Security Experts:

Management & Strategy
long dotted


Third-party security risk management company Panorays announced raising $42 million in a Series B funding round. [Read More]
The internet is already being scanned for VMware vCenter servers affected by CVE-2021-22005, a critical vulnerability patched just days ago. [Read More]
CISA has issued an alert on the Conti ransomware, just as a second major U.S. farming cooperative confirmed being hit by ransomware. [Read More]
The Alaska health department says the cyberattack discovered earlier this year was conducted by state-sponsored hackers. [Read More]
Local credit union, Bessemer System Federal Credit Union (BSFCU), sued Fortune 500 tech giant Fiserv over ‘amateurish security lapses’ in 2019. Fiserv counterclaimed with a motion to dismiss, and Bessemer motioned to dismiss the counterclaim. [Read More]
Nearly two dozen cybersecurity mergers and acquisitions were announced in the first half of September 2021. [Read More]
The UN called Wednesday for a moratorium on artificial intelligence systems like facial recognition technology that threaten human rights until "guardrails" are in place against violations. [Read More]
The company aims to fight bad APIs with XDR (Extended Detection and Response) techniques such as precise behavioral analytics. [Read More]
Cloud backup company Rewind has raised $65 million in a Series B funding round, which brings the total raised to more than $80 million. [Read More]
The patch comes exactly one week after the Redmond, Wash. software giant acknowledged the CVE-2021-40444 security defect and confirmed the existence of in-the-wild exploitation via booby-trapped Microsoft Office documents. [Read More]

FEATURES, INSIGHTS // Management & Strategy

rss icon

Keith Ibarguen's picture
Far too many engineers in the trenches don’t take the time to lift their heads to see context, so when good (and bad) things happen, this is a great management opportunity that you should take full advantage of.
Marc Solomon's picture
Enterprises can't rely on Endpoint Protection Platforms (EPP) or Endpoint Detection and Response (EDR) tools to detect suspicious activity on a user’s system to quarantine the system or even to reimage.
Tim Bandos's picture
When it comes to ensuring cyber talent retention, establishing the right working environment is critical to keeping people engaged and motivated to stay.
Jeff Orloff's picture
It’s important to show the effectiveness of training initiatives. Managers want to make sure that they're getting a return on their investment and justify future training budgets requests.
Landon Winkelvoss's picture
Security and intelligence teams often lack finished intelligence, which leaves them ill-equipped to combat motivated and sophisticated adversaries.
Keith Ibarguen's picture
Great franchise players can be attracted and retained, but not without addressing how people today find and maintain their career sweet-spot and are motivated by what they are doing, and that is not built by accident.
William Lin's picture
After every company goes through digital transformation, their threat model will change in response.
Derek Manky's picture
As we see an increasing number of recent attacks against critical infrastructure – cybersecurity and physical security can be intrinsically linked.
Joshua Goldfarb's picture
As difficult as it may be, particularly in recent years, it is in the security team’s best interests to keep politics out of the workplace. There are plenty of issues and challenges every security team already faces. No need to add to them.
Jeff Orloff's picture
Offering SOC staff professional development opportunities turns out to be a tool for talent retention.