Education, Information Security, InfoSec and Risk

Episode 209: Fortinet’s Renee Tarun on Scaling InfoSec To Meet Tomorrow’s Challenges

The Security Ledger

APRIL 2, 2021

The information security industry needs both better tools to fight adversaries, and more people to do the fighting, says Fortinet Deputy CISO Renee Tarun in this interview with The Security Ledger Podcast’s Paul Roberts. The information security industry is simultaneously robust and beset by problems and challenges.

InfoSec

InfoSec CISO Information Security Cyber Risk

Introducing Behavioral Information Security

The Falcon's View

AUGUST 29, 2017

I concluded that maybe this sub-field would be called something like "behavioral security" and started doing searches on the topic. There is already a well-established sub-field within information security (infosec) known as " Behavioral Information Security." Well, low-and-behold, it already exists!

Information Security

Information Security InfoSec Social Engineering Security Awareness

CyberSaint STRONGER 2022 Conference Call for Speakers is Open!

CyberSecurity Insiders

FEBRUARY 1, 2022

BOSTON–( BUSINESS WIRE )– CyberSaint , the developer of the leading platform delivering cyber risk automation, today announced that the company is seeking speaker submissions for its virtual STRONGER conference, set to occur September 13th-15th 2022. Conference Tracks: Frameworks, Security, & Risk. InfoSec 360.

Digital transformation

Digital transformation InfoSec CISO Education

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Purdue University’s CERIAS 2021 Security Symposium – Gideon Rasmussen’s ‘Adaptive Cybersecurity Risk Assessments’

Security Boulevard

MARCH 24, 2022

Our thanks to Purdue University’s The Center for Education and Research in Information Assurance and Security (CERIAS) for publishing their illuminating security symposiums, seminars, talks, and presentations on the Schools’ YouTube channel.

Risk

Risk Cybersecurity Education InfoSec

NBlog Aug 8 - musing on ISO/IEC 27014 & infosec governance

Notice Bored

AUGUST 7, 2020

This morning I've been studying the final draft of the forthcoming second edition of ISO/IEC 27014 "Governance of information security" , partly to update ISO27001security.com but mostly out of my fascination with the topic. This will support the delivery of security education, training and awareness programs.

Government

Government InfoSec Information Security Accountability

Meet the 2021 SC Awards judges

SC Magazine

MAY 1, 2021

Below is our esteemed panel of SC Awards judges, contributing from health care, engineering, finance, education, manufacturing, nonprofit and consulting, among others. Cedric Leighton is founder and president of Cedric Leighton Associates, a strategic risk and leadership management consultancy. He retired as a colonel in 2010.

Computers and Electronics

Computers and Electronics Technology Education Information Security

Purdue University’s CERIAS 2021 Security Symposium – Randall Brooks’ ‘Cyber Supply Chain Risk Management (SCRM) And Its Impact On Information And Operational Technology’

Security Boulevard

APRIL 3, 2022

Our thanks to Purdue University’s The Center for Education and Research in Information Assurance and Security (CERIAS) for publishing their illuminating security symposiums, seminars, talks, and presentations on the Schools’ YouTube channel.

Technology

Technology Risk Education InfoSec

Security Awareness Training and Human Risk Management Company AwareGO Achieves Year of Outstanding Growth

CyberSecurity Insiders

FEBRUARY 3, 2022

SAN ANTONIO–( BUSINESS WIRE )–Security Awareness Training and Human Risk Management company AwareGO today announced company milestones achieved and overall performance for 2021, including record year-over-year online revenue growth of 219%, enterprise revenue growth of 156%, and total revenue growth of 116%. About AwareGO.

