Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

The National Institute of Standards and Technology (NIST) has published a cybersecurity workforce framework to support organizations' ability to develop and maintain an effective cybersecurity workforce. [Read More]
Change 2 to the National Industrial Security Program Operating Manual (NISPOM 2) specifies that all cleared personnel receive prior insider threat awareness training prior to gaining access to classified information. [Read More]
CompTIA has announced CSA+, a new security qualification which focuses on the skills required for the use of threat detection tools, data analysis and the interpretation of results to identify vulnerabilities, threats and risks. [Read More]
Report looks how to address the growing skills gap as demand for qualified cyber security professionals continues to outstrip supply. [Read More]
The consensus is that the world is suffering under a chronic security skills gap. But most of the evidence for this skills gap is empirical; there is little hard evidence in facts and figures. [Read More]
A new report on the cyber security skills shortage from Kaspersky Lab provides few new insights and no new solutions to the problem -- but it does prompt an important question. [Read More]
Facebook has open sourced its capture the flag (CTF) platform to make security education more accessible [Read More]
Verizon has published its widely anticipated 2016 Data Breach Investigations Report (DBIR), compiled by Verizon with the support 67 contributing partners. [Read More]
British Telecom (BT) said on Wednesday that it plans to hire 900 people across the globe to work in its cyber security business over the next 12 months. [Read More]
Recruitment remains a major problem for cyber security departments, and there seems to be no easy solution. [Read More]

FEATURES, INSIGHTS // Training & Certification

rss icon

Mark Hatton's picture
Software and hardware alone are not enough to manage a massive enterprise security program. You need security professionals and experienced leaders who can keep the team (and the tools) operating effectively.
James McFarlin's picture
Launched in 2009, CyberPatriot began with eight high school cybersecurity teams competing for scholarships. In just six years, participation quickly expanded to more than 1500 teams around the world.
Mark Hatton's picture
Are we doing enough to ensure that we are cultivating the next generation of cyber professionals? Do we invest enough in education programs that so that students go on to institutions of higher learning with a goal of becoming a cybersecurity expert?
Marc Solomon's picture
Open source is a valuable tool for defenders as they work to close these gaps and to gather greater intelligence about potential threats to make better decisions and take action.
Danelle Au's picture
The most effective CISOs today can’t just be experts in security. Organizations need a versatile security leader that speaks a new language-- one that is a blend of technology and business.
Mark Hatton's picture
The following is a list of questions that I recommend everyone ask security vendors as an initial filter.
Chris Hinkley's picture
Without the internal and external safeguards working in conjunction, your vulnerability will spike and your performance will suffer as a by-product -- two things you can’t afford to have happen.
Matthew Stern's picture
Successful conduct of military operations requires a unit’s clear understanding of the battle space it controls and its “area of operations”. This includes not only the terrain of the battlefield but also the capabilities, motives, and determination of the enemy they face.
Jon-Louis Heimerl's picture
In a perfect world, we would not stress this awareness for one month only. Awareness should be a constant, ongoing effort.
Chris Poulin's picture
Security should be a fascinating, dynamic, and creative pursuit. I say have fun, be creative, be criminal in your thoughts, but not your actions. The black hats who have you in their targets are having a blast.