137 
Your Next Move: Chief Information Security Officer
Association of Information Technology Professional
SEPTEMBER 9, 2020
This article details the necessary experience and education needed for a career as a chief information security officer
Information Security Related Topics 
10 Tips for Maintaining Information Security During Layoffs
CTOvision
JUNE 3, 2020
Read Joan Goodchild list 10 information security tips for companies during layoffs on Dark Reading: Business disruption and the financial toll brought on by the COVID-19 has forced many companies, […].
Join 75,000+
Insiders
Sign Up for our Newsletter
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
How to implement mindful information security practices
Tech Republic Security
JANUARY 8, 2021
Mindfulness is all about being aware, so why not incorporate that in your cybersecurity practices
Information Security: Four Ways to Prepare for Cyber Crises
CEB IT
DECEMBER 13, 2016
Preventing confidential information leaking into the wrong hands has become high priority for every big company in the past decade. Information “breaches” have never been more costly to companies, or difficult to prevent. Information security staff play a critical role in resolving all these problems. Centrally documenting Information Security’s tribal knowledge helps everyone access important knowledge quickly.
Information Security: What You Should Know About Agile, DevOps, and Continuous Delivery
CEB IT
AUGUST 8, 2017
Information security teams, who themselves are no strangers to a rapidly changing work environment , are under pressure to ensure that all this activity doesn’t result in important confidential data ( itself more valuable than it’s ever been ) leaking out of the company – either from carelessness or criminal intent. 10 Ways Digitalization is Upending Information Security. unfulfilled security requirements) in the past twelve months.
How information security professionals can help business understand cyber risk
Computer Weekly
JANUARY 17, 2017
Information security is continually moving up business and board agendas, but information security professionals find it challenging to help business leaders to understand fully the cyber risks across increasingly digital businesses
Information Security: The 8 Types of Risk Assessment You Should Know About
CEB IT
APRIL 24, 2017
For information security teams who are trying to impose order on a huge and complex new risk category , it’s imperative that their colleagues understand the importance of helping with the “risk assessment” they are trying to conduct, and in complying with the results of that assessment. Blog Corporate Data and Information Security Customer Data and Information Security Information Risk Information Technology
The 6 Reasons Employees are Lax about Information Security
CEB IT
MAY 31, 2017
Information security teams can spend all the money in their budget on fancy technology but it’s for naught if employees don’t use it. Unsurprisingly then, given the amount of money currently being spent by firms in keeping their data and their systems secure , information security teams have almost doubled their spending on employee awareness in the past three years, from $1,597 per 1000 IT users in 2013 to $3,086 per 1000 IT users in 2016 , according to CEB data.
Information security set for steep trajectory, says (ISC)2
Computer Weekly
OCTOBER 27, 2016
By helping to create a thriving, diverse and open information security community, (ISC)2 hopes to ensure a steep rise for the profession
10 New Information Security Roles for the Digitization Era
CEB IT
APRIL 17, 2017
High demand and a limited pool of people with the right skills and experience make information security staffing a perennial challenge. Further complicating things is the fact that information security teams have not yet adapted to their changing role in digitizing companies. Digitization requires security staff to play a more diverse range of roles to meet a wider spectrum of demand from the rest of the firm. Product security specialists/managers.
Creating a Culture of Information Security
Data Center Knowledge
OCTOBER 18, 2016
Organizations need to start thinking about information security as an element that enables businesses, facilitating increased competitive advantage that allows them to manage risk and protect all of the dollars that have been spent on creating a brand. This is the first step in securing a business.
Brexit: Information security professionals not too concerned
Computer Weekly
JUNE 28, 2016
Brexit will present some cyber security challenges – but it will be largely business as usual, say information security professionals
The Small Business Guide to Information Security
Galido
FEBRUARY 25, 2020
Information Technology Blog - - The Small Business Guide to Information Security - Information Technology Blog. Information security is a major issue in the business world, and security breaches cost businesses millions of dollars per year. In this article, we’re going to show you the exact steps you should take to layout an information security policy and plan of action for your small business. IT Security
CESG issues challenge to information security professionals
Computer Weekly
JUNE 22, 2016
CESG technical director Jonathan Lawrence tells The Cyber Security Summit that information security professionals need to deliver security controls that help business users achieve their goals securely
Information security needs to cast recruitment net wider, says panel
Computer Weekly
OCTOBER 19, 2016
Companies struggling to fill info sec roles should focus on finding people who can do what they need, not on qualifications, according to a security industry panel
Cabinet Office role in information security in government not clear
Computer Weekly
SEPTEMBER 15, 2016
The UK government has work to do to reduce complexity of security policies, according to the NAO
Getting started with a career in Cyber Security and Information Security
Doctor Chaos
JANUARY 1, 2017
The Information Security Profession – Where do I Start? I am often asked by individuals to provide advice or guidance on how to get started in the field of information security. Many college students tell me they want to be a hacker, an IT systems penetration tester, or other type of cyber security professional. Cyber InfoSec education infosec security awareness tools training
3 Ways to Protect Firms’ Information Security as they Digitize
CEB IT
AUGUST 29, 2016
The way companies create, sell, and market products, and run the operations to do so, is increasingly based on the use of technology and digital information (see chart 1), and this trend of digitization will only continue more quickly across the next five years. And digitization, fueled by business-led IT (line managers initiating and funding their own technology projects), places untenable pressure on the way that IT information security teams work.
