Tag: ciso
-
XDR provider Arctic Wolf buys BlackBerry’s Cylance suite
by
in SecurityNews
Tags: ai, business, ceo, ciso, cybersecurity, detection, edr, endpoint, government, infrastructure, office, phone, risk, service, soc, technologyUS provider Arctic Wolf has struck a deal to buy BlackBerry’s Cylance endpoint security suite, which it will integrate into its Aurora extended detection and response (XDR) platform.Arctic Wolf said this morning that if the deal is approved by regulators, the company will be able to offer one of the largest open XDR security platforms…
-
Security leaders top 10 takeaways for 2024
by
in SecurityNews
Tags: access, ai, attack, automation, best-practice, breach, business, ciso, cloud, compliance, corporate, crowdstrike, cybercrime, cybersecurity, data, deep-fake, detection, email, finance, fraud, governance, group, guide, hacker, identity, incident response, infosec, ISO-27001, office, okta, phishing, privacy, programming, regulation, risk, risk-management, saas, security-incident, service, software, startup, strategy, technology, threat, tool, training, vulnerabilityThis year has been challenging for CISOs, with a growing burden of responsibility, the push to make cybersecurity a business enabler, the threat of legal liability for security incidents, and an expanding attack landscape.As the year comes to a close, CISOs reflect on some of the takeaways that have shaped the security landscape in 2024.…
-
Feeling Reassured with Top-Tier API Security Measures
by
in SecurityNewsAre You Maximizing Your API Security Measures? If you’re a CISO or a cybersecurity professional, you understand the importance of robust API security measures. But, do these measures ensure optimum protection when non-human identities (NHIs) are involved? The disconnect between security and R&D teams can lead to exploitable gaps in API security. A comprehensive approach……
-
Thales and Imperva Win Big in 2024
by
in SecurityNews
Tags: access, api, application-security, attack, authentication, banking, business, ciso, cloud, communications, compliance, conference, control, cyber, cybersecurity, data, ddos, defense, encryption, firewall, gartner, group, guide, iam, identity, infosec, insurance, intelligence, malicious, mfa, microsoft, monitoring, privacy, risk, saas, service, software, strategy, threat, usaThales and Imperva Win Big in 2024 madhav Fri, 12/13/2024 – 09:36 At Thales and Imperva, we are driven by our commitment to make the world safer, and nothing brings us more satisfaction than protecting our customers from daily cybersecurity threats. But that doesn’t mean we don’t appreciate winning the occasional award. In the year…
-
How to turn around a toxic cybersecurity culture
by
in SecurityNews
Tags: access, advisory, attack, authentication, awareness, business, ciso, compliance, control, cyber, cybersecurity, data, governance, group, guide, healthcare, jobs, password, phishing, risk, sans, service, strategy, technology, threat, training, vulnerability, zero-trustA toxic cybersecurity culture affects team turnover, productivity, and morale. Worse yet, it places enterprise systems and data at risk.In a toxic cybersecurity culture, everybody believes that cybersecurity is somebody else’s job, says Keri Pearlson, executive director for Cybersecurity at MIT Sloan (CAMS), a research consortium focusing on cybersecurity leadership and governance issues. “They don’t…
-
Tackling software vulnerabilities with smarter developer strategies
by
in SecurityNewsIn this Help Net Security interview, Karl Mattson, CISO at Endor Labs, discusses strategies for enhancing secure software development. Mattson covers how developers can … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/13/karl-mattson-endor-labs-secure-coding/
-
CISOs need to consider the personal risks associated with their role
by
in SecurityNews70% of cybersecurity leaders felt that stories of CISOs being held personally liable for cybersecurity incidents have negatively affected their opinion of the role, according … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/13/cybersecurity-leaders-personal-liability/
-
Charges Against CISOs Create Worries, Hope in Security Industry: Survey
by
in SecurityNewsA survey of IT security pros by cybersecurity firm BlackFog found that 70% of them said federal cases like that against SolarWinds’ CISO hurt their opinion about the position, but some said they expected the boards of directors would take the issues of security more seriously. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/12/charges-against-cisos-create-worries-hope-in-security-industry-survey/
-
We must adjust expectations for the CISO role
by
in SecurityNewsCybersecurity has become one of the most high-stakes facets of business operations in the past few years. The chief information security officer (CISO) role, once a … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/12/ciso-role-expectations/
-
Shaping effective AI governance is about balancing innovation with humanity
by
in SecurityNewsIn this Help Net Security interview, Ben de Bont, CISO at ServiceNow, discusses AI governance, focusing on how to foster innovation while ensuring responsible oversight. He … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/12/ben-de-bont-servicenow-ai-governance/
-
Anton’s Security Blog Quarterly Q4 2024
by
in SecurityNews
Tags: ai, automation, ciso, cloud, cyber, defense, detection, edr, google, governance, incident response, metric, office, security-incident, siem, soc, threat, vulnerability, vulnerability-management, zero-trustAmazingly, Medium has fixed the stats so my blog/podcast quarterly is back to life. As before, this covers both Anton on Security and my posts from Google Cloud blog, and our Cloud Security Podcast (subscribe). Meta AI creation, steampunk theme Top 10 posts with the most lifetime views (excluding paper announcement blogs): Security Correlation Then…
