Tag: cio
-
Your Board Is Using Shadow AI
Board Members Adopt GenAI Without Policies or Oversight. A new Diligent Institute survey finds 82% of U.S. public company directors are using generative AI for board work, yet 69% of boards have no formal AI policy in place. CIOs are being left out of the governance conversation, and the risks are mounting. First seen on…
-
Gulf CIOs shift focus from recovery to cyber resilience as regional threats intensify
Commvault’s Yahya Kassab says organisations across the Gulf are reassessing recovery strategies, AI risks and cloud investments amid growing cyber threats First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366644877/Gulf-CIOs-shift-focus-from-recovery-to-cyber-resilience-as-regional-threats-intensify
-
The AI Accountability Gap CIOs Can’t Ignore
IBM Research Finds Tech Leaders Struggle With Agent Sprawl. A new IBM Institute for Business Value survey finds two-thirds of CIOs and CTOs are accountable for AI systems they don’t fully control. The survey of 2,000 tech executives details rising AI agent incidents and recommends infrastructure, governance and financial fixes. First seen on govinfosecurity.com Jump…
-
Texas A&M CIO emphasizes user experience in cybersecurity strategy
First seen on scworld.com Jump to article: www.scworld.com/brief/texas-am-cio-emphasizes-user-experience-in-cybersecurity-strategy
-
California’s new CIO focuses on modernizing legacy systems and AI
First seen on scworld.com Jump to article: www.scworld.com/brief/californias-new-cio-focuses-on-modernizing-legacy-systems-and-ai
-
Ex-CISA CIO Breaks Down Trump’s New AI Executive Order
Bob Costello on Voluntary Plan’s Impact on Collaboration – and CISA’s Pivotal Role. Former CISA CIO Bob Costello said President Trump’s voluntary AI cybersecurity review order provides a workable foundation for government-industry collaboration, though agencies will need time and resources to meet accelerated 30-day evaluations of advanced AI systems. First seen on govinfosecurity.com Jump to…
-
Turning tension into collaboration: How CIOs and CISOs can lead together
If properly managed and channeled, age-old friction between IT and cybersecurity can create a more resilient organization. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/turning-tension-into-collaboration-how-cios-cisos-can-lead-together/821610/
-
Why Most Enterprise AI Failures Aren’t Technical
OpenText CIO Shannon Bell on Governance and Operational Maturity. Enterprise AI often fails not because the models are weak, but because organizations lack operational maturity. OpenText’s Shannon Bell explains why governance, data context and accountability determine whether agentic AI succeeds in production. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/most-enterprise-ai-failures-arent-technical-a-31822
-
Mythos-Level AI Is Creating a Tech Debt Crisis
Advanced AI Models Find More Holes Than Enterprise Security Teams Can Plug. Artificial intelligence models such as Anthropic’s Mythos are rapidly exposing decades of hidden software security debt, forcing CIOs and CISOs to rethink vulnerability management, remediation capacity and the trade-offs between availability and breach prevention. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/mythos-level-ai-creating-tech-debt-crisis-a-31750
-
7 tips for accelerating cyber incident recovery
Tags: attack, awareness, backup, breach, business, ceo, cio, ciso, cloud, communications, control, cyber, cybersecurity, data, defense, finance, framework, governance, incident, incident response, infection, insurance, international, lessons-learned, malicious, malware, monitoring, nist, risk, service, technology, threat, updateEmphasize scoping and containment from the outset: Because you can’t recover from what you can’t stop, scoping and containment should be the absolute first priority during incident recovery, says Amit Basu, CIO and CISO at freight shipping firm International Seaway.”Before anything else, you must stop the bleeding,” he says. This means understanding the true scope…
-
GSK: The AI-Driven Science Factory
AI Rebuilds $50B Pharma Giant’s Thinking, Plan Could Help Every Data-Driven Firm GSK is redesigning pharmaceutical research around AI, from data infrastructure to autonomous scientific agents. Its platforms accelerate hypothesis generation, imaging analysis and drug discovery workflows, offering CIOs a blueprint for enterprise-scale AI transformation in regulated industries. First seen on govinfosecurity.com Jump to article:…
-
EU’s Cyber Resiliency Act will put IT leaders to the test
Tags: access, attack, cio, cyber, cybersecurity, data, encryption, exploit, firewall, Hardware, identity, infrastructure, Internet, kubernetes, law, malicious, mitigation, open-source, password, programming, regulation, risk, risk-assessment, router, sbom, software, supply-chain, tool, update, vpn, vulnerabilityProduct safety: The CRA says digital products have to be secure by design and default, and can’t ship with known vulnerabilities like obvious default passwords that can be exploited. They also must be updatable if such vulnerabilities are found later, as well as minimize their impact by limiting the attack surface and protecting confidentiality and…
-
EU’s Cyber Resiliency Act will put IT leaders to the test
Tags: access, attack, cio, cyber, cybersecurity, data, encryption, exploit, firewall, Hardware, identity, infrastructure, Internet, kubernetes, law, malicious, mitigation, open-source, password, programming, regulation, risk, risk-assessment, router, sbom, software, supply-chain, tool, update, vpn, vulnerabilityProduct safety: The CRA says digital products have to be secure by design and default, and can’t ship with known vulnerabilities like obvious default passwords that can be exploited. They also must be updatable if such vulnerabilities are found later, as well as minimize their impact by limiting the attack surface and protecting confidentiality and…
-
Ten years later, has the GDPR fulfilled its purpose?
