Security Education & Training

RSS

The Securities and Exchange Commission (SEC) has proposed changes to standardize public companies’ disclosures regarding cybersecurity risk management, strategy, governance and incident reporting.

CISA's Cyber Storm exercise simulates a significant cybersecurity incident impacting critical infrastructure to improve risk management, incident response planning, information sharing and cyber response activities. 

 There are four security protocols to consider when reviewing an enterprise's public cloud risk profile.

Don’t get too caught up in the excitement of March Madness. Cybercriminals will use social engineering, phishing, malware, ransomware and other cybersecurity strategies to wreak havoc. Boost security defenses now.

Let’s look at lateral movement and why privileged access management is a key component of a cybersecurity and defense-in-depth strategy.

Mike Gips, Security columnist, is named a regional finalist in the 2022 Azbee Awards, presented by the American Society of Business Publication Editors based on journalism, design & editorial excellence!

Get ready: Security magazine's March 2022 issue is here! Inside, find the 2022 Top Cybersecurity Leaders special report, stories on COVID-19 security lessons learned, NGO and travel risk management, and much more!

Security leaders, employees and users all play a part in cybersecurity success. Implementing employee awareness programs and user education initiatives can help bridge an organization’s security gaps.

Josh Yavor, Chief Information Security Officer (CISO) at Tessian, talks about the “leap-of-faith” decision he made four years ago that helped address his own feelings of burnout, and how CISOs can lead by example, setting boundaries and accountability at the C-suite level.

China-backed hacker group APT41 has breached six U.S. state governments, two of which were exploited by the zero-day vulnerability Log4Shell.