Security Leadership

Security Leadership news, information, and how-to advice

facebook mobile


9 common security awareness mistakes (and how to fix them)

Most of the security mistakes that workers make fall into the "careless or clueless" category. Better security awareness could cut the risk to most organizations by 45% to 70%. But that takes effective, regular training.

law books on consumer protection 147082370

Cyberthreat sharing must include strong privacy protections, advocates say

Lawmakers will push for information-sharing legislation, but some groups want them to address past privacy concerns

121615 chrome ex primary

New Chrome extension spots unencrypted tracking

TrackerSSL is aimed at alerting websites of insecure tracking via Twitter

00 title

7 ideas for security leaders

Seven inspiring ideas for small changes that lead to big improvements in both security posture and leadership in the next few weeks.

Whetstone Mountain redux by John Holm (cc by 2.0)

Securing Colorado

Winners of the 2015 CSO50 award, Jonathan Trull and Deborah Blyth describe the challenges of securing the state of Colorado and the award-winning project that is currently in its second phase of implementation.


Building balanced security support

A CISO shares some thoughts on maturing support for a security program. Moving away from incident focused urgent fixes to a more sustainable program based on helping stakeholders deliver their projects securely.

Intel servers data center

Twenty-eight percent of security spending wasted on shelfware

The average organization spent $115 per user on security-related software last year, but $33 of it, or 28 percent, was underutilized or not used at all, according to a new report from Osterman Research

facebook app

Facebook says that outage was technical, not DDoS related

Late Monday evening, Facebook dropped offline after reporting an error message on its homepage. Immediately after, their image-sharing service Instagram went down, followed by Tinder. Three of the Web's hottest properties were...

Phishing with Benjamin

Deconstructing an IRS Phishing scam

Taxes. Avoiding them is illegal, and paying them is painful. Criminals know the type of stress the IRS can cause a taxpayer. They also know that most will immediately pay attention to something from the IRS. Perhaps not out of fear,...

sitting on cloud

Do executives think you are relevant to cloud security decisions?

Findings from a recent report suggest the need to make some shifts to stay relevant in executive and board-level conversations about security

measuer communications

IT’s security metrics and reporting problem: A communication failure

A new challenge for IT is to develop security metrics and reporting that effectively communicate the successes, failures and potential risks of a security program to business audiences in the enterprise.

President Obama at the State of the Union 2015

Post State of the Union, reaction to proposed legislation remains mixed

While most agree that it is generally a good thing that Congress and the Obama administration are prioritizing cybersecurity, those in the industry feel their efforts so far are a mixed bag of both good and bad.

two cents advice

When good security advice...isn't

Is there any piece of common security advice that you find you disagree with? Context can often change what we should be telling people about how to secure their data and machines

target on shirt

Why cybersecurity will suffer the same fate in 2015 as it did in 2014

CISOs continue to beg for financial table scraps and the scraps they do get are used to double down on existing technology. The same technology that is failing them now but with a new twist or new buzzwords describing really what they...

software patch stock image

Gap between perception and reality of cyberthreats widened in 2015

There is a widening gap between what security executives believe to be true and the reality of cyberthreats, according to the Cisco 2015 Annual Security Report released today.

privacy info protect ts

People are increasingly worried about privacy, say legal protections fall short

Technology has had a negative impact on privacy, said a majority of those questioned in a recent global survey

Spam: Earn $1,000,000

Are terrorists trying to spam you?

Over the weekend, news reports and blog posts about mathematician Michael Wertheimer, started to cause quite a stir. Wertheimer, who published a paper recently in the Notices of the American Mathematical Society, is said to have...

FBI circulating IP address released by Anonymous after CENTCOM incident

In a memo released to insiders and experts in the public sector, the FBI has asked for additional details on the CENTCOM social media compromise. The memo has a particular focus on IP addresses released by Anonymous shortly after the...

Load More