How to Build the Most Effective Information Security Framework


Build a comprehensive defense of against cyberattacks with a strong information security framework that leverages the world's best standards and infosec tools. . If your organization falls under their purview, their rules have to be part of your information security program.

How machine learning impacts information security

O'Reilly on Data

Burt and cybersecurity pioneer Daniel Geer recently released a must-read white paper (“Flat Light”) that provides a great framework for how to think about information security in the age of big data and AI. They list important changes to the information landscape and offer suggestions on how to alleviate some of the new risks introduced by the rise of machine learning and AI. Continue reading How machine learning impacts information security


Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Elevate Security unveils cybersecurity surface management platform


US cybersecurity startup Elevate Security (Elevate) has launched an attack surface management platform that uses a customized and automated response to employee risk throughout an organization to overcome the unaddressed problems caused due to human errors. News Elevate Security

700K more cybersecurity workers, but still a talent shortage


For the second year in a row, the global shortage of cybersecurity workers has eased, but it's still not time to celebrate, much less relax. Security, Information Security, IT Hiring


The Essential Guide to Building Analytic Applications

Embedding dashboards, reports, and analytics in an existing application presents some unique opportunities—and poses unique challenges—to software teams. Download this eBook to hear 16 product experts share insights on business intelligence, UI/UX, security, and everything that goes into building a successful application with analytics at its core.

Why cybersecurity pros need to learn how to code


There is an age-old debate in security: Should cybersecurity professionals know how to code? Security, Information Security, CareersShould they invest the time and effort to learn?

How To 108

9 strategic cybersecurity outcomes CISOs should focus on


Over the past two years, chief information security officers have had to face an increasingly hostile cybersecurity landscape, with cyberattacks continuing to rise in volume, velocity, and sophistication—a situation aggravated by the borderless IT environment many CISOs find themselves working in.


Meet Boston’s First Chief Information Security Officer


Walsh announced Greg McCarthy’s appointment as the city’s first chief information security officer (CISO). McCarthy will lead the cybersecurity team within the Department of Innovation and Technology. In this interview, we discuss his career, how the role of cybersecurity has changed within the city, and how security in the public sector can be different than in the private sector. I started as a project manager and was the second person on the security team.

K-12 Data Security Tips from PowerSchool’s Chief Information Security Officer


By Rich Gay, Chief Information Security Officer & VP of Development , PowerSchool . No school or district can be 100 percent safe from cybersecurity attacks. Las t year alone, there were 122 data security incidents reported at K-12 schools, according to a recent report by the K-12 Cybersecurity Resource Center. The good news is that there are many ways to be proactive and secure your student and staff information.

31 cybersecurity stats that matter


Enterprise organizations have a lot to deal with these days on the cybersecurity front. Security, Information Security, Information Security (Info Sec

Assess and Advance Your Organization’s DevSecOps Practices

In this white paper, a DevSecOps maturity model is laid out for technical leaders to use to enable their organizations to stay competitive in the digital economy.

5 ways to attract the best information security pros


Security, Information Security, Special Coverage: RSA Conference 2020, RSA Conference, CareersRSA Conference 2020 was focused on the human element for the first time, and thankfully so.

The cybersecurity resource problem: 4 ways to get proactive


Resources have always been a problem when it comes to cybersecurity. You are not always rewarded for doing security they way you are when you develop a new business application quickly. This usually leads to security teams being understaffed and overworked.

The state of the cybersecurity job field: 5 key factors you need to know


Many cybersecurity team leaders continue to face challenges in finding qualified cybersecurity professionals to fill jobs at their organizations, despite the relatively high salaries and stability associated with jobs in the field. Security, Information Security, Careers

10 Tips for Maintaining Information Security During Layoffs


Read Joan Goodchild list 10 information security tips for companies during layoffs on Dark Reading: Business disruption and the financial toll brought on by the COVID-19 has forced many companies, […].

