Policies, Security and Weak Development Team

The future of European cybersecurity is autonomous

CIO

MARCH 4, 2024

In a stark warning, Tanium’s Cybersecurity in Europe report spells out the current threat level in no uncertain terms. “[Across Europe] we are seeing breaches in all industries, from airlines to retail, from banking to manufacturing. Only Canada, the Middle East, and the United States are higher than Germany’s cost.

Security

Security Weak Development Team Artificial Intelligence Artificial Inteligence

2 Innovations That Can Tip the Balance in Cybersecurity

CIO

JANUARY 13, 2023

Army Major General and Vice President and Federal Chief Security Officer for Palo Alto Networks What critical innovations can change the balance in cybersecurity, providing those of us responsible for defending our organizations with more capabilities against those who would do us harm? This is not just a theoretical exercise.

Security

Security Innovation Artificial Inteligence Weak Development Team

7 tough IT security discussions every IT leader must have

CIO

SEPTEMBER 6, 2023

Talk may be cheap, but when it comes to IT security, strategic conversations with colleagues, business partners, and other relevant parties can be priceless. Such discussions ensure the integration of cybersecurity initiatives and resource requirements in the enterprise’s business goals and objectives,” he adds.

Fractional CTO

Fractional CTO Weak Development Team Systems Review Culture

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Cybersecurity Snapshot: New Guide Details How To Use AI Securely, as CERT Honcho Tells CISOs To Sharpen AI Security Skills Pronto

Tenable

JANUARY 26, 2024

1 - Using AI securely: Global cyber agencies publish new guide Is your organization – like many others – aggressively adopting artificial intelligence to boost operational efficiency? If so, you might want to check out a new guide published this week about how businesses can use AI securely.

Artificial Inteligence

Artificial Inteligence Artificial Intelligence Weak Development Team Technical Advisors

Exploring the pros and cons of cloud-based large language models

CIO

OCTOBER 24, 2023

As a result of ongoing cloud adoption, developers face increased pressures to rapidly create and deploy applications in support of their organization’s cloud transformation goals. Cloud applications, in essence, have become organizations’ crown jewels and developers are measured on how quickly they can build and deploy them.

Artificial Inteligence

Artificial Inteligence Security Cloud Weak Development Team

What you need to know about Okta’s security breach

CIO

OCTOBER 25, 2023

On October 20, 2023, Okta Security identified adversarial activity that used a stolen credential to gain access to the company’s support case management system. The exposure of personal or sensitive information can lead to identity theft, phishing attacks, and other forms of cybercrime. There is no silver bullet in cybersecurity.

Systems Review

Systems Review Software Review Development Team Review Technical Review

Creating a Security Program with Less Complexity and More Visibility

Palo Alto Networks

MAY 23, 2024

Developing a strong security program is like tending a garden. Organized cybercriminals build teams that specialize in different phases of attack, from intelligence gathering to exfiltration. These shortcomings get in the way of prioritizing the most important work, and they keep SOC teams underwater.

Programming

Programming Weak Development Team Authentication Real Estate

Cybersecurity Snapshot: NSA Picks Top Cloud Security Practices, while CNCF Looks at How Cloud Native Can Facilitate AI Adoption

Tenable

MARCH 22, 2024

Check out the NSA’s 10 key best practices for securing cloud environments. 1 - Ten best practices for beefing up cloud security Looking for advice on boosting the security of your cloud environment? 1 - Ten best practices for beefing up cloud security Looking for advice on boosting the security of your cloud environment?

Artificial Inteligence

Artificial Inteligence Cloud Technical Review Generative AI

Rapid Digital Transformation Requires Rethinking of Security Frameworks

CIO

JULY 11, 2022

Cybersecurity is top of mind for everyone. For IT teams, the list of concerns has been magnified by a more dispersed workforce and the need to assess the risks associated with a proliferation of connected devices, the vanishing perimeter and the ever-changing threat landscape.

Weak Development Team

Weak Development Team WAN Data Center Network

Security automation startup Veriti launches out of stealth with $18.5M

TechCrunch

NOVEMBER 8, 2022

Veriti, a platform for unifying cybersecurity infrastructure, today emerged from stealth with $18.5 According to CEO Adi Ikan, the newly announced capital is being put toward scaling Veriti’s business operations and developing its product suite. “Enterprise security posture is usually sub-optimal. . billion in 2020.

