Cybersecurity, InfoSec and Risk - Cyber Security Informer

Demand, CyberInsurance, and Automation/AI Are the Future of InfoSec

Daniel Miessler

NOVEMBER 6, 2020

2021-2030) A Surge in Demand for InfoSec people will result in many more professionals being trained and placed within companies, likely using more of a trade/certification model than a 4-year university model. ISC) 2 says there were over 4 million too few cybersecurity people in 2019. ESG and ISSA. Cyberinsurance Will Ascend.

InfoSec

InfoSec Insurance Artificial Intelligence Cybersecurity

Top 9 Trends In Cybersecurity Careers for 2025

eSecurity Planet

OCTOBER 18, 2024

As they do, they create more security vulnerabilities and inherent business, changing the nature of cybersecurity careers. Meanwhile, according to non-profit trade association CompTIA’s Cyberseek tool, nearly half a million cybersecurity jobs were open between May 2023 and April 2024 in the U.S., million workers. million workers.

Cybersecurity

Cybersecurity Artificial Intelligence Penetration Testing Engineering

State of Cybersecurity in Canada 2025: Key Insights for InfoSec Leaders

SecureWorld News

FEBRUARY 5, 2025

The State of Cybersecurity in Canada 2025 report, published by the Canadian Cybersecurity Network (CCN) and the Security Architecture Podcast , delivers an in-depth analysis of the evolving threat landscape, emerging risks, and strategic recommendations for Canadian organizations.

InfoSec

InfoSec Energy and Utilities Cybersecurity Education

MY TAKE: Peerlyst shares infosec intel; recognizes Last Watchdog as a top cybersecurity influencer

The Last Watchdog

OCTOBER 3, 2019

Started by infosec professionals, Peerlyst takes the characteristics of B2B communications we’ve become accustomed to on Twitter and LinkedIn and directs it toward cybersecurity. Related: Automating threat feed analysis Peerlyst is another step in that direction.

InfoSec

InfoSec B2B Cybersecurity Cyber Risk

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

Security Boulevard

DECEMBER 30, 2024

Securities and Exchange Commission (SEC)began enforcing new cybersecurity disclosure rules. Recognizing the critical need for transparency and robust cybersecurity measures, the U.S. As part of their fiduciary duties, boards play a key role in the oversight of risks from cybersecurity threats.

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

News alert: One Identity wins 2024 Cyber Defense Award: Hot Company – PAM category

The Last Watchdog

DECEMBER 5, 2024

With the intense competition from the industrys best, this award underscores our dedication to setting new standards in cybersecurity. With these scalable and reliable PAM solutions , organizations of all sizes can address their complex and ever-evolving cybersecurity challenges. Ackerman Jr.

InfoSec

InfoSec Cyber Risk CISO Cybersecurity

Zero Trust and the Failure of Sampling: Two Important Cybersecurity Trends

Joseph Steinberg

JUNE 10, 2022

Last week, I attended an excellent briefing given by Tom Gillis, Senior Vice President and General Manager of VMware’s Networking and Advanced Security Business Group, in which he discussed various important cybersecurity-related trends that he and his team have observed. Sampling No Longer Works.

Cybersecurity

Cybersecurity Artificial Intelligence CISO Wireless

Assessing Third-Party InfoSec Risk Management

Security Boulevard

JUNE 14, 2023

Information security (InfoSec) risk management with third parties, including outsourcing, requires persistence and consistency due to the primary business risk it presents. The post Assessing Third-Party InfoSec Risk Management appeared first on Security Boulevard.

InfoSec

InfoSec Risk Information Security CISO

Managing Cybersecurity Risk in M&A

Cisco Security

SEPTEMBER 26, 2022

As Technology Audit Director at Cisco, Jacob Bolotin focuses on assessing Cisco’s technology, business, and strategic risk. Bolotin champions the continued advancement of the technology audit profession and received a master’s degree in cybersecurity from the University of California Berkeley. Risk Management and Formula One.

Risk

Risk Cybersecurity Technology InfoSec

Empowering Women in Cybersecurity: Insights from ISC2's Latest Study

SecureWorld News

APRIL 9, 2025

The cybersecurity landscape is witnessing a transformative shift, with an increasing number of women entering the field through non-traditional pathways. A recent study by ISC2 highlights this trend, revealing how diverse educational backgrounds and experiences are enriching the cybersecurity workforce.

