INDUSTRY INSIGHTS YOUR PEERS ARE READING
Was it a failure of Cybersecurity professionals? Surely, Cybersecurity professionals jumped into action and started patching all the machines on their networks to prevent an infection by WannaCry! MORE
breaches cybersecurity insuranceGood article about how difficult it is to insure an organization against Internet attacks, and how expensive the insurance is. MORE
The White House has eliminated the cybersecurity coordinator position. cybersecurity intelligence nationalsecuritypolicyThis seems like a spectacularly bad idea. MORE
Hacks InfoSec Insider Vulnerabilities Cybersecurity digital assets Grey Space HR system machine intelligenceSecurity teams carefully monitor potential threat activity, but incidents aren’t always black and white. MORE
Leading the latest edition of the ISMG Security Report: The reaction to the recently released White House cybersecurity strategy. Also featured: A discussion of GDPR's impact on class action lawsuits MORE
Healthcare organizations often fail to address five fundamental elements of a solid cybersecurity program, says security expert Mark Johnson of the consultancy LBMC Information Systems, who formerly was CISO at Vanderbilt University and Medical Center MORE
This one is from NIST: " Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks." cybersecurity internetofthings nistIt's still in draft. Remember, there are many others. MORE
Cloud Forensics, Fraud, Extortion and Cyber Sociology Dominate Edinburgh Event What are hot cybersecurity topics in Scotland? MORE
Cybersecurity is a strategic priority for most organizations. We’ve all heard for years that information technology (IT) and cybersecurity require people, process, and technology; however, over the years, “people” and “process” have not received the same attention as “technology.” MORE
Cybersecurity insurers, faced with growing demand, are looking for new ways to better measure their risks, says Aleksandr Yampolskiy, CEO of SecurityScorecard. So some are moving toward more carefully scrutinizing the cybersecurity postures of their potential clients MORE
Critics Say Cybersecurity Demands Greater Prominence in Federal Government The Trump administration has eliminated the top cybersecurity coordinator role in the White House. The decision has earned a sharp rebuke from lawmakers and former government officials, who say cybersecurity demands a greater - not lesser - prominence in the federal government MORE
Cybersecurity for Small Businesses campaign kicks off MORE
Insights From Jonathan Nguyen-Duy of Fortinet "Digital transformation" is the theme of the year, but it comes with specific cybersecurity challenges - and they put a new burden squarely on the shoulders of the CISO, says Fortinet's Jonathan Nguyen-Duy MORE
The Department of Homeland Security has yet again issued a warning about cybersecurity vulnerabilities in medical devices. Why Are Such Warnings Becoming More Common? These warnings have come after independent researchers, or the companies themselves, have reported the problems MORE
Cybersecurity means more than bits and bytes; threats are out there IRL, and IT pros need to be prepared MORE
After Meltdown and Spectre, Researchers Will Pummel Microprocessors for Flaws Technology giants are still struggling to identify what's at risk from the Spectre and Meltdown flaws in modern CPUs, never mind getting working security updates into users' hands. In the meantime, expect a rush by researchers to find more flaws in microprocessor code MORE
Tom Kellerman of Carbon Black on Ovecoming Failing Architectures Security leaders need to embrace security change to overcome failing architectures that have evolved over the last decade, says Tom Kellerman, chief cybersecurity officer at Carbon Black MORE
Your organization's risk surface may be larger than you think. Your organization's risk surface is larger than you think. How can you get a handle on what risks exist, where they reside, and which ones are most important to resolve immediately MORE
For too long, cybersecurity has been looked at as one team's responsibility. If we maintain that mentality, we will fail MORE
NTT Security's Khiro Mishra and Don Gray Discuss a New Approach What is the "new science" of cybersecurity? Khiro Mishra and Don Gray of NTT Security describe the approach MORE
We examine 11 important cybersecurity research reports released in November -- and the controls organizations should consider MORE
Insights From Interviews With CISOs, Regulators What's on the minds of healthcare CISOs these days when it comes to cybersecurity challenges and initiatives? Here's a rundown of insights from the big HIMSS18 conference MORE
Group Pushes for Changes in Federal Rules to Pave the Way for Donations Federal regulators are being asked to relax anti-kickback rules so that resource-strapped healthcare providers can accept certain donations or subsidies of cybersecurity products and services MORE
PhishMe Becomes 'Cofense' After It's Purchased; Splunk Buys Phantom Cybersecurity company mergers and acquisitions continue. Among the major deals: The sale of PhishMe to a privacy equity syndicate and Splunk's purchase of Phantom. MORE
Site Highlights Watchdog Agency's Cyber Activities A Department of Health and Human Services watchdog agency has launched a new web page to draw attention to the growing importance of its cybersecurity-related activities, ranging from security audits to fraud investigations MORE
