October 7, 2024 at 03:43PM Cybersecurity professionals serving as CISOs are experiencing modest pay increase, averaging $403,000 annually, but it lags behind their evolving responsibilities. Business operations are increasingly under attack, with CISOs facing resource constraints and budget pressures. Demand for CISOs has stabilized, and stress persists, especially in government and education sectors. AI risk … Read more
August 15, 2024 at 08:14AM Cybersecurity leaders need to navigate the SEC’s cybersecurity disclosure regulations carefully. The SEC’s guidance offers a starting point for CISOs to determine materiality, suggesting a 0.01% revenue loss threshold. This quantitative framework, combined with qualitative impacts, can aid in making informed disclosure decisions, ensuring compliance and transparency. From the meeting … Read more
May 10, 2024 at 11:22AM Transcript Summary: Episode: Dark Reading Confidential, Episode 1 Summary: The episode explores the evolving relationship between CISOs and the Security and Exchange Commission (SEC). Guests discuss the challenges faced by CISOs, the need for greater regulatory understanding of the cybersecurity landscape, and propose solutions such as a remediation safe harbor … Read more
February 14, 2024 at 04:14PM Prudential Financial disclosed a data breach after detecting unauthorized access to its systems by a cybercrime group. The move is seen as a proactive response to the new SEC incident-disclosure rules. While the impact is yet to be determined, experts suggest it’s a strategic effort to mitigate reputational and financial … Read more
January 31, 2024 at 06:22AM The SEC has expanded cybersecurity regulations to include SaaS systems and their connections, responding to an increase in data breaches and incidents. The regulations require enhanced disclosure and prevention measures, impacting over 130 SaaS applications per organization. A focus on SaaS-to-SaaS connections, not detectable by traditional tools, emphasizes the need … Read more
January 19, 2024 at 05:24PM In 2024, CISOs are facing increased personal and legal responsibility for data breaches, particularly due to new SEC regulations. To protect themselves, they should create a system record, define “materiality,” speak to the board in financial terms, participate in cyber insurance negotiations, and monitor emerging privacy threats. Managing third-party risks … Read more