Hot Topics in Cybersecurity Research

Data Breach Today

Wade Baker Talks Vulnerability Triage and Quantifying Risk Quantifying risk is a significant challenge in cybersecurity. Wade Baker of Cyentia Institute discusses recent research projects

How Automated Workflows Boost Cybersecurity

Data Breach Today

ServiceNow CISO Ben de Bont Shares Lessons Automated workflows can help pre-emptively report cybersecurity risks to the board and allow for better qualitative approaches to interpreting data, says Ben de Bont, CISO of ServiceNow

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

The Human-Centric Cybersecurity Stance

Data Breach Today

Homayun Yaqub of Forcepoint on Why People are the New Perimeter Today's cybersecurity landscape is arguably without a perimeter. Homayun Yaqub of Forcepoint describes a human-centric approach to cybersecurity

Cybersecurity for the Midmarket

Data Breach Today

Global Cyber Alliance's Phil Reitinger Describes Efforts to Bolster SMB, Election Security In 2019, the Global Cyber Alliance debuted its toolkit to help small and midsized organizations bolster cybersecurity.

Cybersecurity Law Casebook

Schneier on Security

Robert Chesney teaches cybersecurity at the University of Texas School of Law. courts cybersecurity lawsHe recently published a fantastic casebook, which is a good source for anyone studying this.

Cybersecurity Plan for 2020 US Election Unveiled

Data Breach Today

Cybersecurity Infrastructure and Security Agency has released its cybersecurity plan for the run-up to the 2020 presidential election, outlining the agency's role as a facilitator that will assist federal, state and local agencies in protecting critical election infrastructure

Uncertain Markets May Drive Cybersecurity Consolidation

Data Breach Today

Experts predict this will drive fresh waves of consolidation and M&A in the cybersecurity market, as well as growth in hot areas Experts: This Week's 'Black Monday' Likely to Accelerate Security M&A Activity With U.S.

Analysis: Coronavirus Cybersecurity and Privacy Issues

Data Breach Today

The latest edition of the ISMG Security Report offers an analysis of cybersecurity and privacy issues raised by COVID-19 research efforts. Also featured: the latest ransomware trends and an investor's take on hot cybersecurity sectors

Cybersecurity's Week From Hell

Data Breach Today

Is this cybersecurity's new normal Fix WhatsApp, Windows, Cisco and CPUs From Intel - Pending Patch Availability Multiple flaws - all serious, exploitable and some already being actively exploited - came to light this week.

Coronavirus: The Public Health Cybersecurity Issues

Data Breach Today

Among the many cybersecurity and privacy risks involving the fast evolving global coronavirus outbreak are potential concerns related to the development of a vaccine, says public health risk management expert Stanley Mierzwa of Kean University in Union, New Jersey

Cybersecurity: Building Better Teams

Data Breach Today

Deborah Kish of Fasoo on Rethinking the Approach When it comes to rethinking how enterprises structure their cybersecurity teams, Deborah Kish of Fasoo says that teamwork and better coordination among stakeholders are essential

Cybersecurity Firm Imperva Discloses Breach

Krebs on Security

“Even if the vendor in question is a cybersecurity company, it doesn’t necessarily mean they’re eating their own dog food.”

Commission Calls for Revamping US Cybersecurity

Data Breach Today

cybersecurity recommendations and calls for sweeping reforms. Cyberspace Solarium Commission Offers Long List of Recommendations The new Cyberspace Solarium Commission released its highly anticipated report this week that offers more than 75.

Cybersecurity Sector Faces Reckoning After Coronavirus Hits

Data Breach Today

Amidst fears that a recession could tank the global economy, some experts still see upsides for the cybersecurity sector

LA Covers Up Bad Cybersecurity

Schneier on Security

The Los Angeles Department of Water and Power has been accused of deliberately keeping widespread gaps in its cybersecurity a secret from regulators in a large-scale coverup involving the city's mayor. coverups cybersecurity utilities vulnerabilitiesThis is bad in several dimensions.

Government Agencies Field More Cybersecurity Maturity Models

Data Breach Today

The Pentagon and the Department of Energy are pitching new or revised cybersecurity capability maturity models to help their sectors prioritize cybersecurity investments and refine processes and controls. But should they defer to the NIST Cybersecurity Framework instead

Resources for Measuring Cybersecurity

Schneier on Security

Kathryn Waldron at R Street has collected all of the different resources and methodologies for measuring cybersecurity. cybersecurity riskassessment

COVID-19 and the Human Side of Cybersecurity Leadership

Data Breach Today

Microsoft's Diana Kelley on Ensuring Care for the People Behind Those Processes and Technologies When securing the remote workforce, it's important to be mindful of the human challenges - educating children, caring for elders and dealing with the barrage of COVID-19 news, says Microsoft's Diana Kelley, who shares insights on balancing cybersecurity and compassion.

Interior Dept. Grounds Drones Over Cybersecurity Concerns

Data Breach Today

Department of the Interior this week announced that it has temporarily grounded all drone operations, except for emergencies, citing concerns over national security and cybersecurity. Department Says Several Concerns Must Be Addressed The U.S.

Australia to Update National Cybersecurity Strategy

Data Breach Today

Government Invites Feedback on Addressing Cyber Challenges The Australian government is looking to update its national cybersecurity strategy by 2020.

