In light of a regulatory landscape that is becoming more complex and costly, boards need better insight into the organization's risk exposure and its ability to handle cybersecurity risks.
Here's what you need to know about organizational security culture — and how to plan for and inspire a better one.
At RSAC 2019, Sridhar Muppidi and Devin Somppi implored vendors to "start looking at security as a team sport" and redouble their efforts to reduce complexity in their security architecture.
IT and security professionals must be able to talk business to the C-suite and the board of directors, especially if new security products need to be added into the organization's portfolio.
CISOs around the world complain that their board won't allocate the necessary cybersecurity investment to keep the company safe. Part of the problem might be how we communicate the value of security.
Organizations adopting NIST 800-53 should understand how upcoming changes will affect senior leadership accountability, data privacy and third-party assessments.
The threat landscape is growing more perilous each day and our white hats need all the help they can get. The problem is that many organizations are struggling to close the cybersecurity skills gap.
With the realization that "we're all in this together," boards want to learn how their organizations are collaborating with the rest of the ecosystem in planning and testing cyber resilience.
What qualities do the most elite incident response teams possess? The IBM X-Force IRIS team shares its lessons from the front line.
At RSAC 2019, IBM Security General Manager Mary O'Brien noted that while the industry has made progress toward improving the experience of women in security, "a little better isn't going to cut it."