Information Security, Policies and Social - Information Technology Zone

The Small Business Guide to Information Security

Galido

FEBRUARY 25, 2020

Information Technology Blog - - The Small Business Guide to Information Security - Information Technology Blog. Information security is a major issue in the business world, and security breaches cost businesses millions of dollars per year. You also have to make sure you have a strong password policy.

Small Business

Small Business Information Security Security Firewall

For security leaders, AI is a mounting peril and an emerging shield

CIO Business Intelligence

JULY 25, 2024

In the hands of adversaries, AI exploits two attack vectors: It makes a range of existing attacks – such as social engineering, phishing, deep fakes, and malware – faster and much more effective. Information security leaders need an approach that is comprehensive, flexible and realistic.

Security

Security Malware Enterprise Enterprise

3 ways to deter phishing attacks in 2023

CIO Business Intelligence

OCTOBER 20, 2022

In fact, CIO has reported that it takes only a few minutes for experienced hackers to set up a social engineering attack against enterprises (and their managed service providers) that consider themselves to be secure and protected. Cyberattacks, Data and Information Security, Phishing Let’s dig deeper.

Training

Training Banking Social Malware

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

20 IT management certifications for IT leaders

CIO Business Intelligence

JULY 25, 2024

IT security is a growing priority for businesses and the CISM certification is often required by government agencies hiring IT workers. Exam fee: Courses for CSM certification range in price from $250 to $2,495 Expiration: Two years For more information, see “ CSM certification: What you need to know.”

Project Management

Project Management Agile SCRUM Security

DeepSeek and AI-Generated Malware Pose New Danger for Cybersecurity

SecureWorld News

MARCH 13, 2025

Strengthening secure development practices AI models like DeepSeek can be manipulated into generating harmful outputs. Organizations should implement strict guardrails, such as input validation, ethical use policies, and continuous monitoring for abuse.

Malware

Malware Security Tools Report

CISOs are not just the keepers of our data – they must be its custodians

CIO Business Intelligence

JANUARY 19, 2024

Changes to social expectations surrounding privacy have led to individuals wanting transparency and security from the entities that collect and process our data. While data owners may define policies, custodians are responsible for implementing and ensuring adherence to these policies.

Data

Data Policies Security Examples

Exploring the pros and cons of cloud-based large language models

CIO Business Intelligence

OCTOBER 24, 2023

Additionally, because LLM tools are largely accessible to the public, they can be exploited by bad actors for nefarious purposes, such as supporting the spread of misinformation or being weaponized by bad actors to create sophisticated social engineering attacks.

Cloud

Cloud Engineering Tools Security

Key considerations to cancer institute’s gen AI deployment

CIO Business Intelligence

JUNE 6, 2024

The governance group developed a training program for employees who wanted to use gen AI, and created privacy and security policies. While GPT4DFCI isn’t allowed to be used for clinical purposes, as the governance committee has stipulated, it’s been reviewed by the privacy and information security teams for safety and efficacy.

Government

Government Tools Vendor Management Examples

Stand By For Reporting From the Intelligence and National Security Summit 18-19 Sep 2014 #Intelligence2014

CTOvision

SEPTEMBER 17, 2014

It is very hard to catch the gist of an event like this by tracking social media, but if that is your only way of staying engaged on this one you can track the Twitter hashtag #Intelligence2014. Managing Director Security. Chief Information Security Officer. Deputy Chief Information Officer. United Airlines.

Fractional CTO

Fractional CTO Security Report CTO

Securing 5G for 2023 and beyond

CIO Business Intelligence

FEBRUARY 24, 2023

Embrace automation and AI: The complexity of 5G deployments and the massive device connectivity will require faster and more repeatable approaches to deploying security. 5G security will be best served with an AI-powered approach that can identify devices and enable automated policy-driven approaches to reducing risk.