Government Shutdown: Experts Fear Deep Cybersecurity Impact

Data Breach Today

government shutdown is impacting agencies integral to the nation's cybersecurity readiness, and experts fear its long-term impact on the country's cyberattack response capabilities, as well as the risk that it will drive away desperately needed new cybersecurity talent from entering public service

Creating a 'Defensible' Cybersecurity Program

Data Breach Today

Tom Scholtz of Gartner Says Flexible, Executive-Endorsed Programs Succeed Organizations need to create a "defensible" cybersecurity program that has a mandate and executive endorsement, says Gartner's Tom Scholtz.

Humble Bundle's 2020 Cybersecurity Books

Schneier on Security

This month, they're featuring as many as nineteen cybersecurity books for as little as $1, including four of mine. books cybersecurity schneiernewsFor years, Humble Bundle has been selling great books at a "pay what you can afford" model.

On Cybersecurity Insurance

Schneier on Security

Good paper on cybersecurity insurance: both the history and the promise for the future. academicpapers cybersecurity insurance riskassessment risksFrom the conclusion: Policy makers have long held high hopes for cyber insurance as a tool for improving security.

Trump Shakeup Impacts Cybersecurity Policy

Data Breach Today

cybersecurity policy, as the agencies play a key role in securing infrastructure and investigating financial cybercrime.

Analysis: 2020 Cybersecurity Issues

Data Breach Today

The latest edition of the ISMG Security Report discusses 2020 cybersecurity trends, including fixing "fake everything," dealing with the issue of weaponized social media and securing the U.S. presidential election

GAO: Census Bureau Comes Up Short on Cybersecurity

Data Breach Today

Census Bureau has not done enough to address cybersecurity issues in preparation for the 2020 census, which is slated to begin April, according to a new report from the Government Accountability Office With 2020 Census Slate to Start April 1, Bureau Still Has Work to Do The U.S.

Congress Approves New DHS Cybersecurity Agency

Data Breach Today

Bill Creating Cybersecurity and Infrastructure Security Agency Awaits President's Signature The United States will soon officially have a single agency that takes the lead role for cybersecurity.

FEC: Campaigns Can Use Discounted Cybersecurity Services

Krebs on Security

Federal Election Commission (FEC) said today political campaigns can accept discounted cybersecurity services from companies without running afoul of existing campaign finance laws, provided those companies already do the same for other non-political entities. The U.S.

Wanted: Cybersecurity Imagery

Schneier on Security

Eli Sugarman of the Hewlettt Foundation laments about the sorry state of cybersecurity imagery: The state of cybersecurity imagery is, in a word, abysmal. You can help: participate in the Cybersecurity Visuals Challenge. cybersecurity securityeducation securityengineering

Cybersecurity Leadership: The 2020 Vision

Data Breach Today

Cyber Leader Christopher Hetner on the Capacities, Skills Needed for Next Decade's Security Leaders What are the key experiences, capacities and skills needed by the next generation of cybersecurity leaders, as they prepare to address enterprise business risk in the next decade?

The Wild, Wild West(world) of Cybersecurity

Dark Reading

Though set in the future, HBO's "Westworld" works as an allegory for the present moment in cybersecurity

NSA Launches New Cybersecurity Directorate

Security Affairs

NSA is redefining its cybersecurity mission and with the Cybersecurity Directorate it will enhance its partnerships with unclassified collaboration and information sharing. ” The State of Cybersecurity. What the NSA’s Directorate Means for Cybersecurity.

The Role of DNS in Cybersecurity

Data Breach Today

Stuart Reed of Nominet on Improving Visibility DNS is cybersecurity's best-kept secret for eliminating threats, says Stuart Reed of Nominet, who explains the value of analyzing traffic

Government Shutdown Hampers Cybersecurity

Adam Levin

Government has impacted federal cybersecurity according to several reports. 80% of the National Protection and Programs Directorate , which oversees the Office of Cyber and Infrastructure Analysis and the Office of Cybersecurity and Communications. The ongoing shutdown of the U.S.

The Future of Cybersecurity Education - Part 1

Data Breach Today

ISACA and (ISC)2 on Meeting Changing Demands of Industry, Students What is the role of professional certification companies in the cybersecurity education ecosystem?

Teaching Cybersecurity Policy

Schneier on Security

Peter Swire proposes a a pedagogic framework for teaching cybersecurity policy. cybersecurity networksecuritySpecifically, he makes real the old joke about adding levels to the OSI networking stack: an organizational layer, a government layer, and an international layer.

Cybersecurity Leadership: The Next Generation

Data Breach Today

IoT, the cloud, third-party risk - we hear a lot about how the cybersecurity risk surface and threat landscape have evolved. But what about the new business demands on cybersecurity leaders? Christopher Hetner, former global CISO at GE Capital, shares insights

GAO Blasts Cybersecurity Efforts of Federal Agencies

Data Breach Today

Watchdog Points to Numerous Risk Management Shortcomings Some 23 federal agencies come up short in their cybersecurity efforts even as attacks on their IT infrastructures continue to grow and concerns about foreign interference in the upcoming 2020 elections persist, according to a Government Accountability Office report.

A "Department of Cybersecurity"

Schneier on Security

Presidential candidate John Delaney has announced a plan to create a Department of Cybersecurity. cybersecurity infrastructure internetofthings nationalsecuritypolicyI have long been in favor of a new federal agency to deal with Internet -- and especially Internet of Things -- security.