Universities throughout Florida are adding more cybersecurity courses in an effort to better train the next generation of practitioners, says Ernie Ferraresso of the Florida Center for Cybersecurity, which recently provided a second round of funding for the effort MORE
Groups Offer Feedback on HHS's Plans for Workgroup Focused on Spurring Investments As the Department of Health and Human Services explores how to spur innovation and investment in the healthcare sector, cybersecurity is among top issues that need to be addressed, some industry organizations stress MORE
There’s a growing risk of companies receiving substantial fines for not complying with cybersecurity standards under False Claims Act. The Link Between the False Claims Act and Cybersecurity. A Lack of Cybersecurity Best Practices Could Cause Obstacles. MORE
aims to assist healthcare delivery organizations in responding to cybersecurity incidents involving medical devices. A new "playbook" co-developed by the Food and Drug Administration and Mitre Corp. Julie Connolly, who helped develop the guide, explains how to use it MORE
government's Framework for Improving Critical Infrastructure Cybersecurity, commonly known as the NIST cybersecurity framework. The latest ISMG Security Report focuses on the significant changes found in the latest version of the U.S. NIST seeks comments from stakeholders on the draft of version 1.1 of the framework by Jan. MORE
Specific Actions for Organizations to See Success in their Cybersecurity Programs By focusing on the cybersecurity actions, NIST CSF can be flexibly deployed regardless of the setting or industry MORE
Gigamon's Kim DeCarlis on What Needs to be Done Today to Better Secure Tomorrow As recent breaches attest, today's approaches to cybersecurity are insufficient. Kim DeCarlis of Gigamon offers her views on what organizations must do differently to ensure stronger cybersecurity postures MORE
academicpapers cybersecurity nationalsecuritypolicyGood policy paper (summary here ) on the threats, current state, and potential policy solutions for the poor security of US space systems. MORE
Accenture Security's Tammy Moskites Discusses Efforts to Attract More Women to the Field Tammy Moskites, managing director at Accenture Security, outlines initiatives to attract more women into the field of cybersecurity MORE
Cybersecurity involves protecting the enterprise from internal or external attack and responding after the enterprise has been attacked. How do you ensure your business continues to operate if its cybersecurity is breached? It’s not just sending notices to affected customers and paying for credit watches. “Banks Create Cyber Doomsday System,” The Wall Street Journal , December 4, 2017 B1. MORE
Bill Creating Cybersecurity and Infrastructure Security Agency Awaits President's Signature The United States will soon officially have a single agency that takes the lead role for cybersecurity. MORE
A Look at What's Available at This Year's Biggest Health IT Event Cybersecurity will again be in the spotlight at this year's Healthcare Information and Management Systems Society conference, March 5 to 9 in Las Vegas. The event will feature numerous CISO presentations, updates from regulators and displays of the latest technologies MORE
or MEDC, I’m prepared to rechristen Michigan the Cybersecurity Best Practices State. My reporting trip included meetings with Michigan-based cybersecurity vendors pursuing leading-edge innovations, as well as a tour of a number of thriving public-private cybersecurity incubator and training programs. What’s noteworthy, from my perspective, is that Snyder had the foresight to make cybersecurity readiness a key component of his reinvent Michigan strategy, from day one. MORE
Insights From Interviews With CISOs, Regulators What's on the minds of healthcare CISOs these days when it comes to cybersecurity challenges and initiatives? Here's a rundown of insights from the big HIMSS18 conference MORE
Securities and Exchange Commission has released revised guidance "to assist public companies in preparing disclosures about cybersecurity risks and incidents." Regulator Demands More Risk Disclosure, Better Insider Trading Policies The U.S. MORE
Advisory Council Seeks Changes in Law to Help Smaller Healthcare Providers Improve Security An advisory council is again urging the Department of Health and Human Services to allow certain donations of cybersecurity technology and services to smaller healthcare providers. MORE
Cybersecurity Related Topics Data Breach Today
NOVEMBER 14, 2018
Bill Creating Cybersecurity and Infrastructure Security Agency Awaits President's Signature The United States will soon officially have a single agency that takes the lead role for cybersecurity.
Data Breach Today
DECEMBER 7, 2018
Your organization's risk surface may be larger than you think. Your organization's risk surface is larger than you think. How can you get a handle on what risks exist, where they reside, and which ones are most important to resolve immediately
Data Breach Today
OCTOBER 10, 2018
Site Highlights Watchdog Agency's Cyber Activities A Department of Health and Human Services watchdog agency has launched a new web page to draw attention to the growing importance of its cybersecurity-related activities, ranging from security audits to fraud investigations
Data Breach Today
FEBRUARY 23, 2018
Securities and Exchange Commission has released revised guidance "to assist public companies in preparing disclosures about cybersecurity risks and incidents." Regulator Demands More Risk Disclosure, Better Insider Trading Policies The U.S.