Security

Security Network Virtualization Applications

March Madness Meets Cyber Mayhem: How Cybercriminals Are Playing Offense this Season

SecureWorld News

MARCH 20, 2025

This intersection of sports, money, and digital activity makes for a perfect storm of social engineering attacks. Gray urges organizations to double down on phishing awareness training, system policies, and proactive monitoring to mitigate damage before it happens.

Meeting

Meeting Sports Banking Mobile

8 data strategy mistakes to avoid

CIO Business Intelligence

JANUARY 24, 2024

“Similar to disaster recovery, business continuity, and information security, data strategy needs to be well thought out and defined to inform the rest, while providing a foundation from which to build a strong business.” They also need to establish clear privacy, regulatory compliance, and data governance policies.

Strategy

Strategy Data Government Disaster Recovery

National Cyber Security Hall of Fame Announces 2015 Inductees

CTOvision

SEPTEMBER 14, 2015

The National Cyber Security Hall of Fame is composed of individuals who collectively invented the technologies, created awareness, promoted and delivered education, developed and influenced policy, and created businesses to begin addressing the cyber security problem. These innovators truly deserve a place in the Hall of Fame.

Security

Security Education Policies Hotels

Prepare for The Cyber Threat : What Executives Need to Know to Manage Risk

CTOvision

MARCH 17, 2015

Employees who accidentally deviate from security policies can leave large openings in your defenses. CEOs asking questions about this can help underscore for your executive team how important it is to reach 100% of your workforce with cyber threat awareness training and information on their role in cybersecurity.

Insurance

Insurance Fractional CTO Security Policies

SMU Continues To Innovate In Cyber Security Innovation: Launches new institute and innovation gym

CTOvision

MARCH 7, 2014

The institute also will incorporate elements from law, business and the social sciences to promote development of an educated citizenry in the issues of cyber security. Understanding and addressing critical issues in both psychology and economics to establish a deeper grasp of cyber security phenomena. The Deason Innovation Gym.

Security

Security Engineering Education Research

‘The Everything War’: Inside Amazon with author and Wall Street Journal reporter Dana Mattioli

GeekWire

APRIL 27, 2024

We have strict policies in place and keeping proprietary information secure is embedded into how the team operates.” ” “We use publicly available data to inform our strategy in service of providing the best experience for our customers.

Journal

Journal Report Policies Retail

Microsoft details ‘largest cybersecurity engineering effort in history’ — securing its own code

GeekWire

SEPTEMBER 23, 2024

“In May 2024, we expanded the initiative to focus on six key security pillars, incorporating industry feedback and our own insights. The deputy CISOs report directly to Microsoft’s Chief Information Security Office, led by Igor Tsyganskiy as Microsoft’s CISO.

Engineering

Engineering Microsoft Security Government

Penetration Testing Remote Workers

SecureWorld News

JUNE 28, 2020

Social media accounts associated only with personal, non-business usage. This has not changed with remote workers and should not be considered as part of any new policies and scope. Odds are, your employee code of conduct and security policies do not contain any such provisions, nor would teams sign off on their inclusion.

Social

Social Network Engineering Authentication

New CIO appointments in India, 2022

CIO Business Intelligence

MARCH 22, 2022

Prior to joining Fractal, Tiwari was senior vice-president and global CISO at Airtel, where he set up the managed security services initiative Airtel Secure for Business. Before that, he was the chief information security advisor at Microsoft India. . Aan Chauhan joins Mindtree as CTO. January 2021.

Fractional CTO

Fractional CTO CTO CTO Hire Banking

A new era of Enterprise Content Management (ECM)

CTOvision

JULY 8, 2015

Faced with the demands for process management, enterprise search, access beyond the firewall, mobile device support, social interaction, and cloud deployment, enterprises have been sold add-on modules and product integrations to enable wall-to-wall content management across the enterprise and outside its walls. ECM Hurdles.

