Security Experts:

Management & Strategy
long dotted

NEWS & INDUSTRY UPDATES

NIST publishes guidance for administrators, information security officers, and auditors on how to automatically secure and assess the security of macOS desktop and laptop systems. [Read More]
The House of Representatives has passed the Industrial Control Systems Cybersecurity Training Act. [Read More]
Cerby has emerged from stealth mode with a security platform for unmanageable applications and $12 million in seed funding. [Read More]
The FTC orders Residual Pumpkin and PlanetArt to implement MFA, encrypt Social Security numbers, collect less data, and have their information security programs assessed by a third-party. [Read More]
Forces Unseen has developed a new Goggle for the Brave search engine that shows results only from cybersecurity websites. [Read More]
CrowdStrike researchers find evidence of ransomware actors deploying zero-day exploits against Mitel VOIP appliances sitting on the network perimeter. [Read More]
Offensive security platform provider Hadrian receives €10.5 million ($11 million) unsolicited funding that will drive scale. [Read More]
Cybersecurity authorities in the US, UK, and New Zealand share recommended actions on how to configure and monitor PowerShell to eliminate security risks. [Read More]
US President Joe Biden has signed two cybersecurity bills into law: Federal Rotational Cyber Workforce Program Act of 2021, and the State and Local Government Cybersecurity Act of 2021. [Read More]
Cryptographers at Swiss university ETH Zurich have found at least five exploitable security flaws in the privacy-themed MEGA cloud storage service [Read More]

FEATURES, INSIGHTS // Management & Strategy

rss icon

Jeff Orloff's picture
The Defense Readiness Index is a reliable alternative for assessing a security team’s skill level, developing a roadmap for improving cyber competencies, and reaching the optimal level of cyber security readiness.
Marc Solomon's picture
As automation continues to evolve, a new approach to accelerate detection and response is emerging based on data and business logic to automatically trigger simple actions that can be standalone or be chained together.
Jeff Orloff's picture
Cybersecurity teams must be much more inclusive in their hiring processes, if they want to hire the best people and have loyal staff.
Marc Solomon's picture
Here are three challenges CISOs should prepare for as the ripple effects of the SEC amendments make their way through to board recruitment processes.
Joshua Goldfarb's picture
In addition to helping security teams recruit and retain the talent they need, employee wellness brings other benefits. Here are five ways in which wellness is good for security:
Gordon Lawson's picture
The surge of cyber attacks in 2021 was a wake-up call for consumers, who felt the firsthand effects that can result from a breach.
Jeff Orloff's picture
With the labor market for cybersecurity pros being extremely tight, the old ways of recruiting are rife with weaknesses and biases, while the urgency to recruit people is intense.
Laurence Pitt's picture
It’s time to step back and look at the role of the IT industry in developing, deploying, maintaining, growing and eventually, sustainably retiring technology and solutions.
Torsten George's picture
Organizations need to look beyond preventive measures when it comes to dealing with today’s ransomware threats and invest in ransomware response, which improves their ability to prepare and quickly recover endpoints from ransomware attacks.
Marc Solomon's picture
As threat actors continue to evolve their TTPs to take advantage of crises and outbreaks, the intelligence sources and information sharing mechanisms available to help will become even more important.