Cybersecurity

Cybersecurity Education InfoSec Government

CISA Order Highlights Persistent Risk at Network Edge

Krebs on Security

JUNE 15, 2023

government agency in charge of improving the nation’s cybersecurity posture is ordering all federal agencies to take new measures to restrict access to Internet-exposed networking equipment. The directive comes amid a surge in attacks targeting previously unknown vulnerabilities in widely used security and networking appliances.

Risk

Risk VPN Internet Internet

Cyber Agility Mandate – Transforming InfoSec Programs to Meet Evolving Markets

Security Boulevard

DECEMBER 3, 2024

Five steps to take that will allow the infosec team to reduce the risk of trailing the latest transformation changes. The post Cyber Agility Mandate – Transforming InfoSec Programs to Meet Evolving Markets appeared first on Security Boulevard.

InfoSec

InfoSec Marketing Risk Security Awareness

AI and the Future of Work: What It Means for Cybersecurity and Beyond

SecureWorld News

MAY 7, 2025

In the cybersecurity industry and across the broader workforce, the question is no longer if AI will impact jobs, but which ones, how quickly, and what comes next. That doesn't mean the human cybersecurity workforce is obsolete. Bottom line: AI is changing the nature of cybersecurity work, but not eliminating it wholesale.

Cybersecurity

Cybersecurity Artificial Intelligence Threat Detection Technology

US Helped Ukraine With Infosec—Story is ‘Dangerous Arrogance’

Security Boulevard

MARCH 10, 2022

The post US Helped Ukraine With Infosec—Story is ‘Dangerous Arrogance’ appeared first on Security Boulevard. But scratch the surface and there’s not much of a There there. What looks like a coordinated PR campaign relies on “people familiar with the.

InfoSec

InfoSec Media Hacking Social Engineering

InfoSec Reviews in Project Management Workflows

Security Boulevard

FEBRUARY 8, 2021

The post InfoSec Reviews in Project Management Workflows appeared first on Security Boulevard. I agree – this is very important. But there’s one topic that does not get.

InfoSec

InfoSec Information Security Software CISO

InfoSec Leaders Share in Podcast Interview at SecureWorld Philadelphia

SecureWorld News

APRIL 28, 2023

One of the notable sessions at the SecureWorld Philadelphia conference, April 19-20, was a podcast recording featuring three prominent Philadelphia area cybersecurity experts, in a session titled, "CISOs Riff on the Latest in Cybersecurity. The 40-minute episode is packed with insights on the latest and greatest in cybersecurity.

InfoSec

InfoSec CISO Ransomware Information Security

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

Under First American’s documented vulnerability remediation policies, the data leak was classified as a security weakness with a “level 3” severity, which placed it in the “medium risk” category and required remediation within 45 days. “The [employee] did not request a waiver or risk acceptance from the CISO.”

Insurance

Insurance Risk Financial Services CISO

CISA releases Insider Risk Mitigation Self-Assessment Tool

Security Affairs

SEPTEMBER 30, 2021

The US CISA has released a new tool that allows to assess the level of exposure of organizations to insider threats and devise their own defense plans against such risks. The tool elaborates the answers of the organizations to a survey about their implementations of a risk program management for insider threats. Pierluigi Paganini.

Risk

Risk InfoSec Ransomware Technology

Burnout: The Hidden Cost of Working in Cybersecurity & Other High Risk Fields

Jane Frankland

JUNE 20, 2023

Since 2011, I’ve consistently spoken, and written about the dangers of burnout in cybersecurity, and proposed leadership strategies for employee wellbeing. In this blog, and ahead of my talk at Infosec this week , I’m delving into this, and giving you tips for recognising its signs and preventing it as a leader.

Cybersecurity

Cybersecurity Risk InfoSec CISO

How AI is Advancing Cybersecurity

eSecurity Planet

JUNE 18, 2021

There’s a never ending cycle between the measures cybersecurity providers introduce to prevent or remediate cyber threats and the tactics cyber criminals use to get around these security measures. Artificial intelligence has emerged as a critical tool cybersecurity companies leverage to stay ahead of the curve.

Artificial Intelligence

Artificial Intelligence Cybersecurity Engineering Risk

CISO Stories Podcast: No Insider Cybersecurity Risk? Guess Again!

Security Boulevard

JUNE 9, 2021

The post CISO Stories Podcast: No Insider Cybersecurity Risk? What happens when an employee decides to leave the organization and start their own business – but with your Intellectual property or customer lists? . Guess Again! appeared first on Security Boulevard.

