Latest

Deception Technology

Deception Tech: High-Fidelity Alerts If Hackers Take Bait

Jeremy Kirk  •  April 23, 2018

Deception technology - which involves tricking hackers into lurking on bogus IT assets - can provide crucial intelligence on methods and motives - that is, if the stars align. Is deception technology worth the investment?

►

CISO

Insider Threat: Putting Theory Into Practice

Tom Field  •  April 23, 2018

For years, Dawn Cappelli studied and wrote about the insider threat. Then she went to Rockwell Automation and built an insider program. She discusses the program's success and her expanded role as vice president and CISO.

►

General Data Protection Regulation (GDPR)

Does Good Privacy Equal Good Business?

Tom Field  •  April 23, 2018

As the world prepares for GDPR enforcement, a new Privacy Maturity Benchmark study finds that 65 percent of respondents say their organizations experience sales delays because of data privacy issues. Cisco's Michelle Dennedy outlines the concept of data friction.

►

CISO

'You've Got the Job - Condolences!'

Tom Field  •  April 23, 2018

The average tenure of a CISO can be brief - especially in the wake of a breach. What should security leaders do from day one to get a good handle on the job? Joel de la Garza, CISO of Box, offers career advice.

►

NIST Standards

Embracing the NIST Cybersecurity Framework

Tom Field  •  April 23, 2018

Organizations across regions and sectors are rapidly adopting the NIST cybersecurity framework, and Symantec has embraced it internally and for external clients. Symantec's Ken Durbin discusses the benefits.

►

Fraud Management, Cybercrime

Defending Against Gen V Mega Attacks

Tom Field  •  April 23, 2018

It's not just that threat actors are multiplying - it's that they have evolved to unleash a fifth generation of cyberattacks, says Peter Alexander of Check Point Software Technologies. And most enterprises are ill prepared to detect or respond to these attacks.

►

Cloud Computing

A Thoughtful Move to the Cloud

Tom Field  •  April 23, 2018

Organizations understand and appreciate the efficiencies and cost savings of moving to the cloud. But what are the potential impediments they often overlook? Peter Martini of iboss offers guidance.

►

Cybercrime

Insights Into 2018 Threat Report

Tom Field  •  April 20, 2018

Centurylink is out with its 2018 Threat Report, and it contains curious insights into connected devices and the botnets that can leverage them for crime. Peter Brecl of CenturyLink shares highlights.

►

Governance

GRC Evolves Into Integrated Risk Management

Tom Field  •  April 20, 2018

As corporate information silos fall, traditional approaches to governance, risk and compliance are giving way to the new category of integrated risk management solutions. Vivek Shivananda, CEO of Rsam, discusses the evolution.

►

Behavioral Biometrics

The Rise of Microsegmentation

Tom Field  •  April 20, 2018

In today's extended enterprise, with organizations leveraging supply chains and the cloud, microsegmentation has become a hot network security technology. Tom Patterson of Unisys discusses the trend, as well as behavioral biometrics.

►

Endpoint Security

What About Connected Devices?

Tom Field  •  April 19, 2018

After years of focus, the needle is moving positively toward improving medical device security. But what about the growing cybersecurity issues associated with enterprise IoT? Mac McMillan of CynergisTek shares his concerns.

►

Risk Management

Why Threat-Centric Security Is Bound to Fail

Varun Haran  •  April 19, 2018

Taking a threat-centric approach - trying to defend against every threat out there - is a recipe for failure in the current threat landscape, says RSA CTO Zulfikar Ramzan, who advocates a business-driven approach instead.