Here is a fun exercise if you are bored. Go into any grocery or superstore. If you prefer online shopping, log onto your favorite retailer and find/pick any one category of products. Next, count how many brands there are in that one category. Then, count how many different options or different stock keeping units…
Do CEOs and Boards have any idea what the company’s cybersecurity status is? Cybersecurity and privacy compliance should be a top priority of the Board of Directors and senior management of any publicly traded company, right? Not so fast, kemo sabe. The problem is, everyone thinks that their problems, their issues, their topics should be…
Chief Information Security Officers (CISOs) Laud Baffle for Innovation and Twist & Shout for Ease of Use San Francisco, CA – Security Current announced that CISOs selected advanced data protection firm Baffle and entertaining security awareness training campaign company Twist & Shout as the Security Shark Tank® winners held during the RSA Conference. At the…
It’s no secret that all it takes is the weakest human link to compromise a company’s cybersecurity. To mitigate this risk, companies need to understand their employees’ habits and behaviors; they need to be aware of their people’s self-control levels when implementing security programs. In a study of 6,000 participants in the Netherlands, a team…
I’m sometimes asked if I ever experienced difficulties being a woman in the male-dominated cybersecurity field. My answer: “I could write a book on it!” I remember very clearly an incident that took place in a former role when, as a cybersecurity professional, I had to deliver a presentation to a group of men at…
To better train and prepare their company’s employees for cyber attacks, CISOs need to put themselves in the attackers’ shoes to anticipate their motives, means and actions. In a KnowBe4 webinar last week, hacker turned pentesting professional Kevin Mitnick talked about real-life cases of human vulnerability that threat actors could exploit for their benefit and…
While cybersecurity is dynamic, there are things that are constant. These are the skills that every CISO must have to be successful, whatever the organization and industry, today and in the foreseeable future. In this latest Security Current/ CISOs Connect report, ASRC Federal’s CISO Darren Death combines previous research and his own findings to provide…
Vulnerabilities cannot be eliminated; they can only be managed. In Security Current’s upcoming report CISOs Investigate: Vulnerability Management, lead writer David Sheidlower (CISO for a construction company) and executive editor Bob Turner (CISO for a higher education institution) share their experiences and best practices in managing vulnerabilities for their organizations. The report also features seven…
If you have questions for Columbia University’s Joel Rosenblatt, ask him directly in a group discussion on CISOs Connect starting Jan. 28. Sign up at https://cisosconnect.com/signup or send an email to support@cisosconnect.com. Users log in and out of your system all the time, but what most administrators do is to put these logs in a hard…