CISO

CISO Risk Cybersecurity Security Awareness

InfoSec Leaders Weigh in on New SEC Rules Making CISO Hotseat Hotter

SecureWorld News

JULY 31, 2023

Cybersecurity professionals have various views on last week's news from the United States Securities and Exchange Commission (SEC) when it surprised the InfoSec community and the C-suites of corporate America. Currently, many public companies provide cybersecurity disclosure to investors.

CISO

CISO InfoSec Risk Cybersecurity

This Mental Health Awareness Month, Cyber Resilience Starts Within

SecureWorld News

MAY 6, 2025

In cybersecurity, the stress is relentless. Add in long hours, under-resourced teams, and the "always-on" pressure of digital defense, and it's no wonder burnout is a looming threat within the InfoSec community. Mental wellbeing and cybersecurity performance are directly correlated.

CISO

CISO InfoSec Cybersecurity Architecture

Account Takeover Risks of Small Businesses: How to Avoid Them

CTOVision Cybersecurity

OCTOBER 27, 2020

Read Ben Hartwig explain how small and medium businesses can avoid account takeover risks on Infosec Magazine: Account takeover seeks to infiltrate an existing account and use them for the […].

Small Business

Small Business Accountability Risk InfoSec

CISO Liability Risk and Jail Time, (ISC)2 Bylaw Vote and the Value of Cybersecurity Certifications

Security Boulevard

OCTOBER 30, 2022

Rafal Los, host of the popular Down the Security Rabbithole Podcast, joins us to discuss CISO liability risk and the ongoing discussion in the cybersecurity community about CISOs going to jail.

CISO

CISO Risk Cybersecurity Data privacy

5 Tips for Achieving Better Cybersecurity Risk Management

Threatpost

SEPTEMBER 23, 2021

Casey Ellis, founder, CTO and chairman of Bugcrowd, discusses a roadmap for lowering risk from cyberattacks most effectively.

Risk

Risk Cybersecurity InfoSec Malware

Why Taylor Swift Fans Should Work in Cybersecurity

SecureWorld News

SEPTEMBER 12, 2023

These skills also happen to apply to information security (infosec) and cyber threat intelligence and research. 13 reasons why Swifties should consider a career in cybersecurity 1. And you'll leave your first infosec conference with an armful of them. But infosec is the rare industry with clearcut heroes and villains.

Cybersecurity

Cybersecurity InfoSec Threat Detection Accountability

Spotlight on Cybersecurity Leaders: Bill Bowman

SecureWorld News

FEBRUARY 26, 2024

In Q&A format, they share about their professional journeys, unique experiences, and hopes for the future of cybersecurity—along with some personal anecdotes. Get to know Bill Bowman Q : Why did you decide to pursue cybersecurity as a career path? Q : How would you describe your feelings about cybersecurity in one sentence?

Cybersecurity

Cybersecurity CISO InfoSec Data privacy

Risks to Your Network from Insecure Code Signing Processes

Security Boulevard

JULY 7, 2022

Risks to Your Network from Insecure Code Signing Processes. However, this practice puts these critical resources at risk for being misused or compromised. Many InfoSec teams don’t have the visibility into what their software development teams are doing. In years past, InfoSec may have been the central keeper of code signing.

Risk

Risk InfoSec Software Digital transformation

Why Is Shadow IT a Growing Cybersecurity Risk?

SecureWorld News

AUGUST 13, 2023

Whatever the reason, shadow IT can pose a serious security risk to organizations. This means that they are more vulnerable to attack, and any data stored on them is at risk. This means that they are more vulnerable to attack, and any data stored on them is at risk. What can organizations do mitigate the risks of shadow IT?

Risk

Risk Cybersecurity Education Technology

Five 2023 Cybersecurity Predictions by Doug Dooley

CyberSecurity Insiders

DECEMBER 6, 2022

The risk-reward ratio of career CISOs has many re-thinking whether this is an ideal profession when facing legal action, shouldering undue blame from board members, or even jail-time after a security breach has gone poorly. The post Five 2023 Cybersecurity Predictions by Doug Dooley appeared first on Cybersecurity Insiders.

