An Assessment of the Framework for Improving Critical Infrastructure Cybersecurity – Part 5

In this five-part series CISO Brian Lozada examines the state of cybersecurity in our nation’s critical infrastructure, what is at risk, what makes it unique and what measures can be taken to bolster its safeguards. Review of the first four installments In the first article in this series, I addressed the growing possibility of cyberwarfare. Many…

Details

CISOs Offer Tips, Share Experiences for Navigating the RSA Conference Week

RSA Conference week can be overwhelming from a scheduling standpoint. Between conference sessions, vendor meetings and unlimited networking opportunities, a CISO’s time is in short supply and high demand. Below, seasoned CISOs share their personal best practices for managing time, maximizing value and making the most of the RSA Conference experience. For more in-depth insight, read…

Details

A CISO’s Guide to RSA Conference 2016

Look, let’s be frank – the week of the RSA Conference is a scheduling nightmare. On easy days it takes effort to manage, and on difficult days it’s completely unwieldy. There are more sessions, activities, keynotes, networking events and ancillary get-togethers than you can possibly imagine, both in and around the actual conference. With the…

Details

Better than Expected Results: Security Training for Developers in a Large Enterprise

In 2015, I was tasked with creating and delivering a security curriculum for “any takers” from within our 1200+ global innovation organization at Pitney Bowes. This was part of a continuous learning initiative that included 10 different key technologies for Pitney Bowes. Our approach was to utilize in-house experts to lead each technology topic, and…

Details

An Assessment of the Framework for Improving Critical Infrastructure Cybersecurity – Part 4

In this five-part series CISO Brian Lozada examines the state of cybersecurity in our nation’s critical infrastructure, what is at risk, what makes it unique and what measures can be taken to bolster its safeguards.  Read Part One Read Part Two Read Part Three In my last article, I reviewed past initiatives to secure the nation’s…

Details

Cut the FUD: Four Reasons Cloud Brings Security Advantages

At the risk of being ‘voted off CISO island’ or worse, ‘lose my CISO card,’ I’m prepared to make an argument contrary to the popular opinions expressed by many of my fellow CISOs. I believe cloud-based migrations can actually bring several security advantages for certain organizations and especially SMBs. I find it surprising that so…

Details

Never Say Never: US & EU Come to Agreement on New Framework

My mom always told me to never say never, so it’s a good thing I didn’t say it in my previous article. Although technically the deadline was January 31, there was a very remote possibility of a last minute agreement as the negotiations continued between the U.S. and the European Commission regarding the future of…

Details