Leadership and careers

Peter Macdiarmid via Getty Images

What happens if threat data isn't shared?

Threats only have meaning if companies decide they do; if an organization does not deem a threat serious enough, they can go unshared.
By Samantha Schwartz • April 30, 2021
Tomohiro Ohsumi via Getty Images

Cybersecurity careers: Makeshift beginnings, technical pursuits

As the field becomes more visible, thanks to large cyberattacks and breaches invading mainstream media, more curious minds will seek employment.
By Samantha Schwartz • April 28, 2021
Explore the Trendline➔

Danielle Ternes for CIO Dive

Trendline
The Cybersecurity Dive Outlook on 2021

Last year, what security experts long cautioned could happen came to fruition — a supply chain attack unleashed a wave of compromises. Now, stakeholders have to ask, what technology can businesses trust?
By Cybersecurity Dive staff
David Ramos via Getty Images

Who is making enterprise security decisions?

A leader should sign off on security systems and protocols. However, protection is weaker if decisions bottleneck with one person.
By Sue Poremba • April 26, 2021
zefart/iStock/Getty via Getty Images

Global supply chains grapple with international cyberpowers

Cybersecurity intertwines industry with geopolitics. Governments will have to grapple with how to balance national security, business continuity and intellectual property protection.
By Samantha Schwartz • April 26, 2021
Brian Tucker/Cybersecurity Dive

Security officials want continuity, accountability from national cyber director

The role will form "the fabric" between the private and public sectors and act as liaison between Congress and the White House.
By Samantha Schwartz • April 23, 2021
Adeline Kon for Cybersecurity Dive/Cybersecurity Dive

Deep Dive
Marijuana is becoming more accepted. Will cybersecurity employers play along?

As more states legalize recreational use, employers in the public and private sector may need to change how they hire for cybersecurity.
By Samantha Schwartz • April 20, 2021
Permission granted by Mondelez International

Mondelez revamped boring security training

Anything security does to agitate users, in terms of their accessibility or ease of use, will harden resistance to training.
By Samantha Schwartz • April 15, 2021
Retrieved from Official White House Photo by Adam Schultz.

White House announces CISA, national cyber directors

The appointments coincide with the discretionary funding request the White House submitted on Friday.
By Samantha Schwartz • April 12, 2021
Photo by Mimi Thian on Unsplash

How to support overworked, understaffed security operations

Strapped for resources, companies can either have their security practitioners wear too many hats, or outsource the responsibilities.
By Samantha Schwartz • April 12, 2021
The image by Андрей Бобровский is licensed under CC BY 3.0

SolarWinds compromise leaves Senate questioning agency cyber defenses

Existing cyber defense programs fell short in detecting and defending U.S. agencies, a shortcoming that exacerbated SolarWinds fallout.
By Samantha Schwartz • March 19, 2021
Information sharing works, but a key obstacle awaits: reluctance

The private sector owns the majority of the attack surface. Brand-name IT and security companies have the ability, and a degree of responsibility, to contribute their expertise to national defense.
By Samantha Schwartz • March 18, 2021
Thai Phi Le/Cybersecurity Dive

Federal $1.9 trillion relief bill clears path for more security, modernization funds

The appropriations in the law come as the federal government and private industry respond to two major hacks: SolarWinds and Microsoft Exchange.
By Samantha Schwartz • UPDATED: March 11, 2021 at 2:20 p.m.
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by ismagilov via Getty Images

63% of security professionals, execs concerned with SolarWinds hack, survey finds

Before companies overhaul the typical process for building and securing software, SOCs have to figure out if they were a collateral victim of a supply chain hack.
By Samantha Schwartz • March 09, 2021
Phil Roeder, via Flickr

White House prioritizes software security, assesses OT

"If you can't see a network quickly, you certainly don't have a prayer defending a network," said Deputy National Security Advisor Anne Neuberger.
By Samantha Schwartz • March 08, 2021
Calpine

What OT security experts want from their IT counterparts

While IT and OT have been converging for more than a decade, the culture of cybersecurity is stuck in a silo, limiting the abilities of OT security practitioners.
By Samantha Schwartz • March 05, 2021
damircudic via Getty Images

IT, security jobs in demand through 2029: report

Reliance on remote work will drive up employment in areas such as information security and software development, according to projections from the U.S. Bureau of Labor Statistics.
By Roberto Torres • Feb. 22, 2021
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by ismagilov via Getty Images

SolarWinds attack poses long-term threat of disruption, White House says

The SolarWinds hack compromised at least nine federal agencies and 100 private sector companies, said Deputy National Security Advisor Anne Neuberger in a briefing Wednesday.
By Samantha Schwartz • Feb. 18, 2021
Philipp Katzenberger for Unsplash

One-third of analysts ignore security alerts, survey finds

With an ever-increasing number of alerts, identifying what to ignore is an impossible mission without scalable technology.
By Samantha Schwartz • Feb. 16, 2021
Photo by Josh Appel on Unsplash

Are businesses underinvesting in cybersecurity?

The issue isn't how large of a cybersecurity investment an organization makes, but rather, if it is spending funds properly.
By Sue Poremba • Feb. 16, 2021
Phil Roeder, via Flickr

White House taps Neuberger to lead SolarWinds government response

The SolarWinds attack has opened a deeper conversation about the role of the federal government in coordinating cybersecurity policy and sharing intelligence with the private sector.
By David Jones • Feb. 11, 2021
Katie Malone/Cybersecurity Dive, data from https://www.whitehouse.gov/

Hidden messages, hacking tests entice tech talent

By creatively engaging prospective employees during the hiring process, some businesses successfully found the right fit.
By Katie Malone • Feb. 05, 2021
Naomi Eide

FireEye reports record revenue in first report since Red Team hack

The company's discovery of the SolarWinds attack has fueled additional customer demand, which should be reflected in deferred revenue during 2021.
By David Jones • Feb. 03, 2021
Brimg.net

CISOs at SMBs bogged down by small teams, budgets

To choose a new security solution, CISOs with small teams rely on an employee with existing experience with a technology, a Cynet report shows.
By Samantha Schwartz • Feb. 02, 2021
Philipp Katzenberger for Unsplash

Supply chain attacks could open up vendor competition, Moody's says

The continued proliferation of ransomware attacks could lead cyber insurers to reexamine coverage terms.
By David Jones • Feb. 02, 2021
Photo by Drew Beamer on Unsplash

How to translate threats and risk to C-suite

When communicating with the C-suite or shareholders, CISOs have to speak equal parts security and bottom line.
By Samantha Schwartz • Feb. 01, 2021