Weak Development Team

Weak Development Team Technical Review Machine Learning Artificial Inteligence

Cybersecurity Snapshot: New Guide Explains How To Assess If Software Is Secure by Design, While NIST Publishes GenAI Risk Framework

Tenable

MAY 10, 2024

Is the software your company wants to buy securely designed? 1 - How to assess if a tech product is secure by design Buying a securely designed digital product can lower your risk of breaches, simplify cyber defense efforts and reduce costs. A new guide outlines how you can find out. And much more!

Software Review

Software Review Weak Development Team Generative AI Software

Microsoft and Cognizant team up to boost enterprise Copilot adoption

CIO

APRIL 24, 2024

But the partnership seeks to go beyond Cognizant’s internal use, with Microsoft and Cognizant teaming up to promote generative AI use across Cognizant’s global client base through the advisory and digital transformation services arm of Cognizant’s business.

Weak Development Team

Weak Development Team Enterprise Artificial Inteligence Generative AI

Los Angeles IT secures the vote with open source and the cloud

CIO

AUGUST 11, 2023

Aman Bhullar, CIO of Los Angeles County Registrar-Recorder/County Clerk, has heeded the call, having led a widespread overhaul of antiquated voting infrastructure just in time for the contentious 2020 presidential election — a transformation rich in open source software to ensure other counties can benefit from his team’s work.

Open Source

Open Source Cloud Weak Development Team Government

The Importance of Security and Compliance in Enterprise Applications

OTS Solutions

JUNE 21, 2023

However, as more organizations rely on these applications, the need for enterprise application security and compliance measures is becoming increasingly important. Breaches in security or compliance can result in legal liabilities, reputation damage, and financial losses.

Compliance

Compliance Enterprise Applications Software Review

Cybersecurity Snapshot: What’s in Store for 2024 in Cyberland? Check Out Tenable Experts’ Predictions for OT Security, AI, Cloud Security, IAM and more

Tenable

DECEMBER 29, 2023

The new year is upon us, and so we ponder the question: What cybersecurity trends will shape 2024? Their 2024 forecasts include: A bigger security role for cloud architects; a focus by ransomware gangs on OT systems in critical industries; an intensification of IAM attacks; and much more!

Software Review

Software Review Development Team Review Systems Review Weak Development Team

Simple sabotage for software

Erik Bernhardsson

DECEMBER 12, 2023

Be worried about the propriety of any decision — raise the question of whether such action as is contemplated lies within the jurisdiction of the group or whether it might conflict with the policy of some higher echelon. You can of course make a series of obviously bad decisions, but you'd get fired quickly. Pivot frequently.

Software Review

Software Review Weak Development Team Technical Advisors Software

8 data strategy mistakes to avoid

CIO

JANUARY 24, 2024

How enterprises gather, store, cleanse, access, and secure their data can be a major factor in their ability to meet corporate goals. The proper use of unstructured data will become of increasing importance to IT leaders,” says Kevin Miller, CTO of enterprise software developer IFS. “It It will not be something they can ignore.

Strategy

Strategy Weak Development Team Data CTO Coach

The cyber security challenges in fintech and neobanking’s rise

CIO

JULY 25, 2022

Unquestionably, there are many positives to this trend, but there will also be an increase in cybersecurity challenges to accompany it. But this often comes at the expense of cyber security, which tends to be left as an afterthought and included too late, says Galbiati.

Fintech

Fintech Development Team Review Technical Review Weak Development Team

Spin Technology raises $16M to protect SaaS apps against attacks

TechCrunch

AUGUST 9, 2022

CEO Dmitry Dontov said that fresh capital — which values Spin at $55 million post-money — will be put toward supporting growth, expanding Spin’s software-as-a-service (SaaS) offerings, and growing the startup’s marketing, sales and engineering teams. Cybersecurity VC funding surged to a record $11.5 ” .

Technology

Technology Backup Weak Development Team Enterprise

Cybersecurity in Custom Software Development: Why It Matters

InfoBest

MAY 25, 2023

In today’s digital landscape, where cyber threats are on the rise, ensuring robust cybersecurity measures in custom software development projects is more important than ever. Why is Cybersecurity Important in Software Development? Maintaining Trust Cybersecurity is critical to maintaining user trust.

Software Development

Software Development Software Review Weak Development Team Software

Operational technology systems require a robust Zero Trust strategy in 2024

CIO

DECEMBER 5, 2023

The good news is that a Zero Trust approach can go a long way toward helping organizations take back control and develop a more robust security posture. They weren’t designed with cybersecurity considerations in mind, and they can’t be easily patched or upgraded because of operational, compliance, or warranty concerns.

