All Articles

Where should a CISO report into within an organization?  No common standard exists as we can find them operating under many different organizations, including IT, Legal, the CTO, and CEO just to name a few. 

In today’s video, I break down some of the

Watch Talk:

(Read more:  5 Best Practices to secure your Big Data Implementation)

BadUSB — On accessories that turn evil by Karsten Nohl

Karsten Nohl is a cryptographer and security researcher

This talk introduces a new form of malware that oper

CISO Platform 100, 2018 (India):

Applications for the Top 100 CISO Awards is open for 2018. Kindly fill in your responses asap.

We are very happy to announce that nominations are now open for the 7^th Edition of Top 100 CISO Awards - India's 1st Securit

Securely Moving Data to the Cloud with Confidence and Customer Focus (RSA Conference)

This session will provide a deep dive of best practices to securely move customer data to the cloud through AWS, while keeping the customers’ interest top of mind. M

Building a Strategic Plan for Your  Security Awareness Program (RSA Conference 2017)

The key to securing your employees behaviors is an effective strategic plan that is both realistic and supported by your leadership. Learn how other organizations are

Building a new SOC capability may involve lot of planning and would attract huge initial investment.

While there are multiple approaches to address this, given below are some of the simple steps one can follow:

1. Understanding Business Goals, type of

2018 started with our community meets for Security Priority Planning for 2018.. and through our live survey we gathered some interesting insights. Technologies that are part of Key Focus Area for a CISO in 2018 are Security Analytics, SOC Implementat

COBIT, ISO/IEC 27001, NIST 800.53, PCI, oh my. The path to compliance is not a yellow brick road. IT professionals face a variety of security standards that they must meet simultaneously. This talk will present the NIST Open Security Controls Assessm

There is a steep rise in interest from the Board & CEO of an organization to understand the security posture of their company. Partly because of the increasing pressure from the government regulators, stakeholders & discussions on the potential risk

The future of technology is at risk as there are not enough skilled cybersecurity workers to fulfill the demands for keeping digital technology secure, private, and safe to use.  Some estimates predict there will be over 3 million unfilled positions

The video conference company Zoom has skyrocketed to new heights and plummeted to new lows in the past few weeks.  It is one of the handful of communications applications that is perfectly suited to a world beset by quarantine actions, yet has fallen

Third party vendors and suppliers often have access to your network and your organisation's confidential information. The best way to prevent a data breach is to have robust program to assess how your third parties are managing their risk and protect

Counting down to the absolutely worst cybersecurity strategies. Sadly, these are all prevalent in the industry. Many organizations have failed spectacularly simply because they chose to follow a long-term path that leads to disaster. You know who you

I am seeing many security vendors developing products to unify solutions into a single management interface. I fear this is just a sales tactic to gain greater market share and not intended to help the plight of CISO’s

A recent article from ComputerWe

I may offend some people, so for those who don’t want to hear my rant, skip this video.

Recent cybersecurity predictions aren’t just wrong, they are dangerous

I am disappointed in the recent comments that Michelle Zatlyn, the co-founder and COO of Clou

CISO Platform 100, 2021 (India):

Applications for the Top 100 CISO Awards is open for 2021. Kindly fill in your responses asap.

We are very happy to announce that nominations are now open for the 13^th Edition of Top 100 CISO Awards - India's 1st Sec

The HMG Atlanta Virtual CIO Summit is this week, March 3^rd, 1pm-3:30pm EST! 

Leaders in the industry deliver world class insights and best practices for management, technology, and career development. 

This CIO focused event is free for senior executiv

A free-flowing discussion about the past and future evolution of cybersecurity leadership.  I had a great time sharing my personal experiences, industry insights, and a few rants in this podcast interview with Marco Ciappelli and Sean Martin of ITSP

This article gives a 5 principal steps and questions one must solicit the emergency from the cyber security incident response steps. This includes the incident, the control points, plan of action, communication, business impacts.

( Read More: Incide