Cybersecurity

Cybersecurity CISO InfoSec Technology

Spotlight on Cybersecurity Leaders: Chris Spohr

SecureWorld News

AUGUST 22, 2022

In Q&A format, they share about their professional journeys, unique experiences, and hopes for the future of cybersecurity—along with some personal anecdotes. Chris has over 15 years of cybersecurity leadership experience spanning finance, e-commerce, multi-channel retail, warehousing, distribution, and manufacturing.

Cybersecurity

Cybersecurity InfoSec Retail Manufacturing

Reaction to Social Engineering Indicative of Cybersecurity Culture

Security Boulevard

JULY 5, 2021

It was a master class in social engineering, one that put an organization’s security posture at risk. The post Reaction to Social Engineering Indicative of Cybersecurity Culture appeared first on Security Boulevard. Social engineering attacks like phishing take advantage of an employee’s awareness of.

Social Engineering

Social Engineering Engineering Cybersecurity Phishing

Secure Communications: Relevant or a Nice to Have?

Jane Frankland

FEBRUARY 7, 2025

But as a CISO or cyber risk owner, it’s not just about locking down sensitive informationits about doing it without slowing down your people. It encompasses everything from ensuring the confidentiality and integrity of information to reducing risks, maintaining compliance, and building trust with customers.

Cyber Risk

Cyber Risk CISO Risk Encryption

BSides Vancouver 2021 – Vivek Ponnada’s ‘Is The Power Grid A Huge Cybersecurity Risk?’

Security Boulevard

JULY 19, 2021

The post BSides Vancouver 2021 – Vivek Ponnada’s ‘Is The Power Grid A Huge Cybersecurity Risk?’ Our thanks to BSides Vancouver for publishing their outstanding BSides Vancouver 2021 Conference videos on the groups' YouTube channel. ’ appeared first on Security Boulevard.

Risk

Risk Cybersecurity Education InfoSec

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

Security Boulevard

FEBRUARY 14, 2025

Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) called buffer overflow vulnerabilities unforgivable defects that put national and economic security at risk. For more information about the threat from quantum computing: Is Quantum Computing a Cybersecurity Threat?

Banking

Banking Cybercrime Cybersecurity Ransomware

Importance of Cybersecurity Profession Highlights SecureWorld Chicago

SecureWorld News

JUNE 13, 2023

It was fitting that the opening keynote panel for SecureWorld Chicago on June 8th was titled " Making the Cybersecurity Music: Navigating Challenges and Opportunities in Today's InfoSec Landscape. Well, information security, cybersecurity happens to be a critical part of the business, being able to achieve strategic objectives.

Cybersecurity

Cybersecurity CISO InfoSec Risk

(ISC)2 Study: Cybersecurity Industry Facing 3.4 Million Shortfall in Workers

SecureWorld News

OCTOBER 20, 2022

A new study by (ISC) 2 released October 20th estimates the current global cybersecurity workforce at 4.7 The 2022 (ISC) 2 Cybersecurity Workforce Study is an update to the organization's first cybersecurity workforce estimate conducted in 2019. Salaries (The median salary for North America cybersecurity workers is $134,800.).

Cybersecurity

Cybersecurity InfoSec Financial Services Insurance

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

SC Magazine

FEBRUARY 8, 2021

Now, those insurers are poised to drive cybersecurity investment by insisting that organizations meet certain criteria to qualify for coverage. Still unclear is whether this will serve the cybersecurity community well, or distort strategies to protect data and networks. billion in 2019, according to Hiscox – companies crave coverage.

Insurance

Insurance Cybersecurity Cyber Insurance Government

Peer Report Explores Concerns, Challenges Facing Cybersecurity Leaders

SecureWorld News

AUGUST 23, 2023

This morning, Critical Start released its first ever Cyber Risk Landscape Peer Report , which explores some of the major concerns and challenges currently confronting cybersecurity leaders as they manage risk within their organizations. Here are some comments on the cyber risk landscape from cybersecurity vendor experts.

Cybersecurity

Cybersecurity Cyber Risk Risk Cyber Insurance

New York Financial Services Firms to Face More Cybersecurity Oversight

SecureWorld News

NOVEMBER 28, 2022

The New York State Department of Financial Services (NYDFS) is proposing an amendment to its regulations that will require financial services companies to up their cybersecurity game. Designate a qualified individual (CISO or equivalent) responsible or overseeing and implementing a cybersecurity program and enforcing its cybersecurity policy.