System

System Technology Strategy Weak Development Team

10 top priorities for CIOs in 2024

CIO

JANUARY 8, 2024

Double-down on cybersecurity We are in a cybersecurity pandemic right now, warns Juan Orlandini, CTO for North America at solutions and systems integrator Insight Enterprises. Work toward having the right cybersecurity team in place, Orlandini advises.

Technical Advisors

Technical Advisors CTO Coach Weak Development Team ChatGPT

6 IT rules worth breaking — and how to get away with it

CIO

SEPTEMBER 26, 2023

Here’s a rundown of six IT policies or protocols that, in certain situations, with certain guardrails in place, can be disregarded in order to perform what needs to get done. Potential risks to consider include system downtime, workflow disruptions, or even security vulnerabilities if the cancellation isn’t managed intelligently.

Technical Advisors

Technical Advisors How To Policies Change Management

Cybersecurity Snapshot: U.S. Gov’t Unpacks AI Threat to Banks, as NCSC Urges OT Teams to Protect Cloud SCADA Systems

Tenable

MARCH 29, 2024

The 52-page report, titled “ Managing Artificial Intelligence-Specific Cybersecurity Risks in the Financial Services Sector, ” touches on cybersecurity and fraud protection; fraud threats; the regulatory landscape; and major challenges and opportunities. This week, the U.K.

Systems Review

Systems Review Weak Development Team Banking System

Cybersecurity Snapshot: A Look Back at Key 2023 Cyber Data for GenAI, Cloud Security, Vulnerability Management, OT, Cyber Regulations and more

Tenable

DECEMBER 22, 2023

As we bid adieu to 2023, we highlight major trends that impacted cybersecurity professionals in the past 12 months. Learn how the cyber world changed in areas including artificial intelligence, CNAPP, IAM security, government oversight and OT security. Cybersecurity teams were no exception.

Artificial Inteligence

Artificial Inteligence Technical Review Cloud Artificial Intelligence

5 ways CIOs can help gen AI achieve its lightbulb moment

CIO

FEBRUARY 9, 2024

And this isn’t a bad thing. In developing your policy, be sure to include all relevant stakeholders, consider how gen AI is used today within your organization and how it may be used in the future, and share broadly across the organization. For example, gen AI is typically bad at writing technical predictions.

Technical Review

Technical Review Generative AI Policies Weak Development Team

Elevate Cybersecurity with PRISMA IDs

Prisma Clud

AUGUST 22, 2023

In the cybersecurity maze, finding and addressing vulnerabilities is like chasing shadows. Every point of weakness opens a door to potential threats. Disclosure policies usually hold a 90-day (60-120 days) disclosure deadline. Timeline for CVE-2023-29401 Quick Fixes Developers may patch a vulnerability without recording a CVE.

Weak Development Team

Weak Development Team Open Source Systems Review Software Review

Empathy for the API Developer

DevOps.com

JULY 25, 2022

Security teams have always been perceived as an impediment to delivery by software teams who feel that security imposes arbitrary and unreasonable policies and use poorly-integrated tools that are beset with high false-positive rates. Security teams believe developers […].

Weak Development Team

Weak Development Team Development DevOps Policies

4 ways CISOs can manage AI use in the enterprise

CIO

DECEMBER 18, 2023

Over the summer, I wrote a column about how CIOs are worried about the informal rise of generative AI in the enterprise. Since then, many CIOs I’ve spoken with have grappled with enterprise data security and privacy issues around AI usage in their companies. That column may have been the understatement of the year.

Artificial Inteligence

Artificial Inteligence Enterprise Generative AI Firewall

Cybersecurity Snapshot: Critical Infrastructure Orgs Must Beware of China-backed Volt Typhoon, Cyber Agencies Warn

Tenable

FEBRUARY 9, 2024

critical infrastructure IT and operational technology security teams, listen up. So said cybersecurity agencies from the U.S., Cybersecurity and Infrastructure Security Agency (CISA) said in a statement. Dive into six things that are top of mind for the week ending February 9.

Weak Development Team

Weak Development Team Infrastructure Generative AI Artificial Inteligence

Why health care cybersecurity is in ‘critical condition’

The Parallax

SEPTEMBER 25, 2018

government-sponsored Health Care Industry Cybersecurity Task Force delivered more than 100 recommendations to the Department of Homeland Security to make medical technology more resistant to hackers. READ MORE FROM ‘NO PANACEA FOR MEDICAL CYBERSECURITY’. Triaging modern medicine’s cybersecurity issues.