Security Awareness

Security Awareness Risk Marketing Cybersecurity

BSides Berlin 2021 – Vasant Chinnipilli’s ‘Rooting Out Security Risks Lurking In Your CI-CD Pipelines’

Security Boulevard

JANUARY 9, 2022

The post BSides Berlin 2021 – Vasant Chinnipilli’s ‘Rooting Out Security Risks Lurking In Your CI-CD Pipelines’ appeared first on Security Boulevard. Our thanks to BSides Berlin for publishing their tremendous videos from the BSides Berlin 2021 Conference on the organization’s’ YouTube channel.

Risk

Risk Education InfoSec Information Security

BSides Vancouver 2021 – Rose’s ‘The Overlooked Security Risk: 3rd Party Risk Management’

Security Boulevard

JULY 27, 2021

The post BSides Vancouver 2021 – Rose’s ‘The Overlooked Security Risk: 3rd Party Risk Management’ appeared first on Security Boulevard. Our thanks to BSides Vancouver for publishing their outstanding BSides Vancouver 2021 Conference videos on the groups' YouTube channel.

Risk

Risk Education InfoSec Information Security

BSides Tampa 2021 -Michael Melore’s, Hussein Syed’s, Charles Gagnon’s And Timothy Swope’s ‘CISO Panel, Managing Organizational Risk During A World Pandemic’

Security Boulevard

JUNE 24, 2021

Enjoy the Education! The post BSides Tampa 2021 -Michael Melore’s, Hussein Syed’s, Charles Gagnon’s And Timothy Swope’s ‘CISO Panel, Managing Organizational Risk During A World Pandemic’ appeared first on Security Boulevard.

CISO

CISO Risk Education InfoSec

CERIAS – Randall Brooks’ Cyber Supply Chain Risk Management (SCRM) And Its Impact On Information And Operational Technology’

Security Boulevard

APRIL 5, 2021

Enjoy and Be Educated Simultaneously! The post CERIAS – Randall Brooks’ Cyber Supply Chain Risk Management (SCRM) And Its Impact On Information And Operational Technology’ appeared first on Security Boulevard.

Technology

Technology Risk Education InfoSec

Hackers Could Cause ‘Fake Earthquakes’ by Exploiting Vulnerable Seismic Equipment, Researchers Warn

Hot for Security

FEBRUARY 16, 2021

Because modern seismic stations are now implemented as an Internet-of-Things (IoT) station – and just as insecure as any other IoT device – Samios and his colleagues were able to identify threats to the equipment that infosec pros typically find in common IoT gear, from smart doorbells to security cams.

IoT

IoT InfoSec Data collection Encryption

BSides Prishtina 2022 – Poliksena Berisha’s ‘Governance, Risk And Compliance (GRC) And Role Of IT Auditing’

Security Boulevard

MAY 25, 2022

Our sincere thanks to BSides Prishtina for publishing their Presenter’s BSides Prishtina 2022 Information Security Conference videos on the organization’s’ YouTube channel.

Government

Government Risk Information Security Education

BSides Vancouver 2021 – Vivek Ponnada’s ‘Is The Power Grid A Huge Cybersecurity Risk?’

Security Boulevard

JULY 19, 2021

The post BSides Vancouver 2021 – Vivek Ponnada’s ‘Is The Power Grid A Huge Cybersecurity Risk?’ ’ appeared first on Security Boulevard. Our thanks to BSides Vancouver for publishing their outstanding BSides Vancouver 2021 Conference videos on the groups' YouTube channel.

Risk

Risk Cybersecurity Education InfoSec

BSides Perth 2021 -Cairo Malet & ‘Risk OT for the BiscOT’

Security Boulevard

FEBRUARY 8, 2022

The post BSides Perth 2021 -Cairo Malet & ‘Risk OT for the BiscOT’ appeared first on Security Boulevard. Many thanks to BSides Perth for publishing their tremendous videos from the BSides Perth 2021 Conference on the organization’s YouTube channel.

