to server and data compromise

CSO Magazine

MARCH 24, 2023

Basically, every organization that uses this tool is at risk of losing their AI models, having an internal server compromised, and having their AWS account compromised," Dan McInerney, a senior security engineer with cybersecurity startup Protect AI, told CSO. It's pretty brutal."

CSO

CSO Authentication Engineering Internet

Measuring cybersecurity: The what, why, and how

CSO Magazine

FEBRUARY 14, 2023

A core pillar of a mature cyber risk program is the ability to measure, analyze, and report cybersecurity threats and performance. That said, measuring cybersecurity is not easy. What can be measured in cybersecurity? To read this article in full, please click here

Cybersecurity

Cybersecurity Cyber Risk Risk

Economic pressures are increasing cybersecurity risks; a recession would amp them up more

CSO Magazine

FEBRUARY 28, 2023

Yet history has shown that a poor economy can bring on additional challenges and risks, making an already uphill battle even more difficult and security leaders should be bracing for that scenario ahead. At the same time, they’ve had to contend with bad actors who have become more organized, better resourced, and increasingly sophisticated.

Risk

Risk CISO Cybersecurity Technology

A Chief Security Concern for Executive Teams

Krebs on Security

DECEMBER 18, 2018

KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Not that these roles are somehow more or less important than that of a CISO/CSO within the organization.

CSO

CSO CISO Marketing Banking

Importance of Cybersecurity Profession Highlights SecureWorld Chicago

SecureWorld News

JUNE 13, 2023

It was fitting that the opening keynote panel for SecureWorld Chicago on June 8th was titled " Making the Cybersecurity Music: Navigating Challenges and Opportunities in Today's InfoSec Landscape. Well, information security, cybersecurity happens to be a critical part of the business, being able to achieve strategic objectives.

Cybersecurity

Cybersecurity CISO InfoSec Risk

5 IT risk assessment frameworks compared

CSO Magazine

NOVEMBER 11, 2021

From a cybersecurity standpoint, organizations are operating in a high-risk world. The ability to assess and manage risk has perhaps never been more important.

Risk

Risk Telecommunications CISO Data breaches

6 steps to getting risk acceptance right

CSO Magazine

MARCH 22, 2022

Cybersecurity and risk expert David Wilkinson has heard some executives put off discussions about risk acceptance, saying they don’t have any appetite or tolerance for risk. Yet there are indicators that many CISOs aren’t having productive conversations around risk acceptance.

Risk

Risk CISO Cybersecurity

Google launches entry-level cybersecurity certificate to teach threat detection skills

CSO Magazine

MAY 5, 2023

Google has announced a new entry-level cybersecurity certificate to teach learners how to identify common risks, threats, and vulnerabilities, as well as the techniques to mitigate them.

Threat Detection

Threat Detection Cybersecurity Risk

Biden administration releases 100-day plan to address electric system cybersecurity risks

CSO Magazine

APRIL 22, 2021

On April 20, the Biden administration, through the United States Department of Energy (DOE), issued what it is calling its 100-day plan to address cybersecurity risks to the US electric system. The plan is a coordinated effort among DOE, the electricity industry, and the Cybersecurity and Infrastructure Security Agency (CISA).

Risk

Risk Cybersecurity Cyber threats

Cybersecurity stress returns after a brief calm: ProofPoint report

CSO Magazine

MAY 9, 2023

Global cybersecurity concerns are returning to pandemic levels as 68% of CISOs from 16 countries said they fear a cyberattack in the next 12 months, according to a ProofPoint survey. Compared with last year, CISOs are feeling less prepared to cope with cyberattacks and more at risk, indicating a reversal to the early days of the pandemic.”

CISO

CISO Cybersecurity Risk

What can March Madness and 538 teach us about cybersecurity risk?

CSO Magazine

MARCH 28, 2022

I like doing this because it is a better representation of how cybersecurity risk works than the way we typically think in our field.

Risk

Risk Cybersecurity

Which countries are most (and least) at risk for cybercrime?