IoT

IoT Weak Development Team Technical Review Systems Review

Prioritizing AI? Don’t shortchange IT fundamentals

CIO

FEBRUARY 14, 2024

Fundamentals like security, cost control, identity management, container sprawl, data management, and hardware refreshes remain key strategic areas for CIOs to deal with. Data due diligence Generative AI especially has particular implications for data security, Mann says.

Artificial Inteligence

Artificial Inteligence Generative AI Software Review Development Team Review

OpenID Connect: Let’s Talk Security

Prisma Clud

SEPTEMBER 12, 2023

OIDC enables secure and standardized authentication in applications, particularly web and mobile applications. But while OIDC improves security, minimizing user credential exposure, it can introduce security risks such as misconfigured identity and access management (IAM) policies.

Weak Development Team

Weak Development Team Authentication Policies AWS

Security Theater: Who Cares About Your AppSec Findings?

Prisma Clud

MAY 29, 2024

Welcome to Act 2 of our blog series focused on Security Theater where we seek to shed light on the illusion of cloud security. In this blog we’ll dive into what we can do to bring value to these security findings. Today, security findings come from a bevy of different tools. So, what are findings?

Weak Development Team

Weak Development Team Software Review Open Source Cloud

Cybersecurity Snapshot: Insights on Supply Chain Security, Hiring, Budgets, K8s, Ransomware

Tenable

NOVEMBER 11, 2022

Get the latest on staffing challenges; nation-state assaults on critical infrastructure; supply chain security tips; ransomware weak links; Kubernetes security; and more! . 1 - Cybersecurity budgets rise, but hiring remains a challenge. Cybersecurity budget breakdown and best practices ” (TechTarget). “ and Canada.

Budget

Budget Software Review Weak Development Team Small Business

Cybersecurity Snapshot: CISOs See Budgets Tighten, as Cyberthreats Intensify

Tenable

SEPTEMBER 29, 2023

After double-digit growth in the past two years, cybersecurity budgets expanded more modestly in 2023. 1 - Cybersecurity budgets grow, but less than in years past Cybersecurity teams on average saw an increase in their 2023 budgets, but the bump was much smaller than in previous years, as organizations across the board reined in IT spending.

Budget

Budget Hardware Weak Development Team Software Review

The Importance of Security and Compliance in Enterprise Applications

OTS Solutions

JUNE 21, 2023

However, as more organizations rely on these applications, the need for enterprise application security and compliance measures is becoming increasingly important. Breaches in security or compliance can result in legal liabilities, reputation damage, and financial losses.

Compliance

Compliance Enterprise Applications Software Review

Level Up Your Cloud Security Strategy

Tenable

JANUARY 22, 2024

Learn how to better your cloud security program with these ten security resolutions. From CSPs to CSPMs to EC2s, there’s a litany of acronyms and jargon to contend with, especially in the realm of cloud security. Each acronym and concept represents an important part of the cloud security ecosystem.

Cloud

Cloud Strategy Weak Development Team Policies

Using Your Pipelines To Harden Your Pipelines: The Importance of CI/CD Security for Your Software Supply Chain

Prisma Clud

DECEMBER 1, 2022

Just last year, software supply chain attacks jumped 51% , which is proof that bad (and creative) actors are capitalizing on these weaknesses. Just one CI/CD misconfiguration can expose sensitive information and can then be used as an entry point for injecting malicious code and leaking sensitive data.

Weak Development Team

Weak Development Team Software Review Software Open Source

Cybersecurity Snapshot: CSA Offers Guidance on How To Use ChatGPT Securely in Your Org

Tenable

MAY 5, 2023

Check out the Cloud Security Alliance’s white paper on ChatGPT for cyber pros. 1 - CSA unpacks ChatGPT for security folks Are you a security pro with ChatGPT-induced “exploding head syndrome”? 1 - CSA unpacks ChatGPT for security folks Are you a security pro with ChatGPT-induced “exploding head syndrome”?

ChatGPT

ChatGPT Artificial Inteligence Malware Generative AI

Avoiding the Security Potluck: Good Governance Helps You from Code to Cloud

Tenable

AUGUST 3, 2023

What's involved in shifting cloud security responsibilities to the app development team with governance by the security team? With new hacks in the news every day, businesses are rightfully pushing their application development teams to implement security into their daily operations.