-
Black Hat: Latest news and insights
by
in SecurityNewsThe infosecurity world decamps to London this week, with research on vulnerabilities in AI systems at the fore of the latest edition of Black Hat Europe.The four-day program runs from Dec. 9-12, with two-and four-day options of hands-on trainings, but the main event at ExCeL London occurs on Dec. 11 and 12 featuring the latest research, developments,…
-
What sucks in security? Research findings from 50+ security leaders
by
in SecurityNews
Tags: cisoA deep dive into what CISOs are actually complaining about First seen on tldrsec.com Jump to article: tldrsec.com/p/what-sucks-in-security
-
Cybersecurity News Round-Up 2024: 10 Biggest Stories That Dominated the Year
by
in SecurityNewsTechRepublic looks back at the biggest cybersecurity stories of 2024, from record data breaches to rising ransomware threats and CISO burnout. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/cyber-security-news-roundup-dec-2024/
-
Top tips for CISOs running red teams
by
in SecurityNewsRed team is the de facto standard in offensive security testing when you want to know how all security investments, from technological controls to user training to response procedures, work together when subjected to a targeted attack. Unlike penetration testing, which aims to comprehensively assess a system, or purple team, which assesses detection and response…
-
Strengthening security posture with comprehensive cybersecurity assessments
by
in SecurityNewsIn this Help Net Security interview, Phani Dasari, CISO at HGS, discusses key aspects of cybersecurity assessments, including effective tools and methodologies, the role of AI … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/10/phani-dasari-hgs-cybersecurity-assessments/
-
Sysdig stärkt sein Führungsteam mit neuem CISO und CMO
by
in SecurityNewsMit der Stärkung seines Führungsteams und dem kontinuierlichen Fokus auf Innovation ist Sysdig gut positioniert, um die Herausforderungen der Cloud-Sicherheitsbranche anzugehen. Das Unternehmen zielt darauf ab, Organisationen weltweit zu befähigen, Bedrohungen in Echtzeit zu erkennen und darauf zu reagieren, ohne ihre Agilität zu beeinträchtigen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/sysdig-staerkt-sein-fuehrungsteam-mit-neuem-ciso-und-cmo/a39172/
-
Gen AI use cases rising rapidly for cybersecurity, but concerns remain
by
in SecurityNews
Tags: ai, attack, automation, awareness, ceo, ciso, compliance, control, cybersecurity, data, detection, finance, framework, fraud, GDPR, governance, grc, group, guide, Hardware, HIPAA, incident response, intelligence, international, malware, middle-east, monitoring, phishing, privacy, RedTeam, regulation, risk, risk-assessment, risk-management, soc, software, strategy, technology, threat, tool, training, usaGenerative AI is being embedded into security tools at a furious pace as CISOs adopt the technology internally to automate manual processes and improve productivity. But research also suggests this surge in gen AI adoption comes with a fair amount of trepidation among cybersecurity professionals, which CISOs must keep in mind when weaving gen AI…
-
Who handles what? Common misconceptions about SaaS security responsibilities
by
in SecurityNewsIn this Help Net Security interview, James Dolph, CISO at Guidewire, addresses common misconceptions about security responsibilities in cloud environments, particularly in … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/09/james-dolph-guidewire-saas-responsibilities/
-
Attention CISOs: The New EU PLD Product Liability Directive Is Effective Now Compliance and Cybersecurity Readiness Required
by
in SecurityNewsThe European Union’s updated Product Liability Directive (PLD) takes effect this month, with a transition period through December 9, 2026. This update substantially changes how product liability applies to digital products sold in the EU. For Chief Information Security Officers (CISOs), understanding this change is crucial. The new PLD extends liability to digital products, including……
-
Building a robust security posture with limited resources
by
in SecurityNewsIn this Help Net Security interview, Gareth Lindahl-Wise, CISO at Ontinue, discusses how business leaders can align innovation with cybersecurity, tackle the risks posed by … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/06/gareth-lindahl-wise-ontinue-maintaining-security-posture/
-
CISOs still cautious about adopting autonomous patch management solutions
by
in SecurityNews
Tags: automation, business, cisco, ciso, cloud, control, crowdstrike, cybersecurity, email, exploit, firmware, group, infosec, microsoft, open-source, regulation, risk, software, strategy, technology, update, vulnerability, windowsFailing to patch vulnerabilities keeps biting CISOs.The most recent evidence: Last month, the Five Eyes cybersecurity agencies in the US, the UK, Australia, Canada, and New Zealand reported that the top 15 vulnerabilities routinely exploited last year included one that dated back to 2020 (a Microsoft Netlogon hole); one that dated back to 2021 (in…
-
The CISO: Guardian of Data while Navigating Risk Strategic Insights for the Boardroom and Shaping Future Business
by
in SecurityNews
Tags: access, ai, breach, business, ciso, cloud, compliance, computing, control, cyber, data, defense, detection, encryption, guide, incident, monitoring, resilience, risk, risk-management, software, strategy, threat, vulnerabilityThe CISO: Guardian of Data while Navigating Risk Strategic Insights for the Boardroom and Shaping Future Business madhav Thu, 12/05/2024 – 06:03 CISOs have one of the most vital roles in organizations today. It is also one of the most challenging. That’s because, regardless of industry or location, organizational data has become a precious asset.…