If a company says they are “unaware of any misuse of the confidential information (stolen during a breach)” does that give you a warm and fuzzy? Does this make the breach sound better? Or does it mean they haven’t seen the evidence… https://t.co/JCscVlX7AJ

I spoke at my first COSAC Security Conference 15 years ago, at the halfway point. David Lynas and John Sherwood with frequent presentations by Andy Clark (creators of the The SABSA Institute ), have led a group of experienced security leaders to discuss a… https://t.co/uxXjNqxu5H

Phishing still remains the predominant method of entry to systems. User awareness training is necessary, but not sufficient. Endpoint protection, anti-malware tools, email gateways limiting access, network segmentation, all must be… https://t.co/rIO3NFBvaw

It was a fun time moderating a panel on ChatGPT, Generative AI, and Machine learning from a CISO point of view, with a stellar panel of Shafia Z. Sarah Buerger CISSP @betts_wendy and Elizabeth Ogunti, CISA, CRISC, CISM . ISSA Chicago Chapter always does… https://t.co/4FClT9GPl1

It bogles the mind to think of how many attacks are placed on this infrastructure every day. Join us as Rob Duhart Jr. discusses the challenges and defense of a critical e-commerce platform, with lessons companies large and small can leverage.

Join us TODAY 6/14/23 at 12PM-12:30PM EST while we discuss this very important issue and Material Risk Considerations to the SEC Cyber Rule!

I'm speaking at Proposed SEC Cyber Rule: 4-Steps To Uncover Your Material Risks. Would you like to attend? This is something every organization should be preparing for now.

Unfortunately too many companies approach cybersecurity as an ad-on, ad-hoc activity vs a systematic part of delivering products and services. The report from the Cybersecurity Collaborative Daily Morning Security Report highlights… https://t.co/6NeW4zWsGH

With the recent actions in the Joe Sullivan case, many CISOs questioned whether or not they should have their own legal counsel. Join my longtime friend, experienced lawyer and Judge @Colonel_Larry as we explore this issue.

With every new technology, we have a period to muddle through to figure out how to secure it. Are you putting the brakes on it first? #cybersecurityleadership #cisos #chatgpt #generativeai #bardai From the Cybersecurity Collaborative Daily Morning Securit… https://t.co/6T8HfmS1fm

Is Generative AI ready for prime time? It will be interesting to see how fast the $1M, in 10K increments is paid out in "round one", as security analysts work to improve the technology. While this is a useful tool, it is still a to… https://t.co/aH2Nk9kgsI

Please join @Ranjanaayurveda and myself as we discuss an issue that is so critical, and unfortunately not addressed as it should be. The time to prepare for the upcoming SEC rule is now.

People understand physical wars and the need for strong military defenses. The question is - are our companies increasing investments in cybersecurity during war-time conflicts (beyond the Dod/Homeland Security)? Are we appropriate… https://t.co/PWdmJdhirB

Unlike our US lawmakers approach to fixing social security and Medicare shortfalls by kicking the can down the road for future politicians to deal with, the issue with Quantum Computing emerging threats is that once the capability… https://t.co/Vt5qwyGgD4

Do you think other states will follow? Or will be have a sensible Federal approach to resolving these disagreements? Nothing against the citizens of Montana, but this is the same state that when the DHHS lost medical records on all… https://t.co/Xk1gWVokz9

It is amazing in this world that all of us are not clicking on a phishing page or malicious webpage. End user training is essential, however equally so are the technical controls which prevent these from reaching the end user. #ph… https://t.co/oXt0GYmrJL

One of the many joys I am privileged to experience in cybersecurity is teaching the IT Risk Management and Cybersecurity Leadership courses at Northwestern University McCormick School of Engineering for the MSIT program. I like to ‘bring the CISO real… https://t.co/IbmZCyyWIO

With $10M in reward money, it would appear that we are a long ways away from the attacker doing any time. #cisos #cybersecurityleadership #ransomware From the Cybersecurity Collaborative Daily Morning Security Report

“Only overnight trauma and stroke services have been impacted” Are we being this desensitized to ransomware? #cybersecurity #cybersecurityleadership #cisos #ransomware #heathitsecurity From the Cybersecurity Collaborative Daily Morning Security Report

ISACA always does a great job with conferences. The conference name may change from ISACA CACS to ISACA Conference to Digital Trust World in Boston, but the quality is the same. The attendance is well beyond 2019 levels. #digitaltrustworld Presenting “5… https://t.co/e8iZShm2QB