Cyber defense is not IT’s job alone, CISA CTO says

While tech executives must provide critical tools and procedures to lower cyber risk, the whole organization is responsible for fending off attackers.

By Roberto Torres • Oct. 19, 2022

Uber ex-CSO verdict raises thorny issues of cyber governance and transparency

The former chief security officer of the ride-sharing firm is seen by many as a scapegoat for an unsupervised and unaccountable corporate culture.

By David Jones • Oct. 19, 2022

Explore the Trendline➔

CISO Strategy

Corporate stakeholders want to better understand the risk calculus of their technology stacks, answering the lingering question: Are we a target? 

By Cybersecurity Dive staff

Struggling to find cyber pros? Look to your network admins

Network knowledge and skills are central to cyber. Certification programs provide a direct route from systems to security.

By Matt Ashare • Oct. 18, 2022

Tenable’s CIO pushes resource optimization as company pursues $1B in revenue

Technology veteran Patricia Grant is joining the cybersecurity company amid sustained industry growth. Her challenge now is to help Tenable scale.

By Lindsey Wilkinson • Oct. 13, 2022

CISOs, corporate boards in wide disagreement on cyber resilience

A study backed by researchers from MIT shows corporate boards are more focused on cyber risk, but are out of alignment with CISOs on key issues. 

By David Jones • Oct. 10, 2022

Incident responders report alarming rates of mental strain

Ransomware, long work days and responsibilities stretched across multiple overlapping incidents all contribute to stress, according to an IBM Security study.

By Matt Kapko • Oct. 7, 2022

The modern CISO: Today’s top cybersecurity concerns and what comes next

CISOs are up against talent shortages and retention concerns amid an increasingly sophisticated threat landscape.

By Sue Poremba • Sept. 7, 2022

Succession planning takes center stage in the fight to retain security talent

To reduce attrition, security and tech leaders must provide a clear path for advancement, not just for managers but for all members of the team.

By Jess Burn • Aug. 24, 2022

Risk of cyberattack emerges as top concern of US executives

A PwC study shows cyber risk is a top concern among entire C-suite and corporate boards as companies are spending additional funds to boost resilience.

By David Jones • Aug. 19, 2022

Google Cloud’s CISO is a short-term cyber pessimist, but a long-term optimist

Respite from seemingly omnipresent threats is hard to come by, but Phil Venables takes comfort in wins, not losses.

By Matt Kapko • Aug. 18, 2022

CISO salaries balloon, likely spurred by demand

Tenure matters, but not as you might suspect. Median total cash compensation dropped for CISOs in their roles at least five years, Heidrick & Struggles found. 

By Naomi Eide • Aug. 16, 2022

US falters while ‘cybercriminals have been eating our lunch,’ ex-CISA chief Krebs says

A dizzying array of agencies and disorganized efforts bolsters Chris Krebs’ call for a cybersecurity governance overhaul.

By Matt Kapko • Aug. 12, 2022

US must take a lead role in cyber diplomacy, State Dept. nominee says

Nathaniel Fick told lawmakers the U.S. should promote international cyber norms to protect national security from authoritarian threats. 

By David Jones • Aug. 4, 2022

Tips for translating cyber risk into board-friendly language

Just because boards are more aware of the rise in cyberattacks does not mean they understand how digital technology and cybersecurity translate into business risk.

By Lucia Milică • Aug. 1, 2022

Relentless vulnerabilities and patches induce cybersecurity burnout

Cybersecurity professionals are confronting a chronic vulnerability-patch cycle and the situation is getting worse.

By Matt Kapko • July 26, 2022

Where 5 programs are investing to close cyber skills gap

In line with a White House push to close the cyber skills gap, technology firms, nonprofits and other organizations have launched a range of programs to develop a new generation of workers.

By David Jones • July 21, 2022

As cyber talent demand heats up, hiring managers should shift expectations

Companies trying to fill cybersecurity roles need to stop looking for unicorns and expand their search to qualified, but often overlooked, job candidates.  

By Brian Eastwood • July 12, 2022

Cybersecurity expertise creeps onto Fortune 500 boards

Companies are trusting technology experts to advise on cybersecurity and regulatory pressures from the board’s perspective.

By Barbara DeLollis • July 8, 2022

CISO priorities for the second half of 2022

Security executives from Zoom, NS1 and Oomnitza shared their security priorities for the rest of 2022, with a special emphasis on mastering the basics. 

By Sue Poremba • July 5, 2022

Is your remote IT job candidate legit?

Organizations are seeing a rise in deepfakes and stolen identities during the job application process, the FBI said.

By Naomi Eide • June 29, 2022

New York names first chief cyber officer

Colin Ahern, the former New York City Cyber Command official, will oversee the state’s Joint Security Operations Center.

By David Jones • June 28, 2022

Juneteenth beyond a day off: How to celebrate year-round

Two Black business leaders make the case for diverse hiring as the ultimate celebration of African American slavery’s abolition.

By Caroline Colvin • June 17, 2022

What's holding women back from C-suite roles in tech?

Leaders like MassMutual CISO Ariel Weintraub stand out in an industry where women hold less than 20% of the top tech jobs. Alongside other technical execs, she's tackling demographic change on a global and company level.

By Barbara DeLollis • May 23, 2022

Security professionals are burned out. Here are 5 ways to help them.

Addressing the causes of burnout requires a top-down approach that better aligns security teams with the rest of the business.

By Brian Eastwood • April 18, 2022

Now is the time to break gender bias in cybersecurity

A hidden epidemic that has hindered women’s ability to continue working at pre-pandemic levels is expected to impact infosec.

By Jinan Budge • April 12, 2022