How machine learning impacts information security

O'Reilly Media - Ideas

Burt and cybersecurity pioneer Daniel Geer recently released a must-read white paper (“Flat Light”) that provides a great framework for how to think about information security in the age of big data and AI. Continue reading How machine learning impacts information security

31 cybersecurity stats that matter

TechBeacon

Enterprise organizations have a lot to deal with these days on the cybersecurity front. Security, Information Security, Information Security (Info Sec

Meet Boston’s First Chief Information Security Officer

Sailpoint

Walsh announced Greg McCarthy’s appointment as the city’s first chief information security officer (CISO). McCarthy will lead the cybersecurity team within the Department of Innovation and Technology. I started as a project manager and was the second person on the security team.

K-12 Data Security Tips from PowerSchool’s Chief Information Security Officer

PowerSchool

By Rich Gay, Chief Information Security Officer & VP of Development , PowerSchool . No school or district can be 100 percent safe from cybersecurity attacks. Las t year alone, there were 122 data security incidents reported at K-12 schools, according to a recent report by the K-12 Cybersecurity Resource Center. The good news is that there are many ways to be proactive and secure your student and staff information.

Monetizing Analytics Features: Why Data Visualizations Will Never Be Enough

THE BASICS: Single Sign-On, Security Integration. As more users have relevant information at their ingertips to book lights, purchase. to update information from within the. Flexible Security Application teams have already invested. security model and setting up diferent.

Information Security Spending: Don’t Be Fooled by Overconfidence

The New Stack

Spending on information security continues to increase, but those gains may decelerate as companies become more confident in their security posture. Sentiment about security may be due to increased spending in previous years.

Cybersecurity Q&A with Dave Elfering, VP information security at Werner Enterprises

Sailpoint

Dave Elfering, currently Vice President of information security has also witnessed a considerable amount of growth and change over his career when it comes to information security. In 1997, Elfering began working at Werner as a project manager to help the company build its online presence and secure its data. Tell us how you got interested and eventually started in information security? I started writing a lot of security policies.

Why health care cybersecurity is in ‘critical condition’

The Parallax

government-sponsored Health Care Industry Cybersecurity Task Force delivered more than 100 recommendations to the Department of Homeland Security to make medical technology more resistant to hackers. READ MORE FROM ‘NO PANACEA FOR MEDICAL CYBERSECURITY’.

Cybersecurity Awareness Month: Is it time to review your approach?

TechBeacon

For most folks, October is a month for ghosts and goblins, but for the last 15 years the Department of Homeland Security (DHS) and the National Cyber Security Alliance (NCSA) have had a different emphasis: National Cybersecurity Awareness Month (NCAM).

52

Georgia bill could stifle the state’s booming cybersecurity community

The Parallax

A new bill winding its way through the Georgia state senate has cybersecurity experts on alert. As Senate Bill 315 is currently written, academics and independent security researchers alike could be subject to prosecution in Georgia alongside malicious hackers.

How to Package and Price Embedded Analytics

With this approach, you turn features off and on through visibility controls, conditional logic, and your application’s security model. You need to be able to use your existing security. leveraging adaptive security models >. security • Dashboards • Widgets • Pages • Tables.

Triaging modern medicine’s cybersecurity issues

The Parallax

Hackers often talk about practicing good “cybersecurity hygiene” : making sure that basic standards, such as using unique passwords for each log-in, are met. ”—Jacki Monson, chief privacy and information security officer, Sutter Health. READ MORE ON MEDICAL SECURITY.

9 disruptive security plays from RSAC 2019

TechBeacon

Bad actors have always had the edge in cybersecurity. After all, the good guys have to secure everything, while the bad guys need find only one vulnerability. Security, Information Security, Information Security (Info Sec), Special Coverage: RSA Conference 2019

Netflix Information Security: Preventing Credential Compromise in AWS

Netflix TechBlog

Today, we would like to share two additional layers of security: API enforcement and metadata protection. For more information on how the AWS services mentioned work, see the Background section at the end of this post. cloud-computing netflixsecurity security cloud-security aws

AWS 114

Q&A with John Masserini, Chief Information Security Officer at Millicom

Sailpoint

In this Q&A we spoke with John Masserini, chief information security officer at international telecommunications provider Millicom. Masserini talks with us about his interesting career path in information security, cloud security, and identity management.

