The Air Force chief information security officer offered unusual advice to new security professionals: Don’t worry about every patch and vulnerability. “It’s OK if you can’t get to 800 controls,” said Peter Kim. “It’s OK if you miss a patch.” Kim said that he is trying to communicate to his team that their most important…

Users get a bad rap for cybersecurity. Find out why making them part of your organization’s cybersecurity solution is critical to staying secure. What are the biggest roadblocks to better cybersecurity? If you look at the major cybersecurity conferences, the usual presentation topics are risk assessment, encryption, zero-day exploits, and insider threats. But there’s no…

Ability to detect and respond to threats is greatly impeded by a lack of skills and staff. Leading organizations offer a few suggestions. If you’ve followed my writing, you know that I passionately broadcast issues related to the global cybersecurity skills shortage. Allow me to report some sad news – things aren’t improving at all.…

The threat landscape has changed so dramatically, so fast that it has outpaced previously sound security practices. There is a fracture in our modern way of life. The crack is imperceptible to most, even though it’s a dire threat. The public sees the recent headlines about the HBO hack and the company’s proprietary information being…

  Steven Aftergood weighs up an analysis of the fierce conflict destabilizing the Internet. The Internet is under attack, and not just by hackers, thieves and spies. As Alexander Klimburg reports in The Darkening Web, governments that insist on their own primacy are increasingly assaulting the idea of this digitized landscape as a transnational commons.…

There are massive gaps in security among the 134 countries surveyed, including the world’s most powerful nations. The whole world could use a cybersecurity upgrade. As cyberattacks grow more sophisticated and capable of knocking down power grids, locking up hospitals and robbing companies, online security has become a major concern for national defense. But a…

Business and technology higher education institutions are offering cyber security degrees and programs to help meet the job demand. The shortage of cyber security professionals is well documented, and this lack of expertise can keep organizations from bolstering their security programs. CISOs and CSOs should be heartened by the fact that more colleges and universities…

Cyberattacks occur all the time, in all kinds of ways, all over the world — from the WannaCry ransomware attack that spread across nonupdated networks and systems across the globe to a seemingly innocuous email from a company’s IT department disguised as a phishing scam. Cyberattacks are becoming more sophisticated, leaving business leaders to wonder…

Within the past few months, hospitals across the world have suffered from cyber attacks, resulting in massive data breaches and workflow stagnancy. The enhanced interoperability of electronic health records (EHRs) and medical devices is increasing the efficiency of healthcare delivery and providing greater access to patients. Yet, as healthcare practices welcome the Internet of Things,…

Many feel the 2015 data breach at the Office of Personnel Management served as a wake-up call for the federal government. In many ways, it was more of a confirmation of what many had feared would eventually happen. Last month marked two years since the disclosure of one of the biggest data breaches in U.S. history…