Enterprise

Enterprise Enterprise Mobile Survey

Cybersecurity e NIS2: come si muovono i CIO per dormire sonni (un po’) più tranquilli

CIO Business Intelligence

APRIL 22, 2024

“Sulla cybersecurity non si può transigere”, afferma Fabrizio Alampi, Country Information Officer di Colisée Italia, parte dell’omonimo gruppo francese (società con missione sociale che opera nell’healthcare per la terza età in Europa). “La CIO, Cybercrime, Data and Information Security

Dell

Dell Disaster Recovery Budget Business Continuity

Spotlight on Cybersecurity Leaders: Donna Ross

SecureWorld News

MARCH 27, 2023

In those roles, she had program responsibility for global IT Risk Management, Compliance, Privacy, Third-Party Risk Management, Program Delivery Office, and Security and Disaster Recovery, including strategy and policy. Radian Group has innovative solutions (products and services) and is committed to social responsibility.

Disaster Recovery

Disaster Recovery Conference Security Insurance

Regulatory uncertainty overshadows gen AI despite pace of adoption

CIO Business Intelligence

AUGUST 24, 2023

When it comes to ChatGPT, the only utilization in my practice is the way we go about creating our marketing strategy on social media—getting ideas, generating scripts, seeing what it can provide us as inspiration for new content. But there’s one low-risk use case where gen AI is allowed, he says. Probably not,” Orlandini says.

Open Source

Open Source Fractional CTO Training Enterprise

The 10 biggest cybersecurity trends to follow in 2025

Dataconomy

MARCH 4, 2025

This puts companies in an arms race, continuously adapting their AI systems to outsmart malicious actors using similar technology, a previous article on Information Security Buzz notes. SSPM offers insight into user permissions, data-sharing policies, and SaaS application settings.

Trends

Trends Security Cloud Network

Why Taylor Swift Fans Should Work in Cybersecurity

SecureWorld News

SEPTEMBER 12, 2023

On June 14, 2019, Taylor Swift posted a seemingly random string of text to her social media accounts: gxgjxkhdkdkydkhdkhfjvjfj!!! into YouTube pulls up another Taylor Swift music video, " The Man ," which came out nearly a year after the initial social post. But Swifties knew better.

Network

Network Open Source Training Security

E-book: Educate Yourself With Dell Insight Partner Views on Cybersecurity

Cloud Musings

JULY 10, 2015

Some see these breaches as a threat to national security and in response, the U.S. Topics include: The chief information security officer (CISO) role in cybersecurity Security attacks and countermeasures Mobile device security U.S.

Dell

Dell Education Guidelines Programming

Cybersecurity

Dataconomy

MARCH 21, 2025

Social engineering Manipulative tactics that deceive individuals into revealing sensitive information are widely used in cyber attacks. Strong password policies: Using complex passwords and multi-factor authentication greatly improves security.

Disaster Recovery

Disaster Recovery Firewall Security Malware

Industry leaders set cloud computing security benchmarks

Cloud Musings

MAY 28, 2015

This latter scenario has been driven by the lack of industry consensus on security and a dearth of nonvendor specific cloud security training and certifications. In order to gain this certification, a candidate must demonstrate hands-on information security and cloud computing experience.

Industry

Industry Cloud Security Dell

Industry leaders set cloud computing security benchmarks

Cloud Musings

MAY 28, 2015

This latter scenario has been driven by the lack of industry consensus on security and a dearth of nonvendor specific cloud security training and certifications. In order to gain this certification, a candidate must demonstrate hands-on information security and cloud computing experience.

Industry

Industry Cloud Security Dell

Mashing up Private and Public

Victus pro Scientia Opus -- Food for the Knowledge

APRIL 3, 2010

As someone who is: active in several social media communities, . committed to helping clients think about how information is shared and secured, interested in current events (like the newly enacted Mass Privacy statute and well-publicized data security breaches), and. You may be surprised at what you find.

