Any comprehensive approach to cybersecurity must include a detailed third-party risk assessment, covering an assessment of how partners view governance, risk, and compliance within their own organizations.
Security leaders should focus on risk management principles when tackling software supply chain security, according to the Center for Internet Security SVP and Chief Evangelist Tony Sager.
Application security remains a wide attack vector for cybercriminals, but cybersecurity leaders can use tools to better detect vulnerabilities in their applications and software supply chains.
Among ransomware, software supply chain attacks and data breaches, a Blumira report found that identity-based attacks are the top threat organizations faced in 2021.
Low-code software doesn’t need to mean higher security risk. It simply means more education, rigorous app testing, and appropriate security policies around citizen development.
On May 12, 2021, President Biden signed the Executive Order on Improving the Nation's Cybersecurity, catalyzing a shift in cybersecurity culture and initiatives across federal agencies and their vendors. A report from MeriTalk analyzed how the EO has affected U.S. cybersecurity.
Securing the software supply chain is a monumental task for cybersecurity leaders. A survey from Secure Code Warrior investigated how application developers view security in their work.
Four months after the cybersecurity community mobilized to protect organizations from the Log4j vulnerability, security leaders can reflect on the lessons learned from the large-scale cyber incident.
Cybersecurity and Infrastructure Security Agency (CISA) Executive Assistant Director for Cybersecurity Eric Goldstein outlined CISA's top cyber defense priorities, including defending against cyberattacks, zero trust and more.