5 Early Indicators Your Embedded Analytics Will Fail

application admins say it’s a pain to manage security settings in two different places.” When we need to update the information in the dashboard, we don’t like having to leave. Updating your application’s dashboards and reporting features. may feel optional—until suddenly it’s not.

RSA 2019: Tracking the state of cybersecurity

TechBeacon

Next week, more than 40,000 members of the security community will arrive in San Francisco to attend the annual RSA Conference, now in its 27th year. Security, Information Security, RSA Conference 2019, Information Security (Info Sec), DevOps Security, Application Security (App Sec There, they will find a smorgasbord of speakers, sessions, and an expo where hundreds of companies will be displaying their wares.

Is Information Security the Right Profession for Me?

Linux Academy

Wondering if information security is the right profession for you? I’ve been working in information security for many years and have had the opportunity to fill a variety of roles. First off, there are many different jobs within information security.

Cybersecurity Style Guide helps you write like a hacker

The Parallax

The Bishop Fox Cybersecurity Style Guide , published last week , was developed over the last year and a half to fill a vacuum, says its lead editor, Brianne Hughes. My real goal was to bridge the gap between people who are writing in security, and the people who have to read that.”.

When machine learning is hacked: 4 lessons from Cylance

TechBeacon

Artificial intelligence (AI) has become all the rage in cybersecurity circles, but a recently discovered universal bypass of a machine-learning (ML) algorithm in BlackBerry's Cylance cybersecurity suite offers some valuable lessons for organizations mulling AI security solutions.

Why “Build or Buy?” Is the Wrong Question for Analytics

What’s more, they gain the security of working with. informed decisions. workflows and security models. WHY “BUILD OR BUY?” IS THE WRONG QUESTION FOR ANALYTICS Introduction.1 When to Build Your Own Analytics. 2 When to Buy a Bolt-On Solution. 6 When to Take a Combined Approach.

3 Ways to Improve Information Security in the Workplace

Strategy Driven

In the new digital world where everything is shared and connected, there is a growing concern about information security and integrity of the data you keep. While we know that there is no such thing as an unbreakable system, we can use some ground rules to improve data-security.

VOIP 46

Cybersecurity On Call: Balancing Connectivity and Cybersecurity with Paul Roberts

Cloudera

LockState learned a hard lesson around cyber and IoT security –as well as customer trust. To learn more about how the industry is balancing connectivity with cybersecurity, we have invited Paul Roberts to join us. Paul is the founder and Editor in Chief of The Security Ledger, an independent security news website that explores the intersection of cyber security with the Internet of Things.

Abandoned mobile apps, domain names raise information security risks

Kacy Zurkus - CSO Online

The apps can still contact custom domain names for arbitrary tasks like configuration changes, application updates or publishing information. The traffic from a mobile device that is still trying to connect to an old and expired domain exposes lots of personal information — contact data, text messages, pictures, GPS data and call logs all sitting at risk of an attack.

How hackers are approaching medical cybersecurity

The Parallax

READ MORE ON MEDICAL CYBERSECURITY. Dr. Paul Pugsley’s medical cybersecurity crisis in the Emergency Room was part of a simulation at the CyberMed Summit 2018 to teach doctors about complications that can arise from cyberattacks against medical devices and hospitals.

The Definitive Guide to Creating a Reliable Mobile App

4 ways to build a better security culture

TechBeacon

While the vast majority of security professionals believe a stronger cybersecurity culture would improve their business, nearly all companies—95%—have a gap between their desired culture and reality, according to new research. Security, Information Security, Information Security (Info Sec

ISACA state of security report: Gender diversity issues troubling

TechBeacon

Gender diversity programs for cybersecurity pros are on the decline, and the perception of their effectiveness is waning. Those are just two of the findings in a new report by ISACA on the nation's cybersecurity workforce, released Monday at the RSA Conference in San Francisco. Security, Information Security, Special Coverage: RSA Conference 2019, Information Security (Info Sec

Security vs Compliance | Hacking In To Cybersecurity

Linux Academy

Welcome back to another iteration of Hacking In To Cybersecurity! Our previous posts in this series have focused on informing you, the reader, on how to land a job in the cybersecurity career field , but we’re going to switch gears in this episode and talk about something that every security professional needs to understand: Does Compliance equal Security? Security Defined. Security vs Compliance. Security and Compliance Work Together.

