A large-scale “stamina game” – in which ever more-resourceful cybercriminals are proving adept at avoiding “self-defeating” signature-based protections – was likely to intensify as online criminals attacked new technologies, a security executive of one endpoint security vendor has warned.
David Braue | 18 May | Read more
A strengthened focus on channel partners and the capitalisation of recent technology acquisitions will fuel a redoubled assault on the Asia-Pacific endpoint security market as Webroot's newly appointed APAC regional managing director, Robbie Upcroft, settles into his new role as steward of an ever-harder battle against the growing tide of malware actors.
David Braue | 06 May | Read more
The Office of Personnel Management in the United States is responsible vast volumes of personal information. They’re responsible for the data relating to potential, current and past employees of the government. IT Security Operations Director Jeff Wagner is responsible for protecting this data against a constantly changing threat landscape. He’s taken a non-traditional approach to not only respond to threats in seconds with fewer resources, but also uncover previously hidden threats that were lurking on the network.
Anthony Caruana | 22 Apr | Read more
The role of the CSO and CIO has been changing dramatically as technology becomes more and more vital to business strategies. Sometimes, it can be hard to keep up.
Maria Korolov | 31 Jan | Read more
If we look at the headlines surrounding recent data breaches, we might conclude that the role of the chief information security officer (CISO) has never been more critical to the success and sustained well-being of an organization. As a by-product of this statement, we also might surmise that the information security organization and where it reports into is also important. This is probably why every recent CISO event includes a conversation about where the CISO and information security program should reside within an organization. The challenge is that however healthy the debate, the question about where the CISO and his/her department should report generally ends with, 'it depends'. To shift from a debate to productive action, maybe the question is not where should the CISO report into [<a
By Brian Engle | 29 Oct | Read more
Each year, the CSO Compass Awards honor individuals who demonstrate excellence, achievement and leadership in security and drive business value.
The Electronic Frontier Foundation is the digital world's top watchdog when it comes to privacy and free expression.
Maria Korolov | 16 Jul | Read more
Packing the suitcases and setting off on vacation doesn't necessarily mean that IT executives are able to completely disconnect while away from work, but they are enjoying more downtime. Though they still feel the need to check in at least once a day, more executives say that their staff are well equipped to deal with critical situations.
Kacy Zurkus | 23 Jun | Read more
A lot has changed since the early years, when enterprises first began embracing the CISO position. Back then, the CISO role was primarily a technical one: control user access, secure the databases, find and patch vulnerabilities, keep the malware out, and eventually to help build secure websites and eCommerce platforms. In those days, most of the highly proprietary data resided within the local area network, the data center, or within PCs and notebooks.
George V. Hulme | 02 Jun | Read more
Are you the Dr. No of your company, always with security-related reasons for stopping or slowing down projects?
Maria Korolov | 02 Apr | Read more
What Boards Want to Know and CISOs Need to Say Seven years ago in the SBIC report Bridging the CISO-CEO Divide, we explored the best practices security leaders could use to communicate more effectively with their COs. CISOs were at a crossroads and just beginning to take a seat at the executive table. We provided recommendations from global leaders about ways CISOs could embrace their growing leadership role, build trust with the executive leadership team and earn the confidence of their CO. We discussed how harting a new course based on a strategic, risk-based approach to information security would drive clear business value.
