Posted May 26, 2017 by Jeff B. Copeland
Generally speaking, Chief Information Security Officers (CISOs) came up through the ranks of IT, corporate security or law enforcement, not the business management path. Now, CISOs have to evolve to think and speak like experienced business people. What's going on? This infographic outlines four forces coming together to push cybersecurity leaders out of their normal skillsets and comfort zones.
Posted May 15, 2017 by Jeff B. Copeland
In the largest ransomware attack ever, the WannaCry (or WannaCrypt or Wana Decryptor) malware has spread to 150 countries in a few days, freezing computer systems from FedEx in the US to phone companies in Spain and Russia. In Britain, National Health Service (NHS) hospitals had to turn away patients from emergency rooms.
Posted May 10, 2017 by Jeff B. Copeland
Buying cyber insurance? Prepare to be confused by a marketplace too new to have standardized policies. Your best strategy is to get a firm grip on what your company has at risk, and read the fine print to find an insurance plan that meets your specific needs.
Posted April 18, 2017 by Jeff B. CopelandSome painful, but necessary, reading for CISOs: A new survey breaks down just how far off CISOs are in their efforts to communicate to boards of directors.
The Cyentia Institute, a cybersecurity research firm (sponsored by risk management consultants Focal Point) interviewed more than 100 CISOs, corporate directors and other experts. The bottom line:
Posted April 13, 2017 by Jeff B. Copeland
Now working its way through the U.S. Senate, the Cybersecurity Disclosure Act of 2017 is a simple bill that would have a far-reaching effect: To “make sure companies disclose to the public the basic steps they are taking to protect their businesses from cyber attacks,” as co-sponsor Sen. Susan Collins (R-ME) framed it.
Posted March 21, 2017 by Jeff B. Copeland
If you’re about to order a new endpoint security system just because you think you
should have the latest technology—stop, step back from the phone, and consider the advice given at a recent panel at the Dark Reading CyberSecurity virtual conference: Measure your risk so you truly understand your needs.
Posted March 6, 2017 by Jeff B. Copeland
In this short video, Jack Jones tackles one of the biggest challenges for information security practitioners: Putting a value on the company assets they protect.