Security & Business Resilience - Articles - Page 227

CISA, NASCAR, Talladega Superspeedway and local partners conduct joint exercise to keep GEICO 500 fans safe

April 5, 2021

The U.S. Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA), NASCAR, the Talladega Superspeedway, state and local first responders, law enforcement officials, and local businesses recently held a tabletop exercise to test response plans around hypothetical public safety incidents on the day of the GEICO 500.

Profiles in Excellence

Long-term commitment to security

Maggie Shein

April 5, 2021

Take a look at CISO of DoorDash Justin Grudzien’s career in data privacy and security from building security teams from the ground up at Orbitz to solidifying best practices at DoorDash. Security talks to Grudzien about how he views security roles within the enterprise, how to avoid burnout, and how other security leaders can earn a seat at the C-Suite table.

What you need to know about the deep and dark web

Alberto Casares

April 5, 2021

Billions of searches take place on the surface web every day. Synonymous with Google, this part of the web is indexed by search engines. Try searching your name and you’ll likely be met with thousands if not millions of results, a few of which are familiar to you – your social media profiles, bio on your employer’s website, mentions in the news. The surface, or “clear” web, is only the tip of the iceberg, as vast as it may seem. In fact, it makes up only 4% of the entire World Wide Web. A much larger chunk of the web, the deep web, lies beneath the surface and is not indexed by search engines – but it is still just as important for security professionals to monitor.

A vulnerable internet needs global standards and security

Mike MacDonald

April 2, 2021

For a loosely connected, globally distributed system with no central governing authority, the Internet is remarkably dependable. Robust enough to cope with the unexpected, it features back-up capabilities ranging from redundant network paths to virtual servers that compensate for physical hardware failures.

Managers expect health safety and security protocols to remain in place post COVID-19

Management expects health, safety and security protocols to stay in place after COVID-19

April 1, 2021

COVID-19 has brought countless changes, large and small, to the global workplace. But as time continues forward, the question becomes, what will the economy's "new normal" look like? Managers in the U.S. expect vaccinations to be required and health, safety and security protocols to remain in place post COVID-19.

Lone worker protection: A commitment to duty of care and security

Organizations in charge of protecting lone workers must fulfill their duty of care, taking all steps reasonably possible to ensure their safety.

Maria Henriquez

April 1, 2021

The impact of the COVID-19 pandemic has been widespread and unprecedented, creating more lone workers than ever. Organizations in charge of protecting lone workers must fulfill their duty of care, taking all steps reasonably possible to ensure the safety, well-being and physical and mental health of their employees, or else, risk leaving critical employees unprotected and at risk.

Career Intelligence

Positive brand reputation will advance your security career

Have you considered what you can do to help build a positive brand reputation for yourself and your organization?

Jerry J. Brennan

Joanne R. Pollock

April 1, 2021

We have previously talked about many aspects of how to advance your security career. This includes having a thorough understanding of both soft and operational skills sought after by organizations. The ability to execute on these attributes is valued when companies look for top talent for senior level security roles.

Leadership & Management

A CSO and a sea horse walk into a bar…

Michael Gips

April 1, 2021

Last month this column looked at how humor can enhance leadership. Inspired by the book "Plato and a Platypus Walk Into a Bar: Understanding Philosophy Through Jokes," this month’s column explains security leadership through jokes.

When security and resiliency converge: A CSO’s perspective on how security organizations can thrive

John Scimone

April 1, 2021

Implementing a converged security organization is perhaps one of the most resourceful and beneficial business decisions an organization can make when seeking to enhance security risk management. In this era of heightened consequences and sophisticated security threats, the need for integration between siloed security and risk management teams is imperative. The need for collaboration between those two teams and the business is equally imperative. Let’s look at five more specific benefits:

Identity and securing the remote work perimeter

Bill Mrochek

April 1, 2021

Securing diverse and distributed IT environments starts with the identity plane. Modern and evolving security threats are best prevented by securing identity through many layers relying on a Zero Trust model. Zero Trust, by which I mean “trust nothing, verify everything,” can serve as a foundation for the evolution of a modern security perimeter, one virtually drawn around each individual user, from anywhere they log on. By following Zero Trust principles and establishing user identity across devices, programs, and networks, modern enterprises can pursue a security program that is adaptive, contextual, and robust enough to defend against modern threats.