Tag: ciso
-
Reshaping Healthcare – and Healthcare Cyber – With AI
The use of artificial intelligence is not only reshaping healthcare delivery in the sector but also healthcare cybersecurity within organizations, said Anahi Santiago, CISO of ChristianaCare, the largest healthcare delivery organization in the state of Delaware. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/reshaping-healthcare-healthcare-cyber-ai-i-5465
-
Leitfaden für Abwehrspezialisten
Akamai Technologies veröffentlicht den Leitfaden für Abwehrspezialisten 2025: . Dieser neuartige SOTI-Bericht (State of the Internet) bietet Forschungsergebnisse aus der Praxis. Mit Erkenntnissen zu Themen wie Risikobewertung, VPN-Missbrauch und fortschrittlichen Malware-Techniken können Unternehmen ihre Cybersicherheitsstrategie verbessern. Für CISOs besonders spannend: Der Bericht beschreibt detaillierte Sicherheitsstrukturen mit proaktiven Maßnahmen, die […] First seen on netzpalaver.de Jump…
-
What is risk management? Quantifying and mitigating uncertainty
Tags: breach, business, cio, ciso, compliance, control, cyber, cyberattack, data, finance, flaw, framework, governance, healthcare, infosec, infrastructure, insurance, international, jobs, mitigation, monitoring, nist, risk, risk-analysis, risk-assessment, risk-management, software, strategy, technology, tool, vulnerabilityHow do organizations structure risk management operations?: Risk management has in some organizations traditionally been multicentric, with different departments or individuals within the org implementing risk management techniques in their work: Risk management is a component of good project management, for instance. IT leaders in particular must be able to integrate risk management philosophies and…
-
What are the key security controls for NHIs at the executive level?
Why Should CISOs Consider Non-Human Identities Security Controls? Did you know NHIs represent a significant portion of all entities in a typical network environment? A lack of robust Non-Human Identities (NHIs) security controls can pose significant threats to data integrity and system security in any organization. You must be wondering What are the key… First…
-
CISOs und CIOs auf dem Weg zur Cyber-Resilienz durch Data-Governance-Strategien leiten
Data Governance ebnet den Weg für Data Resilience. Durch die Datenklassifizierung können Unternehmen Lücken in ihren Business-Continuity-Plänen aufdecken und als zusätzlichen Vorteil ihre laufenden Tagesabläufe verbessern First seen on infopoint-security.de Jump to article: www.infopoint-security.de/cisos-und-cios-auf-dem-weg-zur-cyber-resilienz-durch-data-governance-strategien-leiten/a40058/
-
Why Security Leaders Are Opting for Consulting Gigs
Tags: cisoMany CISOs are weighing the benefits of going virtual as a consultant. Can the pendulum swing in the other direction? First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/why-security-leaders-opting-consulting-gigs
-
‘Cocktail of Cyber-Risk’ Should Stir Concerns Among CISOs
A global report published by the World Economic Forum points to a new world order characterized by greater instability, polarizing narratives, eroding trust, and insecurity. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/thinking-outside-box-cyber-risk
-
Thinking Outside the Box on Cyber-Risk
CISOs should add more to their vision than technology as a global report published by the World Economic Forum identifies a closely interconnected cocktail of risk. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/thinking-outside-box-cyber-risk
-
Why multi-cloud security needs a fresh approach to stay resilient
As enterprises expand their multi-cloud strategies to drive agility and scalability, CISOs must prioritize cyber resilience across diverse cloud platforms. The complexities of … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/03/05/multi-cloud-security-approach-stay-resilient/
-
Conquering Cyber Risks Involving Web Browsers in Healthcare
As clinicians move to a model of working anywhere, on many types of devices and under a variety of different internet environments, web browser security is a heightened concern, said John Frushour, vice president and CISO at New York Presbyterian Hospital and CyberEdBoard member. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/conquering-cyber-risks-involving-web-browsers-in-healthcare-i-5460
-
eBook: What does it take to be a full-fledged virtual CISO?
