Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
The National Institute of Standards and Technology (NIST) has published a cybersecurity workforce framework to support organizations' ability to develop and maintain an effective cybersecurity workforce. [Read More]
Change 2 to the National Industrial Security Program Operating Manual (NISPOM 2) specifies that all cleared personnel receive prior insider threat awareness training prior to gaining access to classified information. [Read More]
CompTIA has announced CSA+, a new security qualification which focuses on the skills required for the use of threat detection tools, data analysis and the interpretation of results to identify vulnerabilities, threats and risks. [Read More]
Report looks how to address the growing skills gap as demand for qualified cyber security professionals continues to outstrip supply. [Read More]
The consensus is that the world is suffering under a chronic security skills gap. But most of the evidence for this skills gap is empirical; there is little hard evidence in facts and figures. [Read More]
A new report on the cyber security skills shortage from Kaspersky Lab provides few new insights and no new solutions to the problem -- but it does prompt an important question. [Read More]
Facebook has open sourced its capture the flag (CTF) platform to make security education more accessible [Read More]
Verizon has published its widely anticipated 2016 Data Breach Investigations Report (DBIR), compiled by Verizon with the support 67 contributing partners. [Read More]
British Telecom (BT) said on Wednesday that it plans to hire 900 people across the globe to work in its cyber security business over the next 12 months. [Read More]
Recruitment remains a major problem for cyber security departments, and there seems to be no easy solution. [Read More]
FEATURES, INSIGHTS // Training & Certification
Software and hardware alone are not enough to manage a massive enterprise security program. You need security professionals and experienced leaders who can keep the team (and the tools) operating effectively.
Launched in 2009, CyberPatriot began with eight high school cybersecurity teams competing for scholarships. In just six years, participation quickly expanded to more than 1500 teams around the world.
Are we doing enough to ensure that we are cultivating the next generation of cyber professionals? Do we invest enough in education programs that so that students go on to institutions of higher learning with a goal of becoming a cybersecurity expert?
Open source is a valuable tool for defenders as they work to close these gaps and to gather greater intelligence about potential threats to make better decisions and take action.
The most effective CISOs today can’t just be experts in security. Organizations need a versatile security leader that speaks a new language-- one that is a blend of technology and business.
The following is a list of questions that I recommend everyone ask security vendors as an initial filter.
Without the internal and external safeguards working in conjunction, your vulnerability will spike and your performance will suffer as a by-product -- two things you can’t afford to have happen.
Successful conduct of military operations requires a unit’s clear understanding of the battle space it controls and its “area of operations”. This includes not only the terrain of the battlefield but also the capabilities, motives, and determination of the enemy they face.
In a perfect world, we would not stress this awareness for one month only. Awareness should be a constant, ongoing effort.
Security should be a fascinating, dynamic, and creative pursuit. I say have fun, be creative, be criminal in your thoughts, but not your actions. The black hats who have you in their targets are having a blast.
SecurityWeek Daily Briefing
- Patches Released for Flaws Affecting Dell EMC, VMware Products
- Facebook Increases Rewards for Account Hacking Vulnerabilities
- Infamous Russian Hacking Group Used New Trojan in Recent Attacks
- U.S. Mulls Curbs on Artificial Intelligence Exports
- Is Facebook Out of Control? Investigations and Complaints Are Rising
- Flash Player Update Patches Disclosed Code Execution Flaw
- Vision Direct Reveals Data Breach
- Attackers Target Drupal Web Servers with Chained Vulnerabilities
- OSIsoft Warns Employees, Contractors of Data Breach
- TalkTalk Hackers Sentenced to Prison
Copyright © 2018 Wired Business Media. All Rights Reserved. Privacy Policy