Risk

Risk Education InfoSec Information Security

Episode 207: Sarah Tatsis of BlackBerry on finding and Keeping Women in Cyber

The Security Ledger

MARCH 19, 2021

In this week’s episode of the podcast (#207) we speak with Sara Tatsis of the firm Blackberry about her 20 year career at the legendary mobile device maker and the myriad challenges attracting women to- and keeping them in the information security field. Read the whole entry. »

Cyber Risk

Cyber Risk Surveillance InfoSec Mobile

Episode 207: Sara Tatsis of Blackberry on finding and Keeping Women in Cyber

The Security Ledger

MARCH 19, 2021

In this week’s episode of the podcast (#207) we speak with Sara Tatsis of the firm Blackberry about her 20 year career at the legendary mobile device maker and the myriad challenges attracting women to- and keeping them in the information security field. Read the whole entry. »

Cyber Risk

Cyber Risk Surveillance InfoSec Mobile

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. His contributions include founding Security BSides, serving as Strategist for Tenable, speaking at conferences, and co-hosting the podcast Security Voices.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Quantum Computing: A Looming Threat to Organizations and Nation States

SecureWorld News

SEPTEMBER 7, 2023

Director of Information Security, State of Colorado Governor's Office of Information Technology; and Toby Zimmerer, Sr. The panel will tackle topics and questions, including: The potential risks quantum computing poses to current cryptographic methods. Demand and Delivery Director, Optiv.

Encryption

Encryption Technology Risk Architecture

AI in Cybersecurity: How to Cut Through the Overhype and Maximize the Potential

CyberSecurity Insiders

DECEMBER 4, 2021

ISACA’s new publication, AI Uses in Blue Team Security , looks at AI, ML and DL applications in cybersecurity to determine what is working, what is not, what looks encouraging for the future and what may be more hype than substance. It has a presence in 188 countries, including more than 220 chapters worldwide.

Cybersecurity

Cybersecurity Artificial Intelligence Education Engineering

Hi-5 With A CISO Dmitriy Sokolovskiy, Avid Technology

Security Boulevard

MAY 20, 2021

CybeReady’s Hi-5 brings together InfoSec leaders for peer-to-peer sharing via five short questions and insights. Dmitriy Sokolovskiy has been working in the cybersecurity space for over 14 years in dedicated security roles, in addition to 9 more years working in various IT areas.

CISO

CISO Technology InfoSec Information Security

The business case for security strategy and architecture

Notice Bored

AUGUST 8, 2022

Providing a blueprint, mapping-out and clarifying the organisational structure, governance arrangements and accountabilities for information risk and security relative to other parts of the business such as IT, physical security, Risk, legal/compliance, HR, operations, business continuity, knowledge management.;

Architecture

Architecture Artificial Intelligence Risk Big data

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

But those aren’t the only laws or regulations that affect IT security teams. There are plenty of others to worry anyone with job titles that include terms like “compliance,” “privacy,” and “security,” from CSOs on down. See the Top Governance, Risk and Compliance (GRC) Tools. Security, Privacy and Compliance Can Conflict.

Data privacy

Data privacy Encryption Data breaches Insurance

EDRi PrivacyCamp22 – ‘Drawing A (Red) Line In The Sand: On Bans, Risks And The EU AI Act’

Security Boulevard

MARCH 2, 2022

The post EDRi PrivacyCamp22 – ‘Drawing A (Red) Line In The Sand: On Bans, Risks And The EU AI Act’ appeared first on Security Boulevard. Sincere thanks to EDRi (European Digital Rights) for publishing their phenomenal videos from the EDRi PrivacyCamp22 Conference on the organization’s YouTube channel.

Risk

Risk Education InfoSec Information Security

Hi-5 With A CISO Andrea Szeiler, Transcom

Security Boulevard

MAY 4, 2021

CybeReady’s Hi-5 brings together InfoSec leaders for peer-to-peer sharing via five short questions and insights. She held Audit and Security leadership roles in leading European companies. In 2014 she founded WITSEC, a professional group of women working in IT and Information Security […].