Monetizing Analytics Features: Why Data Visualizations Will Never Be Enough

THE BASICS: Single Sign-On, Security Integration. As more users have relevant information at their ingertips to book lights, purchase. to update information from within the. Flexible Security Application teams have already invested. security model and setting up diferent.

Close your cybersecurity skills gap with untapped talent


Across all industries and organizations of all sizes, the cybersecurity skills gap continues to pose challenges. Security, Information Security, IT Hiring, Careers

Cybersecurity Q&A with Dave Elfering, VP information security at Werner Enterprises


Dave Elfering, currently Vice President of information security has also witnessed a considerable amount of growth and change over his career when it comes to information security. In 1997, Elfering began working at Werner as a project manager to help the company build its online presence and secure its data. Tell us how you got interested and eventually started in information security? I started writing a lot of security policies.

Why this cybersecurity executive order is no different than the last EOs


President Biden’s recent “Executive Order on Improving the Nation’s Cybersecurity” has been hailed by many as a significant step forward in protecting the infrastructure of the United States against the serious threats that it faces.

Build your cybersecurity A-team: 7 recruiting tips


million cybersecurity jobs unfilled this year, the recruiting and retaining of information security pros has become more important than ever. Security, Information Security, IT Hiring, CareersWith more than 3.5

How to Package and Price Embedded Analytics

With this approach, you turn features off and on through visibility controls, conditional logic, and your application’s security model. You need to be able to use your existing security. leveraging adaptive security models >. security • Dashboards • Widgets • Pages • Tables.

Update your cybersecurity practices: Shift to cyber resilience


As the world becomes more digitally connected, the need for strong cybersecurity practices is increasing exponentially. Security, Information Security, Cyber Resilience

Is Information Security the Right Profession for Me?

Linux Academy

Wondering if information security is the right profession for you? I’ve been working in information security for many years and have had the opportunity to fill a variety of roles. In this post, I’ll fill you in about some of the available jobs in information security and what it takes to succeed in each one. First off, there are many different jobs within information security. Security Analyst (Blue Teamer).

Secure your IoT: Why smart attack and insider threat detection is key


What keeps cybersecurity professionals up at night? IoT can present some scary challenges for information security pros. Security, Information Security, Micro Focus Author, Micro Focus Security Author, Internet of Things (IoT), Native-Ad

IoT 85

From Solar Sunrise to Solar Winds: The Questionable Value of Two Decades of Cybersecurity Advice

Haft of the Spear

While the Ware Report of 1970 codified the foundations of the computer security discipline, it was the President’s Commission on Critical Infrastructure Protection report of 1997 that expanded those requirements into recommendations for both discrete entities as well as the nascent communities that were growing in and around the Internet. A Brief History of Cybersecurity Advice. What impact has all this good advice had on the state of cybersecurity? The security poverty line.

5 Early Indicators Your Embedded Analytics Will Fail

application admins say it’s a pain to manage security settings in two different places.” When we need to update the information in the dashboard, we don’t like having to leave. Updating your application’s dashboards and reporting features. may feel optional—until suddenly it’s not.

Economics meets cybersecurity: A light at the end of the tunnel?


Modern computers and networks aren’t as secure as we’d like them to be, partly because we keep building on top of old systems instead of designing from the ground up using good security engineering principles. Security, Information Security, Native-Ad

Cybersecurity Mesh – Key Considerations before Adoption & Implementation


Incidents of cyberattacks continue to jeopardize data security. Not surprisingly, then, enterprises are now focusing on strengthening cybersecurity. Let’s delve deeper to know what it’s all about and how it’s changing the IT security paradigm across the globe.