Social

Social Internet Media Exercises

2020 Was a Privacy Wake-up Call: Don't Go Back to Sleep in 2021!

SecureWorld News

JANUARY 28, 2021

And not only work-from-home (WFH) employees have been affected, but also those mobile workers and all the contracted workers and supply chain workers who have largely been going under the radar of CISOs and information security departments for the past two to three decades. This will be a great beginning. They've only just begun.

Training

Training Information Security Security Travel

Navigating the HUB International Data Breach

Dataconomy

AUGUST 15, 2023

Although the investigation is ongoing about HUB International Data Breach, the initial review has established that the accessed data pertains to various groups, including current and former employees, individuals covered by HUB’s insurance policies, and those connected to insurance carriers and employers served by HUB.

Data

Data Insurance Report Security

NIST 800-53 and FedRAMP FISMA

Galido

JULY 20, 2018

Note that the Federal Information Security Act (FISMA) of 2002 needs all service providers to create, adopt and implement information protection strategies. What Does An Information Protection Program Need? Obtain guidelines for creating security policies and privacy controls from Zen GRC’s premier program.

Programming

Programming Government Security Cloud

Jeff Moss on the Evolution of Hacking at SecTor 2021

ForAllSecure

NOVEMBER 3, 2021

He said hackers and researchers really lead the way by discovering new classes of vulnerabilities, by exposing poor security practices, and spurring public debate about information security. He said, "the better you understand the risks, the better informed your decisions will be." It will have social impact.

Internet

Internet Research Security Engineering

Spooky, Scary Tales of Vendor Management

SecureWorld News

OCTOBER 28, 2020

In that particular data breach, approximately 147 million consumers had their information compromised, including personally identifiable information ("PII") like names, social security numbers and birth dates. Any organizational program requires policies, parameters, guidelines, and procedures. CCPA/GDPR compliant?

Vendor Management

Vendor Management Data Programming Guidelines

ForAllSecure Launches The Hacker Mind Podcast

ForAllSecure

JULY 21, 2020

I'm Robert Vamosi, and in this episode I'm talking about the shortage of infosec experts and how, through the use of computer Capture the Flag competitions, or CTF, the US military, for example, is attempting to address the shortage of information security experts through gamification. FRANK: Like a password policy problem.

Policies

Policies Programming Training Information Security

ForAllSecure Launches The Hacker Mind Podcast

ForAllSecure

JULY 21, 2020

I'm Robert Vamosi, and in this episode I'm talking about the shortage of infosec experts and how, through the use of computer Capture the Flag competitions, or CTF, the US military, for example, is attempting to address the shortage of information security experts through gamification. FRANK: Like a password policy problem.

Policies

Policies Programming Training Information Security

Common Techniques Hackers Use to Penetrate Systems and How to Protect Your Organization

ForAllSecure

APRIL 26, 2023

Common Types of Cyber Attacks Common techniques that criminal hackers use to penetrate systems include social engineering, password attacks, malware, and exploitation of software vulnerabilities. It uses psychological manipulation to trick users into making security mistakes or giving away sensitive information.”

System

System Malware How To Social

ForAllSecure Launches The Hacker Mind Podcast

ForAllSecure

JULY 21, 2020

I'm Robert Vamosi, and in this episode I'm talking about the shortage of infosec experts and how, through the use of computer Capture the Flag competitions, or CTF, the US military, for example, is attempting to address the shortage of information security experts through gamification. FRANK: Like a password policy problem.

Policies

Policies Programming Training Security

- Kurmudgeons and Kids

Chief Seattle Greek Blog

DECEMBER 1, 2009

My Chief Information Security Officer is writhing on the floor. Where is my official City of Seattle Information Security policy when I need it? Where are my guidelines for the use of social media like Facebook and Twitter and Blogs (oh my)? They are challenging my policies, these kids.

CTO

CTO Budget Advertising Information Security

MongoDB data breach: Will there be a compensation?

Dataconomy

DECEMBER 18, 2023

In communications issued by MongoDB’s Chief Information Security Officer, Lena Smart, it was disclosed to customers that the hack was detected on the evening of Wednesday , December 13th, following which an investigation into the incident commenced. This cyberattack was identified earlier this week by the company.