Financial Services

Financial Services Cybersecurity CISO InfoSec

Seeds of Destruction: Cyber Risk Is Growing in Agriculture

The Security Ledger

MAY 4, 2021

In this episode of the podcast (#213): Molly Jahn of DARPA and University of Wisconsin joins us to talk about the growing cyber risk to the Food and Agriculture sector, as industry consolidation and precision agriculture combine to increase the chances of cyber disruption of food production. Read the whole entry. »

Cyber Risk

Cyber Risk Risk Digital transformation InfoSec

Phishing Benchmark Report Delivers Data, Tools to Mitigate End-User Risk

SecureWorld News

FEBRUARY 25, 2022

It also delivers robust benchmarking and insights to help you manage and mitigate user-driven phishing risks more effectively. A commissioned survey of 600 InfoSec and IT professionals across those same seven countries. This year's report highlights: Trends and issues that influenced the security landscape in 2021.

Phishing

Phishing Risk Security Awareness Social Engineering

Global Cybersecurity Skills Gap Still Widening Despite Growing Workforce

SecureWorld News

NOVEMBER 7, 2023

Cyber threats pose one of the most significant risks to businesses, governments, and individuals today. As the world becomes more interconnected and data-driven, the need for cybersecurity talent has never been greater. The 2023 ISC2 Cybersecurity Workforce Study estimates that the global cybersecurity workforce now stands at 5.5

Cybersecurity

Cybersecurity Artificial Intelligence Government Risk

Demand, CyberInsurance, and Automation/AI Are the Future of InfoSec

Top 9 Trends In Cybersecurity Careers for 2025

Trending Sources

State of Cybersecurity in Canada 2025: Key Insights for InfoSec Leaders

MY TAKE: Peerlyst shares infosec intel; recognizes Last Watchdog as a top cybersecurity influencer

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

News alert: One Identity wins 2024 Cyber Defense Award: Hot Company – PAM category

Zero Trust and the Failure of Sampling: Two Important Cybersecurity Trends

Assessing Third-Party InfoSec Risk Management

Managing Cybersecurity Risk in M&A

Empowering Women in Cybersecurity: Insights from ISC2's Latest Study

CISA Order Highlights Persistent Risk at Network Edge

Cyber Agility Mandate – Transforming InfoSec Programs to Meet Evolving Markets

AI and the Future of Work: What It Means for Cybersecurity and Beyond

US Helped Ukraine With Infosec—Story is ‘Dangerous Arrogance’

InfoSec Reviews in Project Management Workflows

InfoSec Leaders Share in Podcast Interview at SecureWorld Philadelphia

First American Financial Pays Farcical $500K Fine

CISA releases Insider Risk Mitigation Self-Assessment Tool

Burnout: The Hidden Cost of Working in Cybersecurity & Other High Risk Fields

How AI is Advancing Cybersecurity

CISO Stories Podcast: No Insider Cybersecurity Risk? Guess Again!

InfoSec Leaders Weigh in on New SEC Rules Making CISO Hotseat Hotter

This Mental Health Awareness Month, Cyber Resilience Starts Within

Account Takeover Risks of Small Businesses: How to Avoid Them

CISO Liability Risk and Jail Time, (ISC)2 Bylaw Vote and the Value of Cybersecurity Certifications

5 Tips for Achieving Better Cybersecurity Risk Management

Why Taylor Swift Fans Should Work in Cybersecurity

Spotlight on Cybersecurity Leaders: Bill Bowman

Risks to Your Network from Insecure Code Signing Processes

Why Is Shadow IT a Growing Cybersecurity Risk?

Five 2023 Cybersecurity Predictions by Doug Dooley

Spotlight on Cybersecurity Leaders: Chris Spohr

Reaction to Social Engineering Indicative of Cybersecurity Culture

Secure Communications: Relevant or a Nice to Have?

BSides Vancouver 2021 – Vivek Ponnada’s ‘Is The Power Grid A Huge Cybersecurity Risk?’

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

Importance of Cybersecurity Profession Highlights SecureWorld Chicago

(ISC)2 Study: Cybersecurity Industry Facing 3.4 Million Shortfall in Workers

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

Peer Report Explores Concerns, Challenges Facing Cybersecurity Leaders

New York Financial Services Firms to Face More Cybersecurity Oversight

Seeds of Destruction: Cyber Risk Is Growing in Agriculture

Phishing Benchmark Report Delivers Data, Tools to Mitigate End-User Risk

Global Cybersecurity Skills Gap Still Widening Despite Growing Workforce

Stay Connected