CSO Magazine

NOVEMBER 12, 2021

The risk of cybercrime is not spread equally across the globe. Cyberthreats differ widely, with internet users in some countries at much higher risk than those in nations that offer more security due to strong cybercrime legislation and widely implemented cybersecurity programs, according to fraud-detection software company SEON.

Cybercrime

Cybercrime Risk Internet Internet

Top risks and best practices for securely offboarding employees

CSO Magazine

APRIL 19, 2023

But the security risks posed by departing staff can be significant. Without secure off-boarding processes, organizations expose themselves to a variety of cybersecurity risks ranging from the innocuously accidental to the maliciously deliberate. To read this article in full, please click here

Risk

Risk CISO Cybersecurity

GAO calls out US government agencies: Get your supply chain security act together

CSO Magazine

JUNE 8, 2021

In December 2020, the US Government Accounting Office (GAO) made 145 recommendations to 23 federal agencies relating to supply chain risks. In May 2021, the GAO’s director of information technology and cybersecurity, Vijay A. D’Souza, testified before Congress on supply chain risks.

Government

Government CSO Risk Accountability

Secrets to building a healthy CISO-vendor partnership

CSO Magazine

MAY 3, 2022

Effective partnerships between CISOs and their cybersecurity vendors are integral to security success. A well-oiled relationship built on trust, communication and mutual understanding can reap significant benefits for a business’s cybersecurity posture.

CISO

CISO CSO Cybersecurity Accountability

Report finds women are declining CISO/CSO roles

CSO Global Intelligence Report: The State of Cybersecurity in 2021

Trending Sources

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Strategic risk analysis is key to ensure customer trust in product, customer-facing app security

Real-time is where the cybersecurity risk is

9 notable government cybersecurity initiatives of 2021

The Week in Security: Former Uber CSO convicted over hack cover-up, supply chain attack targets media

11 cybersecurity buzzwords you should stop using right now

5 strategies to manage cybersecurity risks in mergers and acquisitions

Using the NIST Cybersecurity Framework to address organizational risk

How Jefferson Health enhanced cybersecurity via its cloud transformation

Cyber arms race, economic headwinds among top macro cybersecurity risks for 2023

GAO report faults CIOs, OMB for slow adoption of cybersecurity recommendations

How Northfield Hospital uses AI to minimize risk from cyberattacks

Unpatched Exchange Servers an overlooked risk

BrandPost: Why a Risk-Based Cybersecurity Strategy is the Way to Go

Clorox's Cybersecurity Chief Departs Amidst Incident Recovery Efforts

CISO’s Guide to Presenting Cybersecurity to Board Directors

4 ways to keep the cybersecurity conversation going after the crisis has passed

Auditing the IRS: Asset Management Problems Causing Cybersecurity Risks

IT asset disposal is a security risk CISOs need to take seriously

Does Cyber Risk Quantification Work? | Avast

Cybersecurity litigation risks: 4 top concerns for CISOs

UK government considers strengthening security rules for MSPs to address supply chain risks

Why UnionDigital Bank invests in an AI-driven approach to cybersecurity

Mastercard expands cybersecurity, risk services with new attack simulation and assessment platform

Ballooning growth of digital identities exposing organizations to greater cybersecurity risk

How to de-risk your digital ecosystem

These Roles Require Cybersecurity Training

Critical flaw in AI testing framework MLflow can lead to server and data compromise

Measuring cybersecurity: The what, why, and how

Economic pressures are increasing cybersecurity risks; a recession would amp them up more

A Chief Security Concern for Executive Teams

Importance of Cybersecurity Profession Highlights SecureWorld Chicago

5 IT risk assessment frameworks compared

6 steps to getting risk acceptance right

Google launches entry-level cybersecurity certificate to teach threat detection skills

Biden administration releases 100-day plan to address electric system cybersecurity risks

Cybersecurity stress returns after a brief calm: ProofPoint report

What can March Madness and 538 teach us about cybersecurity risk?

Which countries are most (and least) at risk for cybercrime?

Top risks and best practices for securely offboarding employees

GAO calls out US government agencies: Get your supply chain security act together

Secrets to building a healthy CISO-vendor partnership

Stay Connected