Security Affairs

SEPTEMBER 30, 2021

The US CISA has released a new tool that allows to assess the level of exposure of organizations to insider threats and devise their own defense plans against such risks. The tool elaborates the answers of the organizations to a survey about their implementations of a risk program management for insider threats. Pierluigi Paganini.

Risk 98

Risk InfoSec Ransomware Technology 98

Herjavec Group

MAY 17, 2021

Market Leader in Managed Security Service Provider (MSSP). HG Managed Security Services can be consumed independently or packaged into a complete Security-as-a-Service offering. HG Security Engineering . Quickly detect risks and amend access entitlement issues associated with privileged users.

InfoSec 52

InfoSec Marketing Technology B2C 52

Notice Bored

MAY 24, 2021

Anyone seeking information security standards or guidance is spoilt for choice e.g. : ISO27k - produced by a large international committee of subject matter experts and national representatives NIST SP 800 series – well researched, well written, actively maintained. and loads more. and loads more. Three different perspectives.

InfoSec 98

InfoSec Risk IoT Information Security 98

ForAllSecure

MARCH 8, 2023

Booth babes and rampant sexism were more of a problem in infosec in the past. What if you are a woman in information security? I’m Robert Vamosi, and in the episode I’m talking about diversity, equality, and inclusion in information security with one of the industries' most successful examples.

InfoSec 40

InfoSec Engineering CSO Technology 40

SecureWorld News

FEBRUARY 26, 2024

Bill Bowman, CISSP, CIPM, is the Chief Information Security Officer & Data Privacy Officer at financial software company Emburse. He is the father of five children and gives talks on helping families work through social media and technology challenges. A : Moving the reporting line to risk (GC/CLO); using AI.

Cybersecurity 88

Cybersecurity CISO InfoSec Data privacy 88

Security Boulevard

APRIL 3, 2022

Our thanks to Purdue University’s The Center for Education and Research in Information Assurance and Security (CERIAS) for publishing their illuminating security symposiums, seminars, talks, and presentations on the Schools’ YouTube channel.

Technology 52

Technology Risk Education InfoSec 52

Cisco Security

MAY 5, 2022

As the complexity of market demand grows, SaaS providers need an efficient way to simplify and streamline efforts to attain security certifications. A strategic compliance and risk management approach is as essential to the success of an organization as its product strategy. Infosec Registered Assessors Program (IRAP December 2020).

Marketing 117

Marketing InfoSec Risk Technology 117

Security Boulevard

JULY 30, 2023

Listen to our discussion about this cutting-edge technology and its potential impact on our privacy. Join […] The post Your Digital Immortality is Coming, Apple and Google Are Data Gatekeepers, Satellite Security Risks Revealed appeared first on Shared Security Podcast. Have these tech companies gone too far?

Risk 52

Risk Technology Data privacy InfoSec 52

Security Boulevard

NOVEMBER 17, 2022

Data is, or at least should be, the lifeblood of an effective information security program. One source of data that is typically missing from an infosec program is user, or employee driven data. Data is, or at least should be, the lifeblood of an effective information security program. This is not wrong.

InfoSec 64

InfoSec Passwords Risk Information Security 64

SecureWorld News

SEPTEMBER 12, 2023

These skills also happen to apply to information security (infosec) and cyber threat intelligence and research. And you'll leave your first infosec conference with an armful of them. From network to endpoint to cloud , the cybersecurity industry does its own genre blending, evolving with advances in technology.

Cybersecurity 93

Cybersecurity InfoSec Threat Detection Accountability 93

Security Boulevard

APRIL 5, 2021

The post CERIAS – Randall Brooks’ Cyber Supply Chain Risk Management (SCRM) And Its Impact On Information And Operational Technology’ appeared first on Security Boulevard. Many thanks to CERIAS Purdue University for publishing their outstanding videos on the organization's YouTube channel.

Technology 45

Technology Risk Education InfoSec 45

CyberSecurity Insiders

FEBRUARY 1, 2022

BOSTON–( BUSINESS WIRE )– CyberSaint , the developer of the leading platform delivering cyber risk automation, today announced that the company is seeking speaker submissions for its virtual STRONGER conference, set to occur September 13th-15th 2022. Conference Tracks: Frameworks, Security, & Risk. InfoSec 360.

Digital transformation 74

Digital transformation InfoSec CISO Education 74

Security Boulevard

MAY 14, 2023

Finally, we explore the US government’s […] The post Private Tweets Exposed, Unauthorized Tracking Collaboration, AI Risks and Regulation appeared first on Shared Security Podcast. The post Private Tweets Exposed, Unauthorized Tracking Collaboration, AI Risks and Regulation appeared first on Security Boulevard.