How Certifications Can Help You Land a Position | Hacking In to Cybersecurity

Linux Academy

Welcome to Hacking In to Cybersecurity, an all-new series dedicated to helping you, the reader, get a leg up on the competition when trying to break into the cybersecurity career field. The blogs will consist of introducing you to some techniques you can use to help to land a security position, as well as covering some concepts that anyone considering joining the career field should know about. How Hiring Managers Find the Best Candidates for a Cybersecurity Position.

Iterate Your Way to a Top Analytics Product Experience

Speaker: Richard Cheng, Associate Product Manager, Mark43

To fix traditionally paper-heavy and error-prone processes, they needed a secure and easy-to-use product experience that simplified and unified crime data collection and management. Mark43 is on a mission to bring public safety data management into the 21st century.

Getting Started with Cloudera’s Cybersecurity Solution

Cloudera Engineering

A quick conversation with most Chief Information Security Officers (CISOs) reveals they understand they need to modernize their security architecture and the correct answer is to adopt a machine learning and analytics platform as a fundamental and durable part of their data strategy.

6 cybersecurity trends we’re thankful for

The Parallax

You might think of cybersecurity professionals as tech’s collective “ watchers on the wall ”—the guardians who let you know when doom is coming. Here are six things on the cybersecurity and privacy front we’re glad that organizations are helping consumers become more aware of than ever before.

Trends 206

Cybersecurity on Call: Nation-State Cyber Operations with Patrick Tucker

Cloudera

If you enjoyed this podcast, click here to hear other cybersecurity industry influencers on their take on the latest trends. Like us on SoundCloud and follow us so you’re always up on current events in the world of cybersecurity. The post Cybersecurity on Call: Nation-State Cyber Operations with Patrick Tucker appeared first on Cloudera Blog.

4 key challenges for next-gen security operations centers

TechBeacon

External challenges and internal inefficiencies are driving the need for a more integrated approach to security analytics and operations at many organizations. Security, Information Security, Information Security (Info Sec

The Ultimate Embedded Analytics Guide

Cybersecurity On Call: Goodbye 2017, Hello 2018! Top Five Tips from 2017

Cloudera

This was an amazing year for our inaugural “Cybersecurity On Call” season. It was truly an honor hosting amazing guests as we explored the world of cybersecurity. From industry thought leaders, to New York Times best sellers, to hackers, I learned a ton about the future of cybersecurity and I hope you did as well. Cybersecurity in Government with Dr. Ron Ross. Information Warfare with Bill Gertz. Securing the Fourth Platform with Peter Tran.

How to prioritize strategic risks that affect critical infrastructure

TechBeacon

Roughly 85% of the critical infrastructure in the US is managed and operated by private organizations, and if ours is one of these firms you have the primary responsibility for assessing specific vulnerabilities and managing cybersecurity risk to your own networks.

5 key elements of the next-gen security operations center

TechBeacon

Enterprise Strategy Group (ESG) recently surveyed 372 IT and security professionals about issues surrounding enterprise security analytics and operations processes. Security, Information Security, Information Security (Info Sec), Security Operations (SecOps

IoT 83

How machine learning bolsters your security operations

TechBeacon

In today's threat environment, most security operations centers (SOCs) are losing ground to adversaries. Meahwhile, efforts to combat breaches are crippled by a severely understaffed cybersecurity industry. Security, Information Security, Special Coverage: RSA Conference 2019, Machine Learning, Artificial Intelligence (AI Attackers continue to up their game at a dizzying pace, while everyone else falls behind.