Schneier on Security
SEPTEMBER 27, 2018
This one is from NIST: " Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks." cybersecurity internetofthings nistIt's still in draft. Remember, there are many others.
Schneier on Security
MAY 17, 2018
The White House has eliminated the cybersecurity coordinator position. cybersecurity intelligence nationalsecuritypolicyThis seems like a spectacularly bad idea.
Data Breach Today
OCTOBER 31, 2018
Advisory Council Seeks Changes in Law to Help Smaller Healthcare Providers Improve Security An advisory council is again urging the Department of Health and Human Services to allow certain donations of cybersecurity technology and services to smaller healthcare providers.
Data Breach Today
MAY 11, 2018
Gigamon's Kim DeCarlis on What Needs to be Done Today to Better Secure Tomorrow As recent breaches attest, today's approaches to cybersecurity are insufficient. Kim DeCarlis of Gigamon offers her views on what organizations must do differently to ensure stronger cybersecurity postures
Data Breach Today
MARCH 12, 2018
Insights From Interviews With CISOs, Regulators What's on the minds of healthcare CISOs these days when it comes to cybersecurity challenges and initiatives? Here's a rundown of insights from the big HIMSS18 conference
Security Affairs
NOVEMBER 8, 2018
There’s a growing risk of companies receiving substantial fines for not complying with cybersecurity standards under False Claims Act. The Link Between the False Claims Act and Cybersecurity. A Lack of Cybersecurity Best Practices Could Cause Obstacles.
Data Breach Today
OCTOBER 3, 2018
Healthcare organizations often fail to address five fundamental elements of a solid cybersecurity program, says security expert Mark Johnson of the consultancy LBMC Information Systems, who formerly was CISO at Vanderbilt University and Medical Center
Dark Reading
NOVEMBER 20, 2018
For too long, cybersecurity has been looked at as one team's responsibility. If we maintain that mentality, we will fail
Data Breach Today
APRIL 19, 2018
Insights From Jonathan Nguyen-Duy of Fortinet "Digital transformation" is the theme of the year, but it comes with specific cybersecurity challenges - and they put a new burden squarely on the shoulders of the CISO, says Fortinet's Jonathan Nguyen-Duy
Data Breach Today
JULY 9, 2018
Groups Offer Feedback on HHS's Plans for Workgroup Focused on Spurring Investments As the Department of Health and Human Services explores how to spur innovation and investment in the healthcare sector, cybersecurity is among top issues that need to be addressed, some industry organizations stress
Data Breach Today
APRIL 18, 2018
NTT Security's Khiro Mishra and Don Gray Discuss a New Approach What is the "new science" of cybersecurity? Khiro Mishra and Don Gray of NTT Security describe the approach
Schneier on Security
APRIL 12, 2018
breaches cybersecurity insuranceGood article about how difficult it is to insure an organization against Internet attacks, and how expensive the insurance is.
Data Breach Today
JUNE 18, 2018
Cybersecurity insurers, faced with growing demand, are looking for new ways to better measure their risks, says Aleksandr Yampolskiy, CEO of SecurityScorecard. So some are moving toward more carefully scrutinizing the cybersecurity postures of their potential clients
Data Breach Today
AUGUST 29, 2018
Group Pushes for Changes in Federal Rules to Pave the Way for Donations Federal regulators are being asked to relax anti-kickback rules so that resource-strapped healthcare providers can accept certain donations or subsidies of cybersecurity products and services
Data Breach Today
APRIL 30, 2018
Accenture Security's Tammy Moskites Discusses Efforts to Attract More Women to the Field Tammy Moskites, managing director at Accenture Security, outlines initiatives to attract more women into the field of cybersecurity
Getting Information Done
MAY 15, 2017
Was it a failure of Cybersecurity professionals? Surely, Cybersecurity professionals jumped into action and started patching all the machines on their networks to prevent an infection by WannaCry!
Data Breach Today
JUNE 29, 2018
Cloud Forensics, Fraud, Extortion and Cyber Sociology Dominate Edinburgh Event What are hot cybersecurity topics in Scotland?
