October 10, 2024 at 12:02PM The July CrowdStrike incident highlights the risks associated with deploying security technologies. CISOs should focus on “secure innovation,” fostering a culture of security throughout the organization. Engaging employees and ensuring vendor security are crucial for maintaining operational stability while promoting innovation. Collaboration is key to balancing risk and progress. ### … Read more
October 8, 2024 at 05:59PM Former Uber CISO Joseph Sullivan, convicted for covering up a data breach, seeks a new trial due to procedural omissions, claimed to have tainted the original verdict. The prosecution argues for a more stringent penalty, while Sullivan’s defense asserts that key requirements were not part of the jury’s instructions, calling … Read more
August 28, 2024 at 12:03PM LinkedIn has named Lea Kissner, former Twitter security chief, as its new Chief Information Security Officer (CISO). Kissner will oversee LinkedIn’s security and privacy strategy, succeeding Geoff Belknap. With an extensive cybersecurity background at tech companies like Google and Twitter, Kissner is committed to upholding the protection of member and … Read more
August 8, 2024 at 02:12PM Ann Johnson and Sherrod DeGrippo presented at Black Hat on “Security in the Age of AI.” They tackled the recent CrowdStrike outage and highlighted the community’s response. Microsoft’s focus on collaborating with customers and peers, particularly in combating threat actors like Scattered Spider, was emphasized. The discussion emphasized the importance … Read more
August 7, 2024 at 11:35AM Cynomi’s eBook “What does it take to be a full-fledged Virtual CISO?” details how service providers can expand vCISO services economically. The role of Chief Information Security Officer (CISO) is crucial in the current cyber threat landscape, but there’s a shortage of skilled CISOs, leading to the increased demand for … Read more
August 1, 2024 at 12:12PM SentinelOne has appointed Alex Stamos as its new Chief Information Security Officer (CISO). With a background at Yahoo and Facebook, Stamos aims to prioritize security over profit, referencing the dangers of upselling in the industry. The decision reflects SentinelOne’s commitment to a security-first approach in the face of increasing cyber … Read more
July 19, 2024 at 05:30PM The SEC lawsuit against SolarWinds and CISO Timothy Brown, accused of concealing security issues pre and post SUNBURST breach, has been dismissed by a judge. This outcome signifies a significant development in the legal proceedings. (49 words) Based on the meeting notes, it seems that there has been a development … Read more
July 18, 2024 at 06:05PM A judge dismissed part of the SEC’s case against SolarWinds and its CISO Tim Brown, post-breach, but allowed claims related to misrepresenting cybersecurity posture pre-breach to proceed. The ruling is seen as guidance for public companies in disclosing cyber incidents. SolarWinds is pleased but will defend claims in the upcoming … Read more
July 16, 2024 at 09:33AM CISOs-in-Residence, Frank Kim and Charles Blauner of YL Ventures and Team8, respectively, hold unique roles that involve not only securing their own companies, but also those in which their firms invest. Both have backgrounds in coding and stress the importance of continuous learning in cybersecurity career paths. The role of … Read more
July 5, 2024 at 08:35AM While serving on the Commission on Enhancing National Cybersecurity, Joe Sullivan, a former Uber CSO, faced legal challenges for mishandling a data breach. The government’s effort to enforce good corporate behavior has led to an increase in legal actions against security leaders. To avoid trouble, it’s recommended that security leaders … Read more