CSO:CYBER

It’s an exciting day for you as you get off the phone from speaking with a company that has reached out to you about a CISO role they have available. You have been working in the information technology and cybersecurity fields for several years, and through the experience gained from previous positions, you feel you are ready to be a CISO. Click  here  to read this article.

Machine Learning, Inteligência Artificial, Internet of Things (IoT), Big Data... Enfim, toda esta sopa de letras com certeza facilitará a vida dos gestores de Segurança da Informação, promovendo novas formas de medir, detectar e reconhecer ataques cibernéticos Na década de 90 a Internet se tornou popular no Brasil e, em meados de 1995 esta tecnologia é introduzida nas empresas e nas casas dos brasileiros tupiniquins, ainda com uma velocidade muito precária com modem de 9.600 bps, 14.400 bps e 28.800 bps, e foi se radicalizando no meio corporativo. Na época ainda muito centralizada por profissionais e hackers apaixonados por tecnologia com um computador e um modem acessavam os famosos Bulletin Board System (BBS) em sistemas PC Board e similares introduzidos pelos primeiros provedores como Mandic BBS Internet, DialData e NutecNet. Como era SysOp (Operator System) em um destes provedores, lembro como era delicado configurar um Windows 3.11 com Dial-Up, pois o mesmo não suportava o sui...

Líderes deveriam avaliar a viabilidade de aderir a estes programas, pois, além de ajudar e incentivar a comunidade hacker a utilizar seus conhecimentos para proteger a sociedade, ainda podem receber um bom prêmio O relatório Security Report 2017 da HackerOne apresentou a existência de mais 800 programas de recompensa e compensação para pesquisadores de segurança (white hats) que divulgassem bugs em sistemas de empresas que aderem ao programa. Perto de 50.000 vulnerabilidades de segurança foram resolvidas por clientes em 2017 e 20.000 em 2016 individualmente. Empresas como Facebook, General Motors, StarBucks, Uber, U.S. Department of Defense, Lufhansa, Microsoft, Nitendo, entre outras, já abraçaram a iniciativa e estão recompensando hackers até $900.000 em prêmios e recompensas por ano para Bounty Awards Program. O relatório da HackerOne ressalta que houve um crescimento médio de 41% em 2016 e 16% para críticos issues desde 2015. Apesar do crescimento deste programa ainda 94% das pri...

Pesquisa realizada pelo Ponemon Institute revela a verdade sobre os CISO no ambiente corporativo. Clique aqui para ler a pesquisa. CISOs are in a tough spot. Organizations are squeezed by cyber criminals, new compliance requirements, and bleeding-edge technologies that erode privacy and stability. The team that leads defense efforts is becoming a more and more vital player in the long-term survival of any organization that sells, uses, or produces information technology—that is to say, everyone. But what do we really know about CISOs and how they operate? https://f5.com/Portals/1/PDF/labs/Evolving_Role_of_CISOs_Aug2017_rev.pdf?ver=2017-11-09-133030-307

What do the cloud, mobile apps, Twitter and chief information security officers (CISOs) have in common? None of these were around 25 years ago, but advances in technology have created capabilities and careers that were inconceivable less than a generation earlier. Today, no business is without a web site, e-commerce is a necessity and even local businesses have apps. Click here to read the article.

The year of 2017 witnessed some of the most brutal cybersecurity meltdowns. The breaches were not always directed toward corporates; some were state- sponsored which did colossal damage to an inordinate number of Internet users. While Equifax and Yahoo stole the headlines with massive breaches, a number of cybersecurity facepalms--like Uber and Deloitte--didn’t go unnoticed. The year 2017 may have created mayhem for information security professionals, but it left them better prepared as well. Some organizations adopted a coordinated approach to cyber risk management and several nations spruced up their cyber divisions in the aftermath of the attacks. Our cover story “Cybersecurity: The Phoenix Saga” takes a look back at the brighter moments of 2017 and suggests that all is not lost. Clique here to read   CISO MAG https://www.cisomag.com/wp-content/uploads/2018/02/CISOMAG-FEB-2018.pdf

Graham is chief information security officer (CISO) at Jabil, provider of advanced manufacturing solutions to technology and electronics companies worldwide. Before joining Jabil in 2013, Graham has served in senior cybersecurity, risk management, compliance, and IT management positions at First Data Corporation, McKesson, Capgemini Consulting, SunTrust Banks, and HP. Last year, Graham was selected as the Information Security Executive (ISE) of the Year Award winner for the ISE Southeast Region. Clique here to read this article.