Security

Security Government Cloud Weak Development Team

IT leaders’ top 9 takeaways from 2023

CIO

DECEMBER 18, 2023

She says she and other CIOs must know and understand what’s in the environment , and they must be able to identify what’s where so that their IT teams can strategically plant alongside and on top of it. We in [information systems technology] have a better understanding of how the organization works than people think,” he says.

Generative AI

Generative AI Weak Development Team Technical Review Policies

ClearPath report shows automation and good policy can help beleaguered security professionals

Lacework

JUNE 28, 2022

It’s a tough time to work in cybersecurity right now. On the one hand, companies desperately need security professionals to help defend against a growing myriad of attacks against the cloud. But security pros say companies aren’t taking the threat seriously enough. over their organization’s current security posture. .

Policies

Policies Report Weak Development Team SMB

SGNL.ai secures $12M to expand its enterprise authorization platform

TechCrunch

OCTOBER 27, 2022

SGNL.ai , a company developing enterprise authorization software, today announced that it raised $12 million in seed funding led by Costanoa Ventures with participation from Fika Ventures, Moonshots Capital and Resolute Ventures. Kriz also spent several years at Google on the product, identity and authorization team.

Enterprise

Enterprise Weak Development Team Technical Review Software Review

The future of European cybersecurity is autonomous

2 Innovations That Can Tip the Balance in Cybersecurity

Webinars

Trending Sources

7 tough IT security discussions every IT leader must have

Webinars

Cybersecurity Snapshot: New Guide Details How To Use AI Securely, as CERT Honcho Tells CISOs To Sharpen AI Security Skills Pronto

Exploring the pros and cons of cloud-based large language models

What you need to know about Okta’s security breach

Creating a Security Program with Less Complexity and More Visibility

Cybersecurity Snapshot: NSA Picks Top Cloud Security Practices, while CNCF Looks at How Cloud Native Can Facilitate AI Adoption

Rapid Digital Transformation Requires Rethinking of Security Frameworks

Security automation startup Veriti launches out of stealth with $18.5M

Cybersecurity Snapshot: New Guide Explains How To Assess If Software Is Secure by Design, While NIST Publishes GenAI Risk Framework

Microsoft and Cognizant team up to boost enterprise Copilot adoption

Los Angeles IT secures the vote with open source and the cloud

The Importance of Security and Compliance in Enterprise Applications

Cybersecurity Snapshot: What’s in Store for 2024 in Cyberland? Check Out Tenable Experts’ Predictions for OT Security, AI, Cloud Security, IAM and more

Simple sabotage for software

8 data strategy mistakes to avoid

The cyber security challenges in fintech and neobanking’s rise

Spin Technology raises $16M to protect SaaS apps against attacks

Cybersecurity in Custom Software Development: Why It Matters

Operational technology systems require a robust Zero Trust strategy in 2024

10 top priorities for CIOs in 2024

6 IT rules worth breaking — and how to get away with it

Cybersecurity Snapshot: U.S. Gov’t Unpacks AI Threat to Banks, as NCSC Urges OT Teams to Protect Cloud SCADA Systems

Cybersecurity Snapshot: A Look Back at Key 2023 Cyber Data for GenAI, Cloud Security, Vulnerability Management, OT, Cyber Regulations and more

5 ways CIOs can help gen AI achieve its lightbulb moment

Elevate Cybersecurity with PRISMA IDs

Empathy for the API Developer

4 ways CISOs can manage AI use in the enterprise

Cybersecurity Snapshot: Critical Infrastructure Orgs Must Beware of China-backed Volt Typhoon, Cyber Agencies Warn

Why health care cybersecurity is in ‘critical condition’

Prioritizing AI? Don’t shortchange IT fundamentals

OpenID Connect: Let’s Talk Security

Security Theater: Who Cares About Your AppSec Findings?

Cybersecurity Snapshot: Insights on Supply Chain Security, Hiring, Budgets, K8s, Ransomware

Cybersecurity Snapshot: CISOs See Budgets Tighten, as Cyberthreats Intensify

The Importance of Security and Compliance in Enterprise Applications

Level Up Your Cloud Security Strategy

Using Your Pipelines To Harden Your Pipelines: The Importance of CI/CD Security for Your Software Supply Chain

Cybersecurity Snapshot: CSA Offers Guidance on How To Use ChatGPT Securely in Your Org

Avoiding the Security Potluck: Good Governance Helps You from Code to Cloud

IT leaders’ top 9 takeaways from 2023

ClearPath report shows automation and good policy can help beleaguered security professionals

SGNL.ai secures $12M to expand its enterprise authorization platform

Stay Connected