Shift to cyber resilience: 7 steps to a better security approach


If you sometimes feel like you are on a cybersecurity hamster wheel, running to fight off threats that never end, you are not alone. Security, Information Security, Cyber Resilience, Native-Ad, Micro Focus Author, Micro Focus Security Author

The shift from DevOps and security to DevSecOps: 5 key roadblocks


Do a Google News search on “cybersecurity” and you'll get tens of millions of results. Of course, that doesn’t mean there were that many cybersecurity incidents in the last week or so, but it sure does feel that way. Security, Information Security, DevSecOps

Data Analytics in the Cloud for Developers and Founders

Speaker: Javier Ramírez, Senior AWS Developer Advocate, AWS

You have lots of data, and you are probably thinking of using the cloud to analyze it. But how will you move data into the cloud? In which format? How will you validate and prepare the data? What about streaming data? Can data scientists discover and use the data? Can business people create reports via drag and drop? Can operations monitor what’s going on? Will the data lake scale when you have twice as much data? Is your data secure? In this session, we address common pitfalls of building data lakes and show how AWS can help you manage data and analytics more efficiently.

Netflix Information Security: Preventing Credential Compromise in AWS

Netflix TechBlog

Today, we would like to share two additional layers of security: API enforcement and metadata protection. For more information on how the AWS services mentioned work, see the Background section at the end of this post. Coupling a Metadata proxy with API enforcement increases the security stance of your AWS environment, implementing defense in depth protections. Will Bengtson, for Netflix Security Tools and Operations Background What is a credential?

AWS 72

Exadel and Armour Cybersecurity Announce Strategic Partnership


Exadel and Armour Cybersecurity offer complementary services to cover a wide range of cybersecurity needs. The partnership will deliver software, consulting, and professional cybersecurity services to customers worldwide. About Armour Cybersecurity.

Exadel and Armour Cybersecurity Announce Strategic Partnership


Exadel and Armour Cybersecurity offer complementary services to cover a wide range of cybersecurity needs. The partnership will deliver software, consulting, and professional cybersecurity services to customers worldwide. About Armour Cybersecurity.

3 Cybersecurity Technologies You Should Know

The Crazy Programmer

Cybersecurity is more critical than ever in today’s modern world, especially with news of ransomware attacks and other forms of malware on the rise. The majority of cyber-attacks actually use phishing or social engineering, where users are tricked into revealing personal information.

MLOps 101: The Foundation for Your AI Strategy

Machine Learning Operations (MLOps) allows organizations to alleviate many of the issues on the path to AI with ROI by providing a technological backbone for managing the machine learning lifecycle through automation and scalability.

AI and cybersecurity: Why machine learning is a threat detection game-changer


Organizations are deluged with billions of security events every day, far too many for human analysts to cope with. But security analysts have a powerful ally in their corner: machine learning is tipping the advantage toward defenders. Security, Information Security, Machine Learning

Why health care cybersecurity is in ‘critical condition’

The Parallax

government-sponsored Health Care Industry Cybersecurity Task Force delivered more than 100 recommendations to the Department of Homeland Security to make medical technology more resistant to hackers. For the report’s conclusion, 21 health care professionals, clinicians, policy experts, and cybersecurity experts had signed off on using the word “critical” to describe the condition of health care cybersecurity. READ MORE FROM ‘NO PANACEA FOR MEDICAL CYBERSECURITY’.

Is ad fraud a cybersecurity problem?

The Parallax

Should chief information security officers at companies hit by ad fraud take a stronger role in stopping it? Taylor believes that at the very least, CISOs should use lessons from the cybersecurity world to encourage their employers to become more engaged with the ad fraud challenge.

The 10th Cyber & Information Security Research (CISR) Conference at Oak Ridge Tn, 7-9 April 2015


The 10th Cyber & Information Security Research (CISR) Conference, 7-9 April 2015, will be held at the Conference Center, 2nd Floor, Building 5200, Oak Ridge National Laboratory, Oak Ridge, Tennessee. The conference brings together cyber security researchers, program managers, decision makers, security vendors, and practitioners to discuss many challenging tasks and novel solutions pertaining to cyber security. By Charles Hall.

Your Team's Pragmatic Guide to Security

Speaker: Naresh Soni, CTO, Tsunami XR

The pandemic has led to new data vulnerabilities, and therefore new cybersecurity threats. As technology leaders, it's time to rethink some of your product security strategies. Whether you need to rework your security architecture, improve performance, and/or deal with new threats, this webinar has you covered.