Tags: access, ai, breach, business, china, cio, compliance, data, data-breach, dora, finance, flaw, framework, GDPR, governance, government, international, jobs, law, mobile, office, privacy, regulation, risk, service, technology, tool, trainingFernando Maldonado, technology advisor at Foundry. MuleSoft. Gray areas remain: Still, if anything has been demonstrated in the decade since its entry into force, it’s that the GDPR still has a long way to go.Miguel Recio, president of APEP.IA (Spanish Professional Association for Privacy), argues that some of the limitations that have been exposed about the…
-
The fake IT worker problem CISOs can’t ignore
Tags: access, ai, breach, business, captcha, cio, ciso, compliance, computer, control, credentials, crowdstrike, data, detection, edr, endpoint, fedramp, fraud, gartner, iam, identity, jobs, linkedin, mitigation, monitoring, network, north-korea, office, phone, risk, skills, tool, training, zero-trustWhat to do if you suspect a fake IT worker: When a CIO suspects a fake IT worker, next steps are important as the issue shifts from recruitment to insider risk management.During his time at MongoDB, George Gerchow, IANS faculty advisor and Bedrock Data CSO, oversaw the investigation after the company detected it had unknowingly…
-
A Tale of Two States: The 2026 Cybersecurity Paradox
The cyber threat outlooks from CIOs and CISOs at the NASCIO Midyear Conference in Philadelphia ranged from the good to the bad to the ugly, with AI front and center. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/05/a-tale-of-two-states-the-2026-cybersecurity-paradox/
-
AI Governance Moves From Theory to Practice
CIOs Face Growing Pressure on Risk, Data and Board Reporting. As AI moves deeper into enterprise operations, CIOs are being pushed to turn governance principles into practical controls, board reporting and risk oversight, according to a survey by The Conference Board’s Governance and Sustainability Center. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/ai-governance-moves-from-theory-to-practice-a-31534
-
AI Governance Moves From Theory to Practice
CIOs Face Growing Pressure on Risk, Data and Board Reporting. As AI moves deeper into enterprise operations, CIOs are being pushed to turn governance principles into practical controls, board reporting and risk oversight, according to a survey by The Conference Board’s Governance and Sustainability Center. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/ai-governance-moves-from-theory-to-practice-a-31534
-
AI Governance Moves From Theory to Practice
CIOs Face Growing Pressure on Risk, Data and Board Reporting. As AI moves deeper into enterprise operations, CIOs are being pushed to turn governance principles into practical controls, board reporting and risk oversight, according to a survey by The Conference Board’s Governance and Sustainability Center. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/ai-governance-moves-from-theory-to-practice-a-31534
-
Federal CIO cautious on Anthropic’s Mythos despite planned rollout
Greg Barbaccia told CyberScoop that Anthropic’s Mythos shows real promise for federal cyber defense, but warns that laboratory results and live network conditions are two very different things. First seen on cyberscoop.com Jump to article: cyberscoop.com/anthropic-mythos-federal-cybersecurity-evaluation-greg-barbaccia/
-
ESicherheit: Schutz erhöhen interne IT entlasten
E-Mail-Sicherheit für Unternehmen: Weniger Phishing, weniger interne Tickets, mehr Kontrolle. E-Mails zählen zu den wichtigsten Angriffswegen für Cyberkriminelle. Für IT-Leiter und CIOs steht viel auf dem Spiel: Phishing, Schadsoftware und schädliche Anhänge bedrohen den Betrieb, binden Ressourcen und erhöhen das Risiko für Ausfälle. In vielen Unternehmen zeigt sich dasselbe Bild. Die bestehende E-Mail-Sicherheit ist… First…
-
New US House privacy bills raise hard questions about enterprise data collection