CISO

CISO InfoSec Information Security Cybersecurity

Security BSides London 2021 – Ciara Campbell’s ‘Think Zero Days Are Your Your Biggest Risk – Think Again’

Security Boulevard

JANUARY 14, 2022

Our thanks to Security BSides London for publishing their tremendous videos from the Security BSides London 2021 Conference on the organization’s YouTube channel.

Risk

Risk Education InfoSec Information Security

As SolarWinds spooks tech firms into rechecking code, some won’t like what they find

SC Magazine

JANUARY 29, 2021

If or when more attacks are uncovered, end-user organizations will need to apply the lessons learned from SolarWinds and prepare to take swift and decisive action, infosec experts agreed in a series of interviews with SC Media. Department of Education. “No No one wants to be patient zero.”. Hard reality check.

InfoSec

InfoSec CISO Media Software

Cyber CEO: The Cybersecurity Skills Gap – How to Address it Now and in the Future

Herjavec Group

OCTOBER 28, 2021

Start Cybersecurity Education Early. Our kids are growing up in an increasingly technological world – we need to provide them with the resources and education to navigate it in a smart and safe way. Inspire those who would excel in an information security career. And I really mean everyone !

Cybersecurity

Cybersecurity Education InfoSec Technology

CPDP 2021 – Moderator: Moderator: Frederik Zuiderveen Borgesius ‘Artificial Intelligence And Discrimination Risks In The Health Sector’

Security Boulevard

APRIL 24, 2021

The post CPDP 2021 – Moderator: Moderator: Frederik Zuiderveen Borgesius ‘Artificial Intelligence And Discrimination Risks In The Health Sector’ appeared first on Security Boulevard.

Artificial Intelligence

Artificial Intelligence Risk Education InfoSec

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

But how exactly will artificial intelligence help bridge the information security skills gap? And even with the help of machine learning algorithms, what kinds of security work is still best left to humans? They won with Mayhem, an assisted intelligence application security testing solution. David Brumley: Oh, no.

InfoSec

InfoSec Artificial Intelligence Computers and Electronics Software

BSides Vancouver 2021 – Vivek Ponnada’s ‘Is The Power Grid A Huge Cybersecurity Risk?’

Security Boulevard

JULY 23, 2021

The post BSides Vancouver 2021 – Vivek Ponnada’s ‘Is The Power Grid A Huge Cybersecurity Risk?’ ’ appeared first on Security Boulevard. Our thanks to BSides Vancouver for publishing their outstanding BSides Vancouver 2021 Conference videos on the groups' YouTube channel.

Risk

Risk Cybersecurity Education InfoSec

Herjavec Group is Recognized by Cyber Defence Black Unicorn Awards

Herjavec Group

AUGUST 2, 2021

He has over 30 years of experience in information security and has established himself as a leading voice in business and cybersecurity. Along with these contributions, Robert is active in a number of impactful infosec initiatives. Winner: Top 10 Cybersecurity Experts – Robert Herjavec. Connect with Robert.

InfoSec

InfoSec Cybersecurity Computers and Electronics Technology

Jen Easterly Takes Charge of CISA At Black Hack USA 2021

ForAllSecure

AUGUST 18, 2021

The real puzzle was how to get public and private institutions to work together to solve the problems infosec faces today. It’s first directory, Chris Krebs, was fired by then-president Tump for saying that the 2020 election was the most secure election in history. Easterly began by presenting her bio. This new initiative will.

Hacking

Hacking InfoSec Cybersecurity Education

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

But how exactly will artificial intelligence help bridge the information security skills gap? And even with the help of machine learning algorithms, what kinds of security work is still best left to humans? They won with Mayhem, an assisted intelligence application security testing solution. David Brumley: Oh, no.

InfoSec

InfoSec Artificial Intelligence Computers and Electronics Software

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

ForAllSecure

OCTOBER 9, 2019

But how exactly will artificial intelligence help bridge the information security skills gap? And even with the help of machine learning algorithms, what kinds of security work is still best left to humans? They won with Mayhem, an assisted intelligence application security testing solution. David Brumley: Oh, no.