Risk 69

Risk Artificial Intelligence Data privacy Technology 69

Security Boulevard

OCTOBER 30, 2022

Rafal Los, host of the popular Down the Security Rabbithole Podcast, joins us to discuss CISO liability risk and the ongoing discussion in the cybersecurity community about CISOs going to jail.

CISO 97

CISO Risk Cybersecurity Data privacy 97

SC Magazine

MAY 1, 2021

With a career spanning two decades as a technology provider to businesses and government agencies, Levine brings a strategic and pragmatic approach to building secure software and cloud services without disrupting product velocity. Since founding Cedric Leighton Associates, he has become an internationally known strategic risk expert.

Computers and Electronics 126

Computers and Electronics Technology Education Information Security 126

SecureWorld News

JUNE 13, 2023

It was fitting that the opening keynote panel for SecureWorld Chicago on June 8th was titled " Making the Cybersecurity Music: Navigating Challenges and Opportunities in Today's InfoSec Landscape. Well, information security, cybersecurity happens to be a critical part of the business, being able to achieve strategic objectives.

Cybersecurity 84

Cybersecurity CISO InfoSec Risk 84

SecureWorld News

SEPTEMBER 7, 2023

Director of Information Security, State of Colorado Governor's Office of Information Technology; and Toby Zimmerer, Sr. The panel will tackle topics and questions, including: The potential risks quantum computing poses to current cryptographic methods. Demand and Delivery Director, Optiv. Is it a business problem?

Encryption 94

Encryption Technology Risk Architecture 94

Security Boulevard

MAY 7, 2023

Next, we dive into a case where a photographer tried to get his photos removed from an AI dataset, only to receive an invoice instead of having his photos taken […] The post Juice Jacking Debunked, Photographer vs. AI Dataset, Google Authenticator Risks appeared first on Shared Security Podcast.

Authentication 64

Authentication Risk Cyber Attacks Data privacy 64

CyberSecurity Insiders

DECEMBER 6, 2022

Many technology workers will resign from their comfortable, high-paying jobs at larger employers. The net result will be less employment opportunities and eventually less job-hoping in 2023 despite the talent shortfall in IT security. The security world has always been tribal and secretive by default. CISO shortage. CISO exodus.

Cybersecurity 126

Cybersecurity CISO InfoSec Technology 126

The Security Ledger

APRIL 30, 2019

The post Episode 144: Infosec Supporting Right to Repair with Joe Grand and Kyle Wiens appeared first on The Security Ledger. Households Introducing Securepairs.org: Fighting Infosec FUD for the Right to Repair. What is needed is for the information security community to speak up – and loudly.

InfoSec 40

InfoSec Computers and Electronics Telecommunications Software 40

Notice Bored

FEBRUARY 20, 2022

The newly-published third edition of ISO/IEC 27002 is a welcome update to the primary ISO27k controls catalogue (officially, a 'reference set of generic information security controls'). Monitoring activities (8.16) - 'anomalies' on IT networks, systems and apps should be detected and responded to, to mitigate the associated risks.

IoT 102

IoT Risk Information Security Technology 102

The Security Ledger

OCTOBER 7, 2021

Related Stories Spotlight: Operationalizing MDR with Pondurance CISO Dustin Hutchinson Spotlight: When Ransomware Comes Calling Spotlight: Is There A Cure For InfoSec’s Headcount Headache? Enterprises today have a full plate of challenges when it comes to cyber security.

CISO 98

CISO InfoSec Backups Ransomware 98

The Security Ledger

OCTOBER 7, 2021

Related Stories Spotlight: When Ransomware Comes Calling Spotlight: Is There A Cure For InfoSec’s Headcount Headache? Enterprises today have a full plate of challenges when it comes to cyber security. Episode 226: The Cyber Consequences Of Our Throw Away Culture.

CISO 97

CISO InfoSec Backups Ransomware 97

The Security Ledger

MARCH 19, 2021

In this week’s episode of the podcast (#207) we speak with Sara Tatsis of the firm Blackberry about her 20 year career at the legendary mobile device maker and the myriad challenges attracting women to- and keeping them in the information security field. Read the whole entry. »

Cyber Risk 52

Cyber Risk Surveillance InfoSec Mobile 52

The Security Ledger

MARCH 19, 2021

In this week’s episode of the podcast (#207) we speak with Sara Tatsis of the firm Blackberry about her 20 year career at the legendary mobile device maker and the myriad challenges attracting women to- and keeping them in the information security field. Read the whole entry. »

Cyber Risk 52

Cyber Risk Surveillance InfoSec Mobile 52

SC Magazine

APRIL 14, 2021

For the first time in its 60-year history, the OECD offered policy guidelines for risk reduction through vulnerability management. For the first time in its history this past February, the Organization for Economic Cooperation and Development (OECD) offered policy guidelines for digital risk reduction through vulnerability management.