Virtual Chief Information Security Officer (vCISO) services are in high demand. Even though it is clear to all that this trend is growing, most service providers only offer a … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/03/04/ebook-what-does-it-take-to-be-a-full-fledged-virtual-ciso/
-
CISO Liability Risks Spur Policy Changes at 93% of Organizations
Fastly found that organizations have introduced changes such as increasing CISO participation in strategic decisions in response to growing personal liability risks First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ciso-liability-risks-policy-changes/
-
7 key trends defining the cybersecurity market today
Tags: access, ai, attack, cisco, ciso, cloud, compliance, control, crowdstrike, cyber, cybersecurity, data, defense, detection, endpoint, fortinet, gartner, google, governance, group, ibm, intelligence, microsoft, ml, network, okta, resilience, risk, service, siem, startup, strategy, technology, threat, tool, vulnerability, zero-trustMarket leaders are gaining share: The cybersecurity market has a dizzying number of single-product vendors, but a handful of powerful platform providers have risen above the pack and are gaining market share.According to research firm Canalys, the top 12 vendors benefited the most from customers taking early steps to transition to platforms. Collectively, they accounted…
-
Building cyber resilience in banking: Expert insights on strategy, risk, and regulation
In this Help Net Security interview, Matthew Darlage, CISO at Citizens, discusses key strategies for strengthening cyber resilience in banks. He underlines that adherence to … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/03/04/matthew-darlage-citizens-banks-cyber-resilience/
-
Manufacturers still poorly prepared for cyberattacks as IT/OT converge
Tags: attack, breach, ciso, control, cyber, cyberattack, cybersecurity, iot, ransomware, resilience, risk, security-incident, service, technology, threatAs IT and operations technology (OT) converge, manufacturers find themselves increasingly under cyberattack, with many organizations unprepared for the challenge.According to a recent study by Omdia, 80% of manufacturing companies experienced a significant increase in security incidents in the past year. However, only 45% have taken adequate precautions regarding their cybersecurity, while 13% are not prepared at…
-
CISO vs. CIO: Where security and IT leadership clash (and how to fix it)
The dynamic between CISOs and CIOs has always been complex. While both roles are essential to an organization’s success, their priorities often put them at odds. The CIO … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/03/04/ciso-vs-cio/
-
Fighting Back: 4 Essential Ransomware Defense Strategies for CISOs in 2025
Focus on Cyber Hygiene, Advanced Tools and Rapid Response to Outsmart Attackers Modern cyberthreats require modern defense tactics. Ransomware now employs multilayered extortion tactics that target operations and reputations. With 68% of breaches involving human error, CISOs and leaders must focus on cyber hygiene, advanced security tools and rapid response strategies. First seen on govinfosecurity.com…
-
Data breach liability strains cyber execs, says SolarWinds CISO
First seen on scworld.com Jump to article: www.scworld.com/brief/data-breach-liability-strains-cyber-execs-says-solarwinds-ciso
-
Beyond Compliance: Why CIOs CISOs Must Lead with AI-Driven Strategic Performance Intelligence
Compliance isn’t enough. Learn why CIOs & CISOs must lead with AI-driven Strategic Performance Intelligence to enhance security, governance, and resilience. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/03/beyond-compliance-why-cios-cisos-must-lead-with-ai-driven-strategic-performance-intelligence/
-
SolarWinds CISO says security execs are ‘nervous’ about individual liability for data breaches
Tim Brown didn’t call for indemnification laws, but suggested that CISOs dealing with legal implications for cyberattacks is stressful and a distraction from their core work. First seen on cyberscoop.com Jump to article: cyberscoop.com/tim-brown-solarwinds-liability-cyberlawcon/
-
Is your enterprise ‘cyber resilient’? Probably not. Here’s how other boards fixed that
Tags: backup, breach, business, ciso, cloud, compliance, control, cyber, cyberattack, cybersecurity, endpoint, finance, framework, governance, incident, metric, monitoring, nist, resilience, risk, service, strategy, supply-chain, tool, training, vulnerability, vulnerability-managementLockheed Martin: Lockheed Martin introduced its Cyber Resiliency Level (CRL) Framework and corresponding Scoreboard in 2018, illustrating a more formalized approach to measuring cyber resilience during this period. The company’s Cyber Resiliency Scoreboard includes tools like a questionnaire and dashboard for measuring the maturity levels of six categories, including Cyber Hygiene and Architecture.MIT: The Balanced Scorecard for Cyber Resilience (BSCR) provides…
-
SANS Institute und Anvilogic bieten Einblicke in die Bedrohungserkennung
Erkennungsspezialisten, CISOs, Sicherheitsmanager und Cybersicherheitsexperten werden aus erster Hand über die neuesten Branchentrends, Best Practices und die wachsende Rolle der KI im Sicherheitsbetrieb informiert. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/sans-institute-und-anvilogic-bieten-einblicke-in-die-bedrohungserkennung/a40005/
-
Vier Punkte, die CISOs jetzt unbedingt priorisieren sollten
Vier Security-Themen, die in diesem Jahr (und darüber hinaus) ganz oben auf jeder CISO-Agenda stehen sollten. 44 Prozent der CISOs zeigen sich machtlos: Zwischen 2023 und 2024 waren sie nicht in der Lage, Sicherheitsvorfälle mithilfe ihrer Sicherheitslösungen rechtzeitig zu erkennen [1]. Diese Zahl, die aus den Ergebnissen der Hybrid-Cloud-Studie von Gigamon stammt, zeigt: Trotz… First…
-
5 things to know about ransomware threats in 2025
Tags: access, attack, authentication, awareness, backup, breach, ciso, cloud, control, credentials, cyber, dark-web, data, data-breach, defense, detection, encryption, exploit, extortion, finance, fraud, group, healthcare, identity, incident response, infrastructure, Internet, iot, law, leak, mfa, monitoring, network, password, ransom, ransomware, risk, scam, service, software, sophos, supply-chain, technology, threat, tool, update, vpn, vulnerability, zero-day2. Mid-size organizations are highly vulnerable: Industry data shows mid-size organizations remain highly vulnerable to ransomware attacks. “CISOs need to be aware that ransomware is no longer just targeting large companies, but now even mid-sized organizations are at risk. This awareness is crucial,” says Christiaan Beek, senior director, threat analytics, at Rapid7.Companies with annual revenue…
-
What CISOs need from the board: Mutual respect on expectations
Tags: business, ceo, ciso, compliance, control, cyber, cybersecurity, finance, framework, governance, metric, risk, risk-management, skills, strategy, technology, threat, update, vulnerabilityPart 500. While this legislation was groundbreaking for being very prescriptive in what cyber controls are required, there was in earlier drafts indications that each board should have suitably cyber-qualified members.Similar guidelines were established with the Australian Institute of Company Directors (AICD) drafting its Cyber Governance Principles, which were recently refreshed. The timing of this…
-
The compliance illusion: Why your company might be at risk despite passing audits
For many CISOs, compliance can feel like a necessary evil and a false sense of security. While frameworks like ISO 27001, SOC 2, and PCI DSS offer structured guidelines, they … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/02/26/compliance-security-illustion/