InfoSec

InfoSec Artificial Intelligence Computers and Electronics Software

‘I vowed I was going to teach people’: NPower’s trauma-informed training nurtures digital talent

SC Magazine

MARCH 18, 2021

military and serving as deputy chief information security officer at Globe Life and global information security risk director at GM Financial. As an infosec leader, Vaughn witnessed first-hand the dearth of available IT talent that’s available to hire. racism, poverty, etc.)

Education

Education Media InfoSec Engineering

CPDP 2021 – Moderator: Chris Shenefiel ‘Towards Developing Comprehensive Privacy Controls That Minimize Risks’

Security Boulevard

MAY 18, 2021

The post CPDP 2021 – Moderator: Chris Shenefiel ‘Towards Developing Comprehensive Privacy Controls That Minimize Risks’ appeared first on Security Boulevard.

Risk

Risk Education InfoSec Information Security

CPDP 2021 – Moderator: John Davisson ‘Student Privacy At Risk Under Covid-19: Online Test Proctoring Brings AI And Surveillance Into Students’ Homes’

Security Boulevard

MAY 2, 2021

The post CPDP 2021 – Moderator: John Davisson ‘Student Privacy At Risk Under Covid-19: Online Test Proctoring Brings AI And Surveillance Into Students’ Homes’ appeared first on Security Boulevard.

Surveillance

Surveillance Risk Education InfoSec

CPDP 2021 – Moderator: Denise Amram ‘Children’s Rights In The Digital Environment: Risks, Opportunities, And Responsibilities’

Security Boulevard

MAY 12, 2021

The post CPDP 2021 – Moderator: Denise Amram ‘Children’s Rights In The Digital Environment: Risks, Opportunities, And Responsibilities’ appeared first on Security Boulevard.

Risk

Risk Education InfoSec Information Security

Cyber CEO: 5 Outdated but Common Cybersecurity Practices You Should Avoid

Herjavec Group

SEPTEMBER 23, 2021

But I would add that it’s not just cybersecurity, but up-to-date cybersecurity – a security strategy that can truly prepare and defend your enterprise against the modern threat landscape. The bygone ways of approaching information security simply won’t cut it today. Fortify areas that are most at risk.

Cybersecurity

Cybersecurity Penetration Testing Digital transformation Risk

InfoSec Leaders Weigh in on New SEC Rules Making CISO Hotseat Hotter

SecureWorld News

JULY 31, 2023

Cybersecurity professionals have various views on last week's news from the United States Securities and Exchange Commission (SEC) when it surprised the InfoSec community and the C-suites of corporate America. For sanity, manage to a written information security policy. After all, a CISO can't do it all.

CISO

CISO InfoSec Risk Cybersecurity

Redesigning the Security Narrative

Duo's Security Blog

APRIL 29, 2022

As I immersed myself in foreign concepts around the information security industry, marketing, and business practices at scale, I grew to appreciate not just the technology we were building at Duo, but the people who built it, the diverse audiences that we addressed, and the unique problems-to-solve around security at large.

Marketing

Marketing Architecture InfoSec Authentication

The cyber skills gap & the diversity debate

Thales Cloud Protection & Licensing

JUNE 25, 2019

million employees today, according to the latest estimates from (ISC)², the world’s leading cybersecurity and IT security professional organisation. This gap is putting all organisations at greater risk of attack. Organisations across the globe are suffering a cybersecurity workforce “gap” of around 2.9

Technology

Technology Small Business Cybersecurity InfoSec

Episode 209: Fortinet’s Renee Tarun on Scaling InfoSec To Meet Tomorrow’s Challenges

Introducing Behavioral Information Security

Webinars

Trending Sources

CyberSaint STRONGER 2022 Conference Call for Speakers is Open!