Tags: access, ai, awareness, banking, business, cio, ciso, compliance, credentials, data, finance, framework, governance, group, identity, insurance, Internet, jobs, law, privacy, regulation, risk, service, strategy, supply-chainWhere privacy law overlaps with AI governance: The SECURE Data Act does not contain broad, standalone AI governance rules, but it still touches AI in meaningful ways.The bill includes opt-outs for fully automated profiling used for decisions with legal or similarly significant effects. That language can clearly implicate some uses of AI, particularly in hiring,…
-
The curious case of Sean Plankey’s derailed CISA nomination
Questions over who wanted Plankey blocked: On March 3, Ana Visneski, a former head of global disaster response at Amazon Web Services and former chief of digital media for the US Coast Guard, posted on Bluesky that she was “hearing from multiple sources” that Plankey “has been fired and escorted out of Coast Guard HQ…
-
CIOs fret over rising security concerns amid AI adoption
AI is emerging as a critical tool and a growing threat as CIOs struggle to balance innovation with risk, according to a new report. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/AI-security-concerns-CIO-logicalis/817705/
-
The endless CISO reporting line debate, and what it says about cybersecurity leadership
Tags: access, business, ceo, cio, ciso, cloud, control, corporate, cyber, cybersecurity, firewall, governance, infrastructure, jobs, monitoring, network, resilience, risk, strategy, technology, vulnerabilityThe governance gap behind the debate: The persistence of this debate reflects a broader governance gap.Historically, information security emerged as a technical discipline embedded within IT departments. Early security teams focused primarily on protecting infrastructure: Firewalls, access controls, network monitoring and vulnerability management. In that environment, it was natural for the security function to sit…
-
Claude Mythos Could Flood Vendors With Fixes They Deferred
Ex-Microsoft CIO: Mythos Could Surface Known Flaws Faster Than Vendors Can Fix Them. Former Microsoft CIO Jim DuBois and IDC’s Frank Dickson say Claude Mythos Preview could rapidly surface long-known but unfixed software flaws at scale, forcing vendors and enterprises to strengthen patch validation, orchestration and deployment before attackers exploit the backlog. First seen on…
-
Project Glasswing Just Made Your Security Playbook Obsolete
Anthropic’s AI Model Exposes How Unprepared Enterprises Are to Respond. Anthropic’s announcement this week of Claude Mythos Preview frontier model capable of finding zero-days flaws humans may miss is both a warning and a call to action for CIOs: The way enterprises have been managing cybersecurity is about to change forever, and they need to…
-
TDL 019 – The Psychology Behind a Cyber Breach and the Leaders Who Survive It – Nim Nadarajah
Tags: access, ai, apple, automation, breach, business, cctv, ceo, cio, ciso, cloud, computing, conference, control, corporate, crowdstrike, cve, cyber, cyberattack, cybersecurity, data, dns, edr, email, finance, firewall, governance, group, healthcare, incident, incident response, infrastructure, injection, insurance, Internet, jobs, law, LLM, metric, microsoft, msp, network, office, powershell, privacy, programming, psychology, risk, saas, service, siem, soar, soc, software, startup, strategy, supply-chain, switch, technology, threat, tool, training, usa, vulnerability, windows, zero-trustLeading Through the Cyber Abyss In Episode 019 of The Defender’s Log, host David Redekop sits down with Nim Nadarajah, CISO and Managing Partner of Critical Matrix, to explore the evolving landscape of cybersecurity leadership. From the “annual pilgrimage” of RSAC 2026 to the front lines of incident response, the conversation shifts from technical bits…