Security News

In SecurityWeek's CISO Conversations series, we talk to top Chief Information Security Officers from major organizations within the critical industries to discuss the role of the CISO, and what it takes to be a successful CISO. In this feature, SecurityWeek talks to Mastercard CISO Ron Green, and Ellie Mae CISO Selim Aissi from the finance sector, concentrating on the people problem for CISOs. "I think If either one of the two aspects is stronger than the other, then the CISO will not be successful. I think if a CISO is a salesman, a great communicator all the time but doesn't have the technical chops, then that's a problem. And if the CISO is way deep into the technology and does not focus on the people aspects, on processes, on communication, then that CISO will also fail. It really does require a good balance between the two."

There are growing disparities in how CEOs and CISOs view the most effective cybersecurity path forward, according to Forcepoint. The global survey of 200 CEOs and CISOs from across industries including healthcare, finance and retail, among others, uncovered prominent cybersecurity stressors and areas of disconnect for business and security leaders, including the lack of an ongoing cybersecurity strategy for less than half of all CEO respondents.

Most CEOs are losing sleep over the prospect of becoming the next big, headline-grabbing security breach victim, according to a new report on global business leaders' cybersecurity priorities from global cybersecurity firm Forcepoint, in partnership with WSJ Intelligence. "At a time when cybersecurity is more strategic to business growth than ever before, it is time senior business and security leaders reassess their cybersecurity strategy to one that enables them to move left of breach," Fischbach said.

According to a 2019 survey of cybersecurity professionals, these critical data defenders were burned out. As companies hurdle toward digital transformation, automation, cloud computing, brand reputation, and strategic investments are falling on CISOs' plate.

A syndicate of practicing CISOs invests its own money and personal expertise into the success of the syndicate's portfolio companies. SVCI was formed in September 2019 by seven CISOs and Oren Yunger, and has already invested in three security startups.

Eventually, VPNs can break under strain, and that creates an issue around business continuity. Simply put, if VPNs become overwhelmed by increased traffic, connectivity may fail, and the ability for employees to access the network may be impacted, the concept of business continuity suffers as a result.

Eventually, VPNs can break under strain, and that creates an issue around business continuity. Simply put, if VPNs become overwhelmed by increased traffic, connectivity may fail, and the ability for employees to access the network may be impacted, the concept of business continuity suffers as a result.

The global COVID-19 pandemic and new geopolitical risks are challenging chief information security officers and causing them to adapt their management to the current climate, according to a report released on Monday. London-based ClubCISO, a global private members forum for information security leaders, surveyed 100 CISOs for its 2020 Information Security Maturity Report and identified cyber resilience, security culture, and cloud security to be three hot topics, according to a press release.

In Part 1 of this two-part series, I discussed the flaws in trying to apply trusted IT cybersecurity best practices to the Operational Technology environment, and provided the first of three recommendations for how to bridge the IT-OT security gap: eliminate complexity. The risk of disruption and downtime to implement a new security control, patch or system upgrade is a non-starter for OT teams.

As a result, CIOs and CISOs face a double challenge on the cyber risk front - apart from the new risks that the mass transfer of employees working remotely brings, capturing the management mindshare for further investments in security becomes harder than ever. The Definitive Corona Cyber Security for Management PPT template provides security executives with an easy and intuitive tool to present management their existing security posture and translate it to tangible business risk, as well as making the case on how to address gaps if such exist.