Webinars

Purdue University’s CERIAS 2021 Security Symposium – Gideon Rasmussen’s ‘Adaptive Cybersecurity Risk Assessments’

NBlog Aug 8 - musing on ISO/IEC 27014 & infosec governance

Meet the 2021 SC Awards judges

Purdue University’s CERIAS 2021 Security Symposium – Randall Brooks’ ‘Cyber Supply Chain Risk Management (SCRM) And Its Impact On Information And Operational Technology’

Security Awareness Training and Human Risk Management Company AwareGO Achieves Year of Outstanding Growth

BSides Berlin 2021 – Vasant Chinnipilli’s ‘Rooting Out Security Risks Lurking In Your CI-CD Pipelines’

BSides Vancouver 2021 – Rose’s ‘The Overlooked Security Risk: 3rd Party Risk Management’

BSides Tampa 2021 -Michael Melore’s, Hussein Syed’s, Charles Gagnon’s And Timothy Swope’s ‘CISO Panel, Managing Organizational Risk During A World Pandemic’

CERIAS – Randall Brooks’ Cyber Supply Chain Risk Management (SCRM) And Its Impact On Information And Operational Technology’

Hackers Could Cause ‘Fake Earthquakes’ by Exploiting Vulnerable Seismic Equipment, Researchers Warn

BSides Prishtina 2022 – Poliksena Berisha’s ‘Governance, Risk And Compliance (GRC) And Role Of IT Auditing’

BSides Vancouver 2021 – Vivek Ponnada’s ‘Is The Power Grid A Huge Cybersecurity Risk?’

BSides Perth 2021 -Cairo Malet & ‘Risk OT for the BiscOT’

Episode 207: Sarah Tatsis of BlackBerry on finding and Keeping Women in Cyber

Episode 207: Sara Tatsis of Blackberry on finding and Keeping Women in Cyber

Top Cybersecurity Accounts to Follow on Twitter

Quantum Computing: A Looming Threat to Organizations and Nation States

AI in Cybersecurity: How to Cut Through the Overhype and Maximize the Potential

Hi-5 With A CISO Dmitriy Sokolovskiy, Avid Technology

The business case for security strategy and architecture

Security Compliance & Data Privacy Regulations

EDRi PrivacyCamp22 – ‘Drawing A (Red) Line In The Sand: On Bans, Risks And The EU AI Act’

Hi-5 With A CISO Andrea Szeiler, Transcom

Security BSides London 2021 – Ciara Campbell’s ‘Think Zero Days Are Your Your Biggest Risk – Think Again’

As SolarWinds spooks tech firms into rechecking code, some won’t like what they find

Cyber CEO: The Cybersecurity Skills Gap – How to Address it Now and in the Future

CPDP 2021 – Moderator: Moderator: Frederik Zuiderveen Borgesius ‘Artificial Intelligence And Discrimination Risks In The Health Sector’

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

BSides Vancouver 2021 – Vivek Ponnada’s ‘Is The Power Grid A Huge Cybersecurity Risk?’

Herjavec Group is Recognized by Cyber Defence Black Unicorn Awards

Jen Easterly Takes Charge of CISA At Black Hack USA 2021

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

‘I vowed I was going to teach people’: NPower’s trauma-informed training nurtures digital talent

CPDP 2021 – Moderator: Chris Shenefiel ‘Towards Developing Comprehensive Privacy Controls That Minimize Risks’

CPDP 2021 – Moderator: John Davisson ‘Student Privacy At Risk Under Covid-19: Online Test Proctoring Brings AI And Surveillance Into Students’ Homes’

CPDP 2021 – Moderator: Denise Amram ‘Children’s Rights In The Digital Environment: Risks, Opportunities, And Responsibilities’

Cyber CEO: 5 Outdated but Common Cybersecurity Practices You Should Avoid

InfoSec Leaders Weigh in on New SEC Rules Making CISO Hotseat Hotter

Redesigning the Security Narrative

The cyber skills gap & the diversity debate

Stay Connected