IT Infrastructure: 3 Steps to Respond to Today’s Information Security Concerns
CEB IT
MAY 23, 2017
The plethora of recent high-profile breaches , and the funding and attention lavished on information security teams , have forced many IT infrastructure groups – those that are responsible for the company’s hardware, software, networks, data centers, and so on – to reprioritize their strategic plans and focus on information risk management. In fact, the security group is the only part of the infrastructure function where staffing levels are increasing.
Information security key to digital era business models
Computer Weekly
APRIL 21, 2017
Security will become increasingly important as industries seek to collaborate and use each other’s capabilities to enable new business models, with the banking sector leading the way
Interview: Nick Bleech, head of information security, Travis Perkins
Computer Weekly
MAY 24, 2017
Last year Travis Perkins implemented Splunk to help it to respond more quickly to security threats. Now, the business is looking into machine learning and a single customer view
Information Security Budgets: More Money and More Staff, But Growth Finally Slowing
CEB IT
FEBRUARY 8, 2017
Information security functions have become far more important to their companies in the past decade, and that’s reflected in how the resources they’re allocated has grown and grown. Overall, there are a few changes that information security teams should expect in the coming year; the slide below has highlights. Security Staffing and Budget Increases. Security budgets grew an average of 16% in 2016 but are poised to only grow 9% in 2017.
Security Think Tank: Information security professionals have key role in GDPR compliance
Computer Weekly
JUNE 6, 2016
What is the role of information security professionals in helping organisations to ensure they are compliant with the EU’s General Data Protection Regulation (GDPR) by 25 May 2018
Red Owl Analytics: Enabling information security and compliance teams to proactively tackle insider risk
CTOvision
MAY 4, 2015
Red Owl Analytics is a highly regarded provider of a software solution that enables security and compliance teams to proactively tackle their most pressing problem-- insider risk. Their enterprises are awash in data, insider-related security breaches have become a constant, and regulators continue to demand better oversight and surveillance. Guy finished his Army career as a special assistant to the Director of the National Security Agency.
Is Information Security the Right Profession for Me?
Linux Academy
FEBRUARY 5, 2019
Wondering if information security is the right profession for you? I’ve been working in information security for many years and have had the opportunity to fill a variety of roles. In this post, I’ll fill you in about some of the available jobs in information security and what it takes to succeed in each one. First off, there are many different jobs within information security. Security Analyst (Blue Teamer).
9 biggest information security threats through 2019
Network World
MARCH 28, 2017
The information security threat landscape is constantly evolving. To help you navigate the terrain, each year the Information Security Forum (ISF) — a nonprofit association that researches and analyzes security and risk management issues on behalf of its members — puts out its Threat Horizon report to provide members with a forward-looking view of the biggest security threats over a two-year period.
4 information security threats that will dominate 2017
Network World
DECEMBER 30, 2016
Looking ahead to 2017, the Information Security Forum (ISF) , a global, independent information security body that focuses on cyber security and information risk management, forecasts businesses will face four key global security threats in 2017. As with previous years, 2016 saw no shortage of data breaches.
2015 National Chief Information Security Officer Survey
Cloud Musings
FEBRUARY 4, 2015
Recent cases have highlighted identity theft, the loss of personal financial data, and the disclosure of sensitive national security information. The executive in the hot seat for preventing these failures is the Chief Information Security Officer (CISO). Commissioned by the National Cybersecurity Institute at Excelsior College , this data will be used to develop and publish actionable information for use by the day to day cybersecurity professionals.
Grab two essential IT certifications on networking, information security and cybersecurity
TechSpot
NOVEMBER 3, 2020
This comprehensive 2-part bundle will help you ace the exams for the Systems Security Certified Practitioner (SSCP) and Certified Information Systems Security Professional (CISSP) certifications -- all through training that focuses on real-world examples
Obama Administration names first-ever federal Chief Information Security Officer
Tech Republic Security
SEPTEMBER 9, 2016
The White House recently appointed retired Brigadier General Gregory J. Touhill as the US CISO, to bolster cybersecurity efforts in government
Information Risk: Balancing the Good and Bad of Data Analytics
CEB IT
SEPTEMBER 14, 2017
The former has opened up companies to new security risks while the latter has left some customers feeling uneasy about the privacy of their data. Carry out due diligence on vendors’ supply chains : Companies are now increasingly integrated into complex third-party ecosystems, but not conducting the appropriate checks to ensure their security. Poor security standards across an ecosystem can therefore have trickle down effects to your organization.
