Cybersecurity Leadership

DevSecOps is the non-negotiable key to building secure and resilient applications that can withstand modern and sophisticated cyber threats. 

The quantum computing market boom has sparked concerns about the vulnerability of our current public-key cryptography algorithms, putting sensitive data integrity at risk.

While cybercrime makes a CISO’s position daunting, board support can strengthen organizational resilience. There are five critical questions the board should ask their CISO to create this outcome.

The Board needs to take an elevated view on cybersecurity, looking for cross-functional governance matters beyond the mere technical horizon

There's no one path to business success, but you can take this important step to mitigate cyber risk and unleash the power of innovation, partnerships, and customer relationships: rethink network security.

More women are entering cybersecurity, but they still struggle to reach senior positions, pointing to the need to break the glass ceiling.

CISOs can avoid being liable for data breaches by following legal advice, communicating effectively with internal and external stakeholders, and demonstrating commitment to avoid future incidents.

Protecting sensitive data and ensuring compliance with regulations are paramount concerns for SMEs leveraging cloud services. To achieve resilient cloud security, SMEs must implement robust strategies tailored to their unique needs and resources.

Frustration, stress, and increased liability are only a few of the off-putting realities giving CISOs cold feet. It doesn’t have to be that way, experts say.

Dark Reading talks cloud security with John Kindervag, the godfather of zero trust.

The rise of bad bots is just one more reason for companies to ensure that their fraud and cyber teams are working together.

Over the past decade, the ecosystem of Cybercrime-as-a-Service (CaaS) has really evolved and added several challenges to monitor this crime. One such challenge is that not one single threat actor executes one attack from beginning to end

Horrible bosses are everywhere but cybersecurity appears to be particularly problematic, leading to talent-retention issues and security risks. Here’s how not to be a toxic CISO.

Experts at this year's RSA Conference offered strategies to help CISOs cope with the prospect of facing federal indictments over their handling of cyber incidents.

Up to now, the IoT industry has relied mainly on security by obscurity and the results have been predictable

Not a decade ago, cybersecurity was an emergent concept that few enterprise leaders were well-versed in or even concerned with.

Now they can’t go a day without discussing the dangers of cybercrime.

An IBM report found that most organizations are exposing themselves to security risks when implementing generative AI tools

Zero-trust security should be seen as a strategy to protect high-value assets and is not tied to a specific technology or product, says the model’s creator John Kindervag

Cloud misconfigurations, more sophisticated ransomware, and exploitation of vendors are contributing to rising cyberattacks.

While other professions are making up ground, cybersecurity still lags behind in female representation, thanks to a lack of respect and inclusion.

Security isn't just for your organisation, you also need to get closer to your suppliers, especially those providing critical services.

There is something of a governance malpractice in bringing in a new expert for every problem the Board may encounter

While the financial burden of ransomware payments and data recovery is undeniable, the true cost of a cyberattack goes far beyond immediate expenses.

Those who understand “1s & 0s”need to explain to those who work in “dollars & cents” that the cyber-criminal world is evolving into a multi-tiered business structure that rivals their corporate structures