Michael Nadeau

Senior Editor

Michael Nadeau is a senior editor with CSO Online. He has been a publisher and editor of magazines, books, and knowledgebases that help companies get the most from their ERP systems.

7 unexpected ways GDPR and other privacy regulations make security harder

7 unexpected ways GDPR and other privacy regulations make security harder

The GDPR and other privacy regulations are creating new opportunities for cyber criminals and roadblocks for security teams, while in some cases putting personal data at greater risk.

Identity eats security: How identity management is driving security

Identity eats security: How identity management is driving security

New intelligent identity management systems are changing the way organizations authenticate users and devices, and they’re making identity the new security perimeter.

Security and new technology: How one company faced the unknown

Security and new technology: How one company faced the unknown

A move to a pure cloud strategy at the London Stock Exchange Group forced a new security mindset. Here's how the LSEG's CISO faced the challenge.

Ready for more secure authentication? Try these password alternatives and enhancements

Ready for more secure authentication? Try these password alternatives and enhancements

Password-only authentication is dead. Combine passwords with multifactor authentication, social login, biometrics, or risk-based authentication to better protect users and your reputation.

What is the New York Cybersecurity Regulation? What you need to do to comply

What is the New York Cybersecurity Regulation? What you need to do to comply

Officially called 23 NYCRR 500, this regulation requires financial services firms doing business in New York to have a full security risk assessment and plan.

Data and privacy breach notification plans: What you need to know

Data and privacy breach notification plans: What you need to know

Failure to report breaches within the rules of the many global data and privacy protection regulations can result in penalties. Planning ahead will help avoid that.

11 ransomware trends for 2018

11 ransomware trends for 2018

Ransomware creators are getting more sophisticated in how they infect systems, avoid detection, and foil decryption efforts.

Are you letting GDPR’s privacy rules trump security?

Are you letting GDPR’s privacy rules trump security?

An extreme approach to protecting privacy can actually make personal data less safe. Don’t overreact.

How to write a CISO job description

How to write a CISO job description

The chief information security officer has a big, mission critical job. Make sure you spell out the CISO's duties and expectations for the role.

Our top 7 cyber security predictions for 2018

Our top 7 cyber security predictions for 2018

Let’s face it: 2017 was a terrible year for cyber security with more phishing scams, ransomware, state-sponsored attacks, and new attack vectors. Will 2018 be better?

How to survive the worsening cyber threat landscape

How to survive the worsening cyber threat landscape

Industry and government cybersecurity experts offer advice for protecting business assets and reputation in an increasingly dangerous cyber threat landscape.

How to secure the IIoT: A Q&A with GE's CISO

How to secure the IIoT: A Q&A with GE's CISO

Manufacturing giant GE takes a holistic approach to industrial internet of things (IIoT) security that integrates enterprise and product security. CISO Nasrin Rezai explains why this is important and how it works.

Future cyber security threats and challenges: Are you ready for what's coming?

Future cyber security threats and challenges: Are you ready for what's coming?

Among the the alarming trends highlighted in a new study from The Internet Society (ISOC) are the rise of state-sponsored cyber attacks as the internet is becoming increasingly intertwined with national security and the creation of...

Rapid7 CEO: Rethink IT and security organizational structures

Rapid7 CEO: Rethink IT and security organizational structures

Corey Thomas sees siloed operations as a root cause of security vulnerabilities and a barrier to innovation and better user experience.

Xerox CISO: How business should prepare for the future security threat landscape

Xerox CISO: How business should prepare for the future security threat landscape

Dr. Alissa Johnson promotes better information sharing, strong partnerships and a cognitive approach where technology can learn, analyze and execute.

Cyber security jobs: Job descriptions, requirements and salaries for today’s hottest roles

Cyber security jobs: Job descriptions, requirements and salaries for today’s hottest roles

What cyber security jobs are available and what training do you need? These resources and job descriptions will help aspiring cyber security professionals identify the best roles for them and allow employers to better communicate...

State of Cybercrime 2017: Security events decline, but not the impact

State of Cybercrime 2017: Security events decline, but not the impact

Even as the average number of security events dropped year-over-year, events that resulted in a loss or damage rose, and fewer companies reported no losses.

What are the GDPR requirements?

What are the GDPR requirements?

Here’s how the General Data Protection Regulation (GDPR) will change how companies process, store and secure EU customer data.

New CISO Chris McDaniels to help drive Mosaic451’s cybersecurity practice

New CISO Chris McDaniels to help drive Mosaic451’s cybersecurity practice

The US Air Force veteran brings deep experience in cyber defense and emergency response.

Veristor hires Jackie Groark as director, security/CISO

Veristor hires Jackie Groark as director, security/CISO

Groark, an expert in threat detection and intelligence, will lead the company’s security practice.

Load More