Government 107

Government Risk Information Security InfoSec 107

The Security Ledger

SEPTEMBER 18, 2019

We talk about the growing demand for security automation tools and how the chronic cyber security talent shortage in North America and. In this Spotlight Podcast, we speak with David Brumley, the Chief Executive Officer at the security firm ForAllSecure * and a professor of Computer Science at Carnegie Mellon University.

Artificial Intelligence 40

Artificial Intelligence InfoSec Computers and Electronics Telecommunications 40

Daniel Miessler

MARCH 20, 2022

I’m starting a new series with this 2022 edition where I think about what Information Security could or should look like in the distant future—say in 2050. The ideas will cover multiple aspects of InfoSec, from organizational structure to technology. Technology. Technology. Org Structure.

InfoSec 180

InfoSec Insurance Engineering Technology 180

Hot for Security

FEBRUARY 16, 2021

Hackers could trigger ‘fake earthquakes,’ affecting emergency and economic responses to a seismic event, and generate mistrust in seismic technology among the population, the researchers say. Seismic monitoring equipment is vulnerable to common cybersecurity threats like those faced by IoT devices, a new research paper warns.

IoT 128

IoT InfoSec Data collection Encryption 128

IT Security Guru

JUNE 26, 2023

While shadow APIs appear to be less of a concern for those surveyed, this may reflect their organisational risk appetite. Pick Your Path ® was another one that I remember) It’s been around a long time, and a few years ago the Infosec Institute gamified information security by creating the “Zombie Invasion” game.

InfoSec 98

InfoSec Manufacturing Risk Software 98

Notice Bored

JULY 4, 2022

I feel more confident about the underlying generic principles of risk, compliance, conformity, obligations, accountabilities, assurance and controls though, and have the breadth of work and life experience to appreciate the next point. The mind map is a brief glimpse of the landscape, as I see it. Documented! Maintained!

Risk 72

Risk Accountability InfoSec CISO 72

Notice Bored

AUGUST 8, 2022

Providing a blueprint, mapping-out and clarifying the organisational structure, governance arrangements and accountabilities for information risk and security relative to other parts of the business such as IT, physical security, Risk, legal/compliance, HR, operations, business continuity, knowledge management.;

Architecture 66

Architecture Artificial Intelligence Risk Big data 66

ForAllSecure

OCTOBER 9, 2019

Every so often, a technology comes along that seems to perfectly capture the zeitgeist : representing all that is both promising and troubling about the future. The technology is poised to change just about everything else …at least eventually. When it comes to what can you do today?

InfoSec 52

InfoSec Artificial Intelligence Computers and Electronics Software 52

The Security Ledger

FEBRUARY 15, 2021

In our second segment: is infosec’s lack of diversity a bug or a feature? Tennisha Martin of Black Girls Hack joins us to talk about the many obstacles that black women face as they try to enter the information security field. Can Infosec Walk the Talk on Diversity? Part 1: Don’t Hack the Water! Episode 200: Sak.

Hacking 52

Hacking InfoSec Information Security Risk 52

Herjavec Group

AUGUST 2, 2021

Herjavec Group’s award-winning Managed Security Services Practice defends global, enterprise-level organizations from increasingly sophisticated, targeted cybercrime threats. He has over 30 years of experience in information security and has established himself as a leading voice in business and cybersecurity.

InfoSec 52

InfoSec Cybersecurity Computers and Electronics Technology 52

CyberSecurity Insiders

DECEMBER 4, 2021

However, the engineers were optimistic about the direction they were heading and the technologies they would be creating as they relate to ML and DL. AI Uses in Blue Team Security is available as a free download at www.isaca.org/ai-blue-team-security. About ISACA.

Cybersecurity 52

Cybersecurity Artificial Intelligence Education Engineering 52

Notice Bored

NOVEMBER 26, 2021

Globalization' is not just about establishing a widespread physical presence and brands: it's also about harnessing a widely distributed and culturally diverse workforce, harnessing technology to link, leverage and exploit the very best of the best. so, how things going with your security strategy development, dear CISO?

Risk 66

Risk Artificial Intelligence Technology InfoSec 66