Derek Slater

Derek helped create and launch CSO in 2002, and served as Editor in Chief of the magazine and website from 2006 through 2013.

Intellectual property protection: 10 tips to keep IP safe

CIO Think Tank: Reinventing IT

CIO Think Tank: Reinventing IT

As companies accelerate out of pandemic disruption, how can IT meet increasing demands — and reap unprecedented benefits? In a series of virtual roundtables, dozens of IT leaders offered key insights about the road ahead.

7 new social engineering tactics threat actors are using now

7 new social engineering tactics threat actors are using now

Old tactics in new packages lead the list of current social engineering attacks. Experts provide real-world examples.

ERM: The basics

An introduction to ERM (Enterprise Risk Management) for security, IT and operational risk professionals. ISO and COSO frameworks; risk measurement and prioritization; mini-case studies and real-world ERM examples.

Getting the Board on board

For entertainment I troll several LinkedIn groups, including Enterprise Risk Management.

Recent risk discussions, here and there

First of all, if you missed COSO for CSOs , that's been our most focused ERM coverage in January on CSOonline.

Containerization and mobile threats

Is it simple? No. But containerization is a critical approach to BYOD security.

Potier named CISO at Parsons

Parsons, a $2.7B-revenue engineering and construction firm operating in 25 countries, has named Timothy Potier to the position of VP and Chief Information Security Officer.

Risk management in HBR (and whether that's a good thing)

In a recent digital edition of CSO I noted that Security is occasionally susceptible to two afflictions: 1. Hype. 2. Semantic arguments.

33 questions to ask about your company's security

Get out of the office, look around, and get a fresh perspective on protecting employees, assets, and data

Taking a risk on risk management

A law firm's new subsidiary bets on the growing interrelationships in operational risk

Information security risk: A conversation with Adam Shostack

The New School of Information Security folks have been pushing for more quantifiable risk management for years.

Load More