July 5, 2024 at 07:43AM The evolving attack surface poses a significant challenge to business security. Gartner introduced Continuous Threat Exposure Management (CTEM) as a solution, predicting 3 times less breaches for organizations that prioritize it. CTEM offers a comprehensive view of the attack surface, emphasizes vulnerability management and validation, and urges organizations to adapt … Read more
July 2, 2024 at 01:38PM Zero trust security is an effective cybersecurity approach addressing modern threats by continuously verifying and monitoring all network activities. Despite complexity and resource needs, it offers improved security posture and risk reduction. ISC2 members identified barriers to implementation including cultural shift, cost, complexity, and poor user experience. ISC2 offers zero … Read more
July 2, 2024 at 07:22AM Cyberinsurance premiums have decreased by around 15% since 2022, as businesses have become more proficient at minimizing losses from cybercrime. Enhanced security measures such as multifactor authentication have aided in reducing insurance claims. However, the insurance industry’s cyclical nature suggests that lower premiums may not be a long-term trend. Industry … Read more
July 1, 2024 at 10:07AM Psychology professor Daniel Kahneman, known for “Thinking Fast and Slow,” emphasized two modes of thinking – immediate reactions and slow, logical consideration. CISOs face balancing long-term risk management with rapid IT changes. While traditional systems require methodical security measures, modern applications demand automatic, fast responses. Managing risk effectively involves incorporating … Read more
June 27, 2024 at 03:18PM SecurityWeek Network provides cybersecurity news, webcasts, virtual events, and coverage of topics such as malware, cyberwarfare, data breaches, ransomware, and more. It also includes content on security operations, incident response, risk management, and industrial cybersecurity, as well as discussions on CISO strategy and cyber insurance. It seems that the provided … Read more
June 26, 2024 at 05:56PM Optiv’s 2024 Threat and Risk Management Report, based on a Ponemon Institute survey, highlights a 59% spike in cyber budgets. The report emphasizes the urgency for organizations to prioritize cybersecurity investments, as data breaches and security incidents continue to rise. Key findings include security tool overload, top investment areas, lack … Read more
June 24, 2024 at 03:18PM SecurityWeek will host the AI Risk Summit + CISO Forum Summer Summit on June 25-26, 2024, in Half Moon Bay, California. The event aims to bring together industry experts, researchers, and policymakers for meaningful discussions on risk management and cybersecurity in the age of artificial intelligence. For more information and … Read more
June 20, 2024 at 10:40AM The NIST Cybersecurity Framework 2.0 (NIST CSF 2.0) arrives at a critical moment, as ransomware attacks and other cybersecurity threats are on the rise. It emphasizes the need for organizations to reevaluate their security measures, make targeted investments, and prioritize organization-wide security hygiene to effectively combat evolving cyber threats. Based … Read more
June 19, 2024 at 07:21AM The CISO faces mounting pressures in our digital age. They grapple with regulatory challenges, constantly evolving threat landscapes, and limited decision-making authority. However, there’s a strategic evolution in play, with CISOs increasingly reporting to CEOs and aspiring to align security objectives with broader business goals. Despite the risks, the CISO … Read more
June 14, 2024 at 03:00AM The AI Risk Summit + CISO Forum Summer Summit will take place on June 25-26, 2024, at the Ritz-Carlton, Half Moon Bay. The event brings together experts in AI, security, and risk management to discuss real-world examples and provide guidance on risk management and cybersecurity. Keynotes, panel discussions, and advanced … Read more