Security Conversations videoCSO Executive Sessions: How cybersecurity impacts company ratings – A fey factor for investors and consumersMartin Whitworth – Lead Cyber Risk Expert at S&P Global Ratings – joins Xiou Ann Lim for this CSO Executive Sessions interview. They talk about why the world’s largest credit rating firm is now factoring in cyber preparedness when assessing companies, how cyber risk affects a company’s financial health, and the role CISOs play in it. 12 Feb 2025 27 minsSecurity CSO Executive Sessions: How should software solution providers keep themselves and their enterprise clients safe? 26 Jan 2025 18 minsSecurity CSO Executive Sessions: Open Source Institute’s Eric Nguyen on supply chain risks to critical infrastructure (Part 2) 14 Nov 2024 15 minsCritical InfrastructureIT GovernanceSupply Chain CSO Executive Sessions: Open Source Institute’s Eric Nguyen on supply chain risks to critical infrastructure (Part 1) 04 Nov 2024 19 minsCritical InfrastructureSecuritySupply ChainSee all videos Expert insights The risks of standing down: Why halting US cyber ops against Russia erodes deterrenceBy Christopher Whyte06 Mar 20258 minsAdvanced Persistent ThreatsCSO and CISOThreat and Vulnerability Management Microsoft pushes a lot of products on users, but here’s one cybersecurity can embraceBy Susan Bradley05 Mar 20256 minsAccess ControlData and Information SecurityWindows Security What CISOs need from the board: Mutual respect on expectationsBy David Gee26 Feb 20256 minsBusiness IT AlignmentCSO and CISOCompliance DOGE’s US worker purge has created a spike in insider riskBy Christopher Burgess25 Feb 20256 minsCSO and CISOGovernmentGovernment IT Think being CISO of a cybersecurity vendor is easy? Think againBy Tyler Farrar 19 Feb 20257 minsCSO and CISOHuman ResourcesIT LeadershipThe cloud is not your only option: on-prem security still alive and well in Windows Server 2025By Susan Bradley 06 Feb 20257 minsCloud SecurityData and Information SecurityWindows SecurityUse payment tech and still not ready for PCI DSS 4.0? You could face stiff penalties By Michelle Drolet 05 Feb 20255 minsData and Information SecurityRetail IndustrySecurity PracticesWhy honeypots deserve a spot in your cybersecurity arsenalBy Chris Hughes 05 Feb 20256 minsAdvanced Persistent ThreatsRisk ManagementSecurity Practices opinionThe cybersecurity skills gap reality: We need to face the challenge of emerging techNew research indicates an acute need for security professionals proficient with emerging and advanced technologiesBy Jon Oltsik 28 Jan 2025 4 minsCSO and CISOHuman ResourcesIT SkillsopinionCybersecurity needs women — and it needs to treat them betterWell into the 21st century, women still make up only 25% of the cybersecurity workforce — a mind-boggling issue that security leaders, cyber pros, and the industry at large must work to address.By Christopher Burgess 27 Jan 2025 9 minsHuman ResourcesIT LeadershipIT SkillsopinionSecurity chiefs whose companies operate in the EU should be exploring DORA nowDetermining if your entity falls within DORA should be on the radar of every CRO, general counsel, and CISO whose company operates in Europe – penalties for non-compliance can be stiff.By Christopher Burgess 22 Jan 2025 6 minsCSO and CISOGDPRRegulationopinionCybersecurity hiring is deeply flawed, demoralizing, and needs to be fixedA process that should be about the excitement of career development or a fresh start has become a frustrating experience where automated systems overwhelm a confused and misguided recruitment regime.By Tyler Farrar 16 Jan 2025 8 minsCSO and CISOHuman ResourcesIT JobsopinionThe CFO may be the CISO’s most important business allyDespite natural tensions, a CISO-CFO alliance can help CISOs become better business leaders and ensure the business better balances risk and innovation.By David Gee 15 Jan 2025 6 minsBudgetBusiness IT AlignmentCSO and CISOopinion2025 Cybersecurity and AI PredictionsThe cybersecurity and AI landscape continues to evolve at a breathtaking pace, and with it, the associated risks.By Jason Lau 10 Jan 2025 11 minsSecurityopinionSecure by design vs by default – which software development concept is better?It’s no surprise that demand for more secure software is rising and these two approaches claim to outline the best way forward. By Chris Hughes 03 Jan 2025 11 minsDevSecOpsDevelopment ApproachesSecurity PracticesopinionEnhance Microsoft security by ditching your hybrid setup for Entra-only joinPrepare now for the eventual end of Microsoft Active Directory as it’s phased out in favor of the more secure, less risky Entra. By Susan Bradley 20 Dec 2024 7 minsCloud SecuritySecurity PracticesWindows SecurityopinionCISOs should stop freaking out about attackers getting a boost from LLMsWhy bad actors are not gaining the upper hand in their nefarious plans with assistance from AI but more likely finding themselves falling a little behind. By Christopher Whyte 18 Dec 2024 8 minsCSO and CISOHacker GroupsHackingopinionBug bounty programs: Why companies need them now more than everA key element to comprehensive cybersecurity defenseBy Jason Lau 09 Dec 2024 7 minsHackingSecurityopinionDear CEO: It’s time to rethink security leadership and empower your CISOVeteran CISO Tyler Farrar offers an open letter to CEOs whose business strategies expect security chiefs to be accountable without authority — or who hire CISOs incapable of fulfilling a true leadership role.By Tyler Farrar 05 Dec 2024 6 minsBusiness IT AlignmentCEOCSO and CISOopinionWant to be a cybersecurity pro? Use generative AI to get some simulated trainingEntry-level cybersecurity candidates can get creative with generative AI to help them get a foot in the door of the profession.By Jon Oltsik 03 Dec 2024 6 minsCSO and CISOIT LeadershipIT Training Show more Show less