Data

Data Authentication Security System

The Hacker Mind Podcast: Hacking Diversity

ForAllSecure

APRIL 7, 2021

It was in healthcare policy and manage, I had dreams of going to med school at some point before I decided that I was going to just join the world of IT right there. I've got a lot of industry certifications, but having all those paper degrees proved to be a poor equivalent to having actual hands on experience in information security.

Study

Study Security Information Security Examples

The Hacker Mind Podcast: Hacking Diversity

ForAllSecure

APRIL 7, 2021

It was in healthcare policy and manage, I had dreams of going to med school at some point before I decided that I was going to just join the world of IT right there. I've got a lot of industry certifications, but having all those paper degrees proved to be a poor equivalent to having actual hands on experience in information security.

Study

Study Security Information Security Examples

The Hacker Mind Podcast: Hacking Real World Criminals Online

ForAllSecure

MAY 2, 2023

Find out what Daniel looks for and how he does digital forensics using social media and other open source resources. While I produced this episode, a 21 year old Massachusetts National Guard airman is alleged to have photographed and distributed copies of classified US Military material on Discord, a social media site. You find clues.

Open Source

Open Source Media Social Hotels

The Small Business Guide to Information Security

For security leaders, AI is a mounting peril and an emerging shield

Webinars

Trending Sources

3 ways to deter phishing attacks in 2023

Webinars

20 IT management certifications for IT leaders

DeepSeek and AI-Generated Malware Pose New Danger for Cybersecurity

CISOs are not just the keepers of our data – they must be its custodians

Exploring the pros and cons of cloud-based large language models

Key considerations to cancer institute’s gen AI deployment

Stand By For Reporting From the Intelligence and National Security Summit 18-19 Sep 2014 #Intelligence2014

Securing 5G for 2023 and beyond

March Madness Meets Cyber Mayhem: How Cybercriminals Are Playing Offense this Season

8 data strategy mistakes to avoid

National Cyber Security Hall of Fame Announces 2015 Inductees

Prepare for The Cyber Threat : What Executives Need to Know to Manage Risk

SMU Continues To Innovate In Cyber Security Innovation: Launches new institute and innovation gym

‘The Everything War’: Inside Amazon with author and Wall Street Journal reporter Dana Mattioli

Microsoft details ‘largest cybersecurity engineering effort in history’ — securing its own code

Penetration Testing Remote Workers

New CIO appointments in India, 2022

A new era of Enterprise Content Management (ECM)

Cybersecurity e NIS2: come si muovono i CIO per dormire sonni (un po’) più tranquilli

Spotlight on Cybersecurity Leaders: Donna Ross

Regulatory uncertainty overshadows gen AI despite pace of adoption

The 10 biggest cybersecurity trends to follow in 2025

Why Taylor Swift Fans Should Work in Cybersecurity

E-book: Educate Yourself With Dell Insight Partner Views on Cybersecurity

Cybersecurity

Industry leaders set cloud computing security benchmarks

Industry leaders set cloud computing security benchmarks

Mashing up Private and Public

2020 Was a Privacy Wake-up Call: Don't Go Back to Sleep in 2021!

Navigating the HUB International Data Breach

NIST 800-53 and FedRAMP FISMA

Jeff Moss on the Evolution of Hacking at SecTor 2021

Spooky, Scary Tales of Vendor Management

ForAllSecure Launches The Hacker Mind Podcast

ForAllSecure Launches The Hacker Mind Podcast

Common Techniques Hackers Use to Penetrate Systems and How to Protect Your Organization

ForAllSecure Launches The Hacker Mind Podcast

- Kurmudgeons and Kids

MongoDB data breach: Will there be a compensation?

The Hacker Mind Podcast: Hacking Diversity

The Hacker Mind Podcast: Hacking Diversity

The Hacker Mind Podcast: Hacking Real World Criminals Online

Stay Connected