Security Experts:

WRITE FOR US

LATEST SECURITY NEWS HEADLINES

rss icon

State-Sponsored Hackers Use Sophisticated DNS Hijacking in Ongoing Attacks
Russian Hackers Use RATs to Target Financial Entities
Symfony, jQuery Vulnerabilities Patched in Drupal
Network DoS Attack on PLCs Can Disrupt Physical Processes
Cisco Patches Critical Flaw in ASR 9000 Routers
long dotted

NEWS & INDUSTRY UPDATES

PCI SSC Releases New Security Standards for Payment Software
PCI Security Standards Council (PCI SSC) publishes new security standards for the design and development of payment software. [Read More]
Addressing the 3 Million Person Cybersecurity Workforce Gap
The 2018 (ISC)2 Cybersecurity Workforce Study shows the workforce gap now stands at more than 2.9 million workers globally -- with 2.14 million cybersecurity staff required in the Asia-Pacific region, and almost half a million required in North America. [Read More]
KnowBe4 Brings Artificial Intelligence to Security Awareness Training
Security awareness training firm KnowBe4 has added a Virtual Risk Officer (VRO), a Virtual Risk Score (VRS), and Advanced Reporting (AR) features to its security awareness training and simulated phishing platform. [Read More]
New Bill Aims to Address Cybersecurity Workforce Shortage
Democrat Congresswoman Jacky Rosen introduces Cyber Ready Workforce Act, a new bill that aims to address the cybersecurity workforce shortage [Read More]
Professionalizing Cybersecurity Practitioners
The idea of a professional body to raise and maintain cybersecurity standards is good – but there are many concerns over how it may be implemented. [Read More]
DOJ Cybersecurity Task Force Outlines Plans for Protecting Elections
U.S. Justice Department’s Cyber-Digital Task Force publishes first report, covering the threat to elections, cybercrime schemes, FBI’s role in incident response, and cyber personnel recruitment [Read More]
Is The Education System Keeping Women Out of Cybersecurity?
"Our society has not yet embraced cybersecurity as a civilization-defining competency, yet it is exactly central to our capacity to function in this massively technological age," ProtectWise CTO Gene Stevens told SecurityWeek. [Read More]
Amazon Introduces AWS Security Specialty Certification Exam
Security professionals looking to demonstrate and validate their knowledge of how to secure the Amazon Web Services (AWS) platform can now do so by taking the new AWS Certified Security – Specialty exam. [Read More]
Slack Releases Open Source Secure Development Lifecycle Tool
Slack releases goSDL, an open source secure development lifecycle (SDL) tool designed to provide developers a tailored security checklist for their projects [Read More]
NATO Exercise Tests Skills of National Cyber Defenders
NATO’s Locked Shields 2018 exercise tested the skills of cyber defenders from 30 countries in protecting IT systems and critical infrastructure [Read More]

FEATURES, INSIGHTS // Training & Certification

rss icon

Stan Engelbrecht's picture
Observations From RSA Conference 2019
Stan Engelbrecht - Training & Certification
Here are a few observations from my time at RSAC 2019 about SOAR and the cybersecurity world at large.
Read full story
Torsten George's picture
The Foundation of Cyber-Attacks: Credential Harvesting
Torsten George - Identity & Access
Cyber attackers long ago figured out that the easiest way for them to gain access to sensitive data is by compromising an end user’s identity and credentials.
Read full story
Ashley Arbuckle's picture
Three Emerging Technologies to Accelerate Incident Readiness
Ashley Arbuckle - Incident Response
We’ve seen an evolution from more traditional simulation exercises that use a Red Team to identify vulnerabilities and launch mock attacks and a Blue Team to detect and respond to attacks, to Purple Teaming exercises.
Read full story
Michael Moniz's picture
Capturing Hackers Before They Go Dark
Michael Moniz - Training & Certification
To be an outstanding cybersecurity professional, you need to think outside of the box, be intellectually curious, self-sufficient and collaborative.
Read full story
Joshua Goldfarb's picture
The Pen is Mightier Than Hot Air: Why Documentation is Key
Joshua Goldfarb - Training & Certification
Writing and documenting aren’t the most exciting activities. But they have tremendous potential, both in improving security operations and incident response, as well as in opening up a constructive dialogue.
Read full story
Travis Greene's picture
Security Trends From RSA Conference 2016 in San Francisco
Travis Greene - Training & Certification
Attended by roughly 40,000 people, RSA Conference 2016 was the biggest ever. Here are some observations on security trends observed at the event that took place last week at the conference.
Read full story
Alastair Paterson's picture
Five Questions to Ask when Considering Cyber Threat Intelligence
Alastair Paterson - Training & Certification
Cyber Threat Intelligence (CTI) is critical for organizations that want to gain a comprehensive, tailored and relevant view of the potential threats and types of attackers that could be targeting them.
Read full story
Jay Schulman's picture
Cybersecurity Talent: Finding the Security Breakers and the Technology Makers
Jay Schulman - Training & Certification
The ability to recruit the right person for an application security role who can also find the flaws is a struggle for many organizations. These job openings rarely get filled.
Read full story
Marc Solomon's picture
Cultivate a Talent Pipeline While Bridging the Cybersecurity Resource Gap
Marc Solomon - Training & Certification
The global cybersecurity skills shortage isn’t going away any time soon. But by attacking it on multiple fronts we can proactively work to address it
Read full story
Jason Polancich's picture
Your Own Private Cyber ISAC: How To Get Up and Running
Jason Polancich - Risk Management
Starting your own private ISAC is easier and more important long-term than you might think.
Read full story