CISO - The Stack

CISO

"We're becoming scapegoats": How have CISOs responded to SEC cyber risk disclosure rules?

On the anniversary of the new rules, we speak to industry experts to find out how (and if) things have changed.

SolarWinds

SolarWinds and its CISO not off the hook over “materially misleading” security statement

"Flat falsehoods" says district judge of public security statement -- but dismisses multiple other SEC claims.

CEOs and CIOs need to start accepting “red” security dashboards. Two CISOs explain why...

No plan survives contact.

Cybersecurity

Feds to CIOs: Actively ask your vendors if they’ve done a SQLi audit...

Fix up, look sharp: Uncle Sam is running out of patience with tech firms shipping insecure software. Vendors? Get familiar with the phrase "query parameterization"...

Flooded airports, DORA, and IT-security siloes: Cohesity's Mark Molyneux on cyber-resilience

Many organisations "don't understand the capabilities that IT can provide to security and that security can provide to IT" says the Barclays veteran. CIOs and CISOs should...

CISO

The Big Interview: BAE Systems CISO Mary Haigh

"You can't run around with your hair on fire"

CISO

CISCO names former Palo Alto Networks CTO as new CISO in key region

APAC security veterans returns after a break recharging.

cybersecurity

How CISOs can make sure a cyber insurance claim pays out

Leading insurer highlights “shocking blind spots” that “happen over and over again on a daily basis” to invalidate claims.

Cybersecurity

Turf wars? NIST to fix NVD backlog by September – insists it’s right agency to run vulnerability database

Update comes after CISA started enriching CVEs itself…

LLMs

No LLMs aren’t about to “autonomously” hack your company

Welcome to your latest episode of “is this exciting or is this mild AI exaggeration™"

cybersecurity

CISO-CEO communication gaps continue to undermine cybersecurity

Qualys CEO says disconnect can hinder effective security strategies.

See all

"We're becoming scapegoats": How have CISOs responded to SEC cyber risk disclosure rules?

SolarWinds and its CISO not off the hook over “materially misleading” security statement

CEOs and CIOs need to start accepting “red” security dashboards. Two CISOs explain why...

Feds to CIOs: Actively ask your vendors if they’ve done a SQLi audit...

Flooded airports, DORA, and IT-security siloes: Cohesity's Mark Molyneux on cyber-resilience

The Big Interview: BAE Systems CISO Mary Haigh

CISCO names former Palo Alto Networks CTO as new CISO in key region

How CISOs can make sure a cyber insurance claim pays out

Turf wars? NIST to fix NVD backlog by September – insists it’s right agency to run vulnerability database

Microsoft unleashes new Deputy CISOs, will tie leadership compensation to security

No LLMs aren’t about to “autonomously” hack your company

CISO-CEO communication gaps continue to undermine cybersecurity