For those businesses that want to reduce the brand risk of cyber-attack, Marc Lueck says more emphasis on recovery is the easiest place to start. It will also go a long way to future proofing organisations against upcoming threats.
CISOs do indeed need to articulate cyber risk to the board in a business context, but equally, the board need to get a better grasp of cyber and prioritise criticality of security integrity vs continuity of service vs profitability.
New research by VMWare has found that a great deal of UK workers believe that the responsibility for cyber-security should go all the way to the board of directors.
SC Magazine's most recent roundtable opened with the question, when it comes to a breach, where does the buck stop? Who own's the breach?
A new survey by Egress Software has shown UK CIOs to be wary of incoming EU data protection laws
Appearing in front of a House of Commons Select Committee, Dido Harding defended TalkTalk's cyber-security plans and took responsibility for incident response, describing security as a board issue and business risk.
Future Chief Information Security Officers (CISOs) will be multi-skilled business-enablers, the 21st century equivalent of Captain Kirk from Stark Trek.
Sony Pictures Entertainment has spent around US$ 15m (£9.87m) on investigating and remediating last year's data breach, which saw hackers steal terabytes of data.
A new report which claims information security budgets have fallen has been called into question, but carries better news for security companies and security awareness training.
New research from IT security vendor Websense and Ponemon Institute indicates that security professionals want their companies to invest in new technology, but are doing little to 'upskill' existing staff.
Some of the UK's chief information security officers (CISOs) are breaking away from IT budgets and reporting lines but are still missing C-level support, a new study reveals.
A study of some of the UK's top chief information security officers (CISOs) has revealed that just 21 percent are conducting security awareness training on a regular basis.
New research from consulting firm KPMG claims that cyber security and data protection are only ranked third as priorities in UK boardrooms, following people skills and plant/machinery spending.
Security awareness training must be high on the agenda of best practice when companies fight off cyber threats, experts concluded at the SC Congress London.
A new study reveals that boardroom executives are still unaware of cyber threats, much to the chagrin of those working in information security.
The continuing rift between IT security professionals and 'the business' has been highlighted by a new study that shows many organisations still attach little value to cyber security - even though they know the threat is growing.
A stellar panel of infosec experts told a packed audience at SC Congress London on Thursday that security awareness can play an integral role in educating C-suite on threats coming from inside and outside the company.
There should be a better connect between the board, security team and employees - sound familiar?