To alleviate the cybersecurity hiring gap, CISOs should look to tap new pools of talent in adjacent industries and help new hires develop their security skills through thorough, regular training.
When it comes to cybersecurity reporting, CISOs must communicate security risks, priorities and initiatives in the language of business to earn the attention and respect of board directors.
Many people are intimidated by the thought of security careers. Why? They incorrectly believe all security jobs require technical expertise, as well as extensive academic training and certifications.
Human error, credential misuse and disgruntled employees aren't the most common threats security leaders have to face — but the complexities of these incidents make insider threats the stuff of CISO nightmares.
On May 15, over 100 security leaders from across the U.K. and Europe met to talk about the future of cybersecurity and promote collaboration to stay one step ahead of evolving cyberthreats.
Although overall job satisfaction is up in cybersecurity, many security professionals reported that they're not content with their current salary, according to a recent survey.
Although new research revealed that the state of cyber resilience is improving — especially regarding executive engagement — there is still room for improvement.
The refusal of top leadership to fund security initiatives often translates to explicit, willful risk acceptance.
A failure of imagination could cause business leaders fail to account for predictable cyber risks due to a misperception of the company's incident response capabilities and cyber resilience posture.
Lessons From the Marsh ‘Global Cyber Risk Perception Survey’: Disconnects Persist Despite Increased Executive Involvement
Despite in increased involvement of various stakeholders in risk management, a recent risk perception survey revealed a persistent disconnect between executives and the security function.