Data Breach Today
MAY 16, 2018
Critics Say Cybersecurity Demands Greater Prominence in Federal Government The Trump administration has eliminated the top cybersecurity coordinator role in the White House. The decision has earned a sharp rebuke from lawmakers and former government officials, who say cybersecurity demands a greater - not lesser - prominence in the federal government
Data Breach Today
MARCH 9, 2018
Insights From Interviews With CISOs, Regulators What's on the minds of healthcare CISOs these days when it comes to cybersecurity challenges and initiatives? Here's a rundown of insights from the big HIMSS18 conference
Data Breach Today
MAY 16, 2018
The Department of Homeland Security has yet again issued a warning about cybersecurity vulnerabilities in medical devices. Why Are Such Warnings Becoming More Common? These warnings have come after independent researchers, or the companies themselves, have reported the problems
Threatpost
NOVEMBER 9, 2018
Hacks InfoSec Insider Vulnerabilities Cybersecurity digital assets Grey Space HR system machine intelligenceSecurity teams carefully monitor potential threat activity, but incidents aren’t always black and white.
eSecurity Planet
NOVEMBER 28, 2018
We examine 11 important cybersecurity research reports released in November -- and the controls organizations should consider
Data Breach Today
MARCH 1, 2018
A Look at What's Available at This Year's Biggest Health IT Event Cybersecurity will again be in the spotlight at this year's Healthcare Information and Management Systems Society conference, March 5 to 9 in Las Vegas. The event will feature numerous CISO presentations, updates from regulators and displays of the latest technologies
Schneier on Security
JULY 30, 2018
academicpapers cybersecurity nationalsecuritypolicyGood policy paper (summary here ) on the threats, current state, and potential policy solutions for the poor security of US space systems.
Data Breach Today
OCTOBER 26, 2018
aims to assist healthcare delivery organizations in responding to cybersecurity incidents involving medical devices. A new "playbook" co-developed by the Food and Drug Administration and Mitre Corp. Julie Connolly, who helped develop the guide, explains how to use it
Data Breach Today
JUNE 8, 2018
Specific Actions for Organizations to See Success in their Cybersecurity Programs By focusing on the cybersecurity actions, NIST CSF can be flexibly deployed regardless of the setting or industry
Data Breach Today
MAY 23, 2018
Universities throughout Florida are adding more cybersecurity courses in an effort to better train the next generation of practitioners, says Ernie Ferraresso of the Florida Center for Cybersecurity, which recently provided a second round of funding for the effort
Dark Reading
OCTOBER 26, 2018
Cybersecurity for Small Businesses campaign kicks off
Data Breach Today
DECEMBER 15, 2017
government's Framework for Improving Critical Infrastructure Cybersecurity, commonly known as the NIST cybersecurity framework. The latest ISMG Security Report focuses on the significant changes found in the latest version of the U.S. NIST seeks comments from stakeholders on the draft of version 1.1 of the framework by Jan.
InfoGovNuggets
DECEMBER 8, 2017
Cybersecurity involves protecting the enterprise from internal or external attack and responding after the enterprise has been attacked. How do you ensure your business continues to operate if its cybersecurity is breached? It’s not just sending notices to affected customers and paying for credit watches. “Banks Create Cyber Doomsday System,” The Wall Street Journal , December 4, 2017 B1.
Data Breach Today
FEBRUARY 28, 2018
PhishMe Becomes 'Cofense' After It's Purchased; Splunk Buys Phantom Cybersecurity company mergers and acquisitions continue. Among the major deals: The sale of PhishMe to a privacy equity syndicate and Splunk's purchase of Phantom.
Data Breach Today
SEPTEMBER 28, 2018
Leading the latest edition of the ISMG Security Report: The reaction to the recently released White House cybersecurity strategy. Also featured: A discussion of GDPR's impact on class action lawsuits
Data Breach Today
JANUARY 24, 2018
After Meltdown and Spectre, Researchers Will Pummel Microprocessors for Flaws Technology giants are still struggling to identify what's at risk from the Spectre and Meltdown flaws in modern CPUs, never mind getting working security updates into users' hands. In the meantime, expect a rush by researchers to find more flaws in microprocessor code
Dark Reading
NOVEMBER 26, 2018
Cybersecurity means more than bits and bytes; threats are out there IRL, and IT pros need to be prepared
The Last Watchdog
NOVEMBER 26, 2018
or MEDC, I’m prepared to rechristen Michigan the Cybersecurity Best Practices State. My reporting trip included meetings with Michigan-based cybersecurity vendors pursuing leading-edge innovations, as well as a tour of a number of thriving public-private cybersecurity incubator and training programs. What’s noteworthy, from my perspective, is that Snyder had the foresight to make cybersecurity readiness a key component of his reinvent Michigan strategy, from day one.
Getting Information Done
APRIL 18, 2017
Cybersecurity is a strategic priority for most organizations. We’ve all heard for years that information technology (IT) and cybersecurity require people, process, and technology; however, over the years, “people” and “process” have not received the same attention as “technology.”
177 
Let's personalize your content