Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
The idea of a professional body to raise and maintain cybersecurity standards is good – but there are many concerns over how it may be implemented. [Read More]
U.S. Justice Department’s Cyber-Digital Task Force publishes first report, covering the threat to elections, cybercrime schemes, FBI’s role in incident response, and cyber personnel recruitment [Read More]
"Our society has not yet embraced cybersecurity as a civilization-defining competency, yet it is exactly central to our capacity to function in this massively technological age," ProtectWise CTO Gene Stevens told SecurityWeek. [Read More]
Security professionals looking to demonstrate and validate their knowledge of how to secure the Amazon Web Services (AWS) platform can now do so by taking the new AWS Certified Security – Specialty exam. [Read More]
Slack releases goSDL, an open source secure development lifecycle (SDL) tool designed to provide developers a tailored security checklist for their projects [Read More]
NATO’s Locked Shields 2018 exercise tested the skills of cyber defenders from 30 countries in protecting IT systems and critical infrastructure [Read More]
Understanding why Israel produces so many cybersecurity firms starts with understanding the converyor belt of talent that 8200 produces. [Read More]
Thirty-five percent of CISOs in the financial sector consider staff training to be the top priority for cyber defense. Twenty-five percent prioritize infrastructure upgrades and network defense. [Read More]
Insurance companies and non-profit organizations are most likely to fall for phishing attacks, according to a study of 6 million users conducted by KnowBe4 [Read More]
Study conducted by Accenture and AMA shows that a majority of physicians in the US have experienced a cybersecurity incident, including phishing, malware and inappropriate access by insiders [Read More]
FEATURES, INSIGHTS // Training & Certification
Starting your own private ISAC is easier and more important long-term than you might think.
While we can’t address security without technology, we also need to consider education. Organizations must also be committed to keeping their IT security staff highly trained on the current threat landscape and advanced approaches to security.
Software and hardware alone are not enough to manage a massive enterprise security program. You need security professionals and experienced leaders who can keep the team (and the tools) operating effectively.
Launched in 2009, CyberPatriot began with eight high school cybersecurity teams competing for scholarships. In just six years, participation quickly expanded to more than 1500 teams around the world.
Are we doing enough to ensure that we are cultivating the next generation of cyber professionals? Do we invest enough in education programs that so that students go on to institutions of higher learning with a goal of becoming a cybersecurity expert?
Open source is a valuable tool for defenders as they work to close these gaps and to gather greater intelligence about potential threats to make better decisions and take action.
The most effective CISOs today can’t just be experts in security. Organizations need a versatile security leader that speaks a new language-- one that is a blend of technology and business.
The following is a list of questions that I recommend everyone ask security vendors as an initial filter.
Without the internal and external safeguards working in conjunction, your vulnerability will spike and your performance will suffer as a by-product -- two things you can’t afford to have happen.
Successful conduct of military operations requires a unit’s clear understanding of the battle space it controls and its “area of operations”. This includes not only the terrain of the battlefield but also the capabilities, motives, and determination of the enemy they face.
SecurityWeek Daily Briefing
- German 5G Rules Avoid Huawei Ban; US Warns on Intel Sharing
- 'Graboid' Crypto-Jacking Worm Targets Docker Hosts
- Oracle's October 2019 Critical Patch Update Includes 219 Fixes
- Huawei Says Nine-Month Revenue Up Despite US Pressure
- WordPress 5.2.4 Patches Six Vulnerabilities
- Facebook Expands, Enhances Bug Bounty Programs
- Symantec Endpoint Protection Update Causes Many Devices to Crash
- Hundreds of Fake Election Domains Target Democrats, Republicans
- Apple: Safari Does Not Send User Browsing History to China's Tencent
- Adobe Patches Over 80 Vulnerabilities in Three Products
Copyright © 2019 Wired Business Media. All Rights Reserved. Privacy Policy