IDG Contributor Network: Cyber crime as a service forces changes in information security
Network World
APRIL 26, 2017
But for organizations still maturing their defensive measures, here’s what the transformation of cyber crime into an industry means for how you approach information security. Cyber crime has been commercialized. Infecting computers with ransomware or using an advanced persistent threat to pilfer intellectual property no longer requires deep technical knowledge.
The 15 best cities for information security pay
Network World
AUGUST 4, 2016
High-flying salaries in some unexpected places Image by Greg Gjerdingen Before moving to this top city for InfoSec pay, you might want to read the latest John Sanford novel, brace for a bitter cold winter and develop a taste for tater tot hot dish. Yes, that's right, if you want to get the most bang for your InfoSec salary buck, a move to Minneapolis might be in your future. To read this article in full or to leave a comment, please click here (Insider Story
NIST's Cybersecurity Framework offers small businesses a vital information security toolset
Tech Republic Security
DECEMBER 7, 2016
Small businesses run lean, and bad guys know that means security may be less than adequate. NIST researchers share ways that small businesses can protect their information
IDG Contributor Network: 3 new information security jobs for the digital enterprise
Network World
FEBRUARY 15, 2017
The responsibilities of information security are rapidly changing as enterprises digitize. In this new context, information security is expected to take a strategic role by helping business leaders understand the security implications of their digital strategies; support a quicker pace of technology exploitation and experimentation; and govern a larger, more varied project portfolio.
What it takes to become a chief information security officer (CISO)
Network World
APRIL 11, 2017
Career Tracker: What it takes to be a chief information security officer. Jeff Foltz did not set out to be an information security professional. download. He arrived at his current role as CISO at Fidelity National Financial by making the most of a series of opportunities and constantly building his skillset. His degree in psychology and philosophy would also prove more useful in his CISO job than one might think.
IDG Contributor Network: How to build a thriving information security function despite the talent shortage
ComputerWorld IT Management
JUNE 9, 2016
It seems that the industry has reached a nearly unanimous conclusion about a key essential for tight information security -- people. You don't have to look at online job postings for long to recognize that most of the posted IT jobs relate to information security, with employers attempting to fill many such positions to shore up their cybersecurity posture. As an example, following a major security breach at the U.S.
IDG Contributor Network: To improve information security, enterprises and government must share information
Network World
MARCH 1, 2017
Information security is forever weaved into our daily lives. From the massive data breaches impacting Target, Yahoo and Anthem to IoT-powered DDoS attacks that take down substantial portions of the internet for extended periods of time, information security impacts everyone.
Information Risk: How to Manage the Company’s Demand for Your Services
CEB IT
MARCH 3, 2017
Information security teams face an unprecedented level of demand for their services right now. The strain on the time and resources of information security teams is understandable ( as Yahoo can attest ), and even though their companies are stumping up money, information security budget growth is slowing. Automating operations and governance activities offers the best chance to meet information security demands.
Information Risk: Third-Party Risk Management Is Failing
CEB IT
AUGUST 1, 2017
Information security teams are busier than they’ve ever been and, although they have been given more funds to cope, there is still a great need to prioritize and focus on the risks that are most likely to harm their business. Traditionally, information security teams have administered risk assessments and made decisions about the risk each third party posed based on predetermined levels, but this is no longer sufficient for the four reasons below.
Information Risk: Three Lessons for CISOs from Yahoo’s Rough Six Months
CEB IT
DECEMBER 28, 2016
But for now, chief information security officers (CISOs) should take three core lessons on board. The CISO’s role in M&A should expand : When it comes to M&A, most CISOs tend to spend their time trying to get a head start on post-deal integration, revise the information security team’s strategic plan, or assess the acquisition target’s information security practices. Update Information Security’s strategy to support digitization efforts.
Obama creates new Federal Chief Information Security Officer Post
Tech Republic Security
FEBRUARY 7, 2017
President Obama announced Thursday the creation of a new federal CISO position. Find out who was appointed and what they'll be doing
Information Risk: 3 Threat Management Trends to Keep an Eye On
CEB IT
JUNE 12, 2017
Although the threat management tools and techniques available to chief information security officers (CISOs) have also improved, this still leaves much to do. Information security teams, however, collect intelligence on their adversaries in a series of “silos,” typically focusing solely on technical threat intelligence. However, by the time information security teams respond, attackers have most likely already caused a lot of damage.
Let's personalize your content