Siemens: The most important action you can take to make operations resilient is to develop and implement an IR playbook. Resiliency is based on 3 key concepts: visibility, relationships, & speed.
SC's table (enclosed) looks at UK educational institutions catering for cyber-security, whether that be dedicated cyber MScs or MBAs, more niche digital forensic or broader courses in computer science.
Security executive shares personal insights for SC UK readers working remotely
Have you made it onto the shortlist as a finalist for the SC Awards Europe - the industry’s premier Awards? Check below now.
Find out what excites & will retain staff; be flexible in hiring eg teams working remotely in other parts of the country. It's not just about pay and benefits, but 'is it the right place to be, to grow and develop?'
Close to 394,000 cyber security-related vacancies were announced over the past three years, but companies could fill only two-thirds of them
Closing the gender gap in cyber-security could boost the UK economy by £12.6 billion - so why is it not happening? And how do women overcome these barriers and succeed in cyber-security?
International Women's Day. Sexual harassment and discrimination: The dark side of cyber-security conferences
International Women’s Day is a time to celebrate the role of women in cyber-security. So why are sexual harassment and discrimination still taking place at conferences?
“Clients want someone as trustworthy as approved staff, acting diligently, not causing an outage or leak. But they want to simulate a real attacker, who acts with impunity & runs wild. It's difficult to reconcile.” Laurie Love
We audit to understand AI decision-making, but not for the risk of subversion; security comes in last. 2019 saw a big increase in commodity malware abusing SSH machine identities in various ways.
Israel National CERT executive director Lavy Shtokhamer explains to SC the need for proactive defence and coordination within and among nations
SC Media UK has collated the top 10 data breach penalties awarded in the last two years, with GDPR just starting to bite, resulting in fines growing by orders of magnitude.
Kumar Ritesh, chairman and CEO at CYFIRMA, discusses the rising tide of data breaches in 2019, as SC Media UK collates the top 10 data breaches disclosed last year
Salaries are changing in the cyber-security industry, but are women closing the gender gap, and what skills are most in demand? Which roles have peaked and which are rising?
From the expected to surprising, our 200+ predictions cover Brexit, cyber-treaties to IOT regulation, the negative impact of cyber insurance and the downsides of 5G, plus AI deepfake ransomware & much more.
SC Media UK ranks the top 50 pure-play, listed cyber-security companies and sees Splunk take top spot following 42 percent growth in revenues over the past year.
The usual suspects pulled in for questioning at CSC19, between appearing on panels, in presentations & conducting one-to-one meetings with delegates: Peter Goodman, Martin Peters & Shelton Newsham
Various initiatives across the globe have the common goal of supporting women in cyber-security. They often include education, training, networking, mentorship, and socialising, among other offerings.
In cooperation with Bonnie Butlin of WISECRA, SC Media UK is delighted to announce the 50 leading European* Women in Cyber-security for 2019. *Excludes UK which has a separate list, link below.
SC is delighted to honour & recognise the 50 women who, in our opinion, have had the most influence in the UK cyber-security sector over the past year as role models or campaigners.
It's a false assumption that If more women are encouraged to take maths and science in schools and at university, it will greatly widen the pool of people available cyber-security says Sam King, CEO, Veracode.
How to go from central planning research under communism to defending global corporations as head of your own successful cyber-security business - plus, what's next?
Data breaches in healthcare sector costs £5.2 million on average, almost double that of the global average of £3.2 million. Cyber-security experts say the figure is set to rise
Debate on the moral and legal aspects of facial recognition surveillance have been going on around the world. Where does the individual affected stand?
Cyber Discovery year three launched today to identify elite cyber talent, strengthening their capabilities to help industry deal with the velocity of change - but should cyber now it be part of the school curriculum?
Six bug bounty hackers now earn a million dollars, including the first Brit. As bounties rise 50 percent in a year, SC asks what's their strategy, and how to make a million on 15 hpw? Is it just about the money?
In the US the National Counterintelligence and Security Centre has chosen September 2019 to be its inaugural Insider Threat Awareness Month to increase awareness about the risk of insider threats.
How much more vulnerable is 5G to massive DDoS attacks, and how can slicing, enabling dedicated network segments for particular services, enhance security? Orange explains its 5G security plans.
Olympic Park accelerates growth for UK cybersec ventures - provides connected base for internationals
Lorca and Plexal provide a collaborative campus to rapidly scale up 72 cybersec companies with £13.5 million government investment.
Digital transformation knocks cyber-security off its perch, staff incentives not working, the skills gap impacts maturity & business' ability to quantify security risk, says Brennan P Baybeck, ISACA board chair.
Change is happening, but more needs to be done to ensure women are visible and getting the opportunities they deserve
Winners of the SC Awards Europe 2019: Dr Stefan Lüders, CSO at CERN won CISO of the year, Palo Alto Networks wins best security company of the year, Lisa Ventura of the UK Cyber Security Association ....
Neurodiversity - a route to fill the cyber-security skills shortage or a necessary alternate perspective?
Neurodiversity describes those on the autistic spectrum as well as people with ADHD, dyslexia and dyspraxia. Increasing diversity offers different ways of thinking to stay one step ahead of cyber-attacks.
Whether you are a CISO, want to become one, or employ/ought to employ one, reading this book will repay the time spent, providing both practical advice and wider social/commercial context of the role.
30 years ago, in 1989, the Berlin Wall came down, SC made its debut in the UK, and Sir Tim Berners-Lee was inventing the World Wide Web while at CERN, the European Particle Physics Laboratory.
"Microsegmentation is the means to a zero-trust security network because it is identity-driven and able to isolate threat actors on a network at a granular level. It protects an organisation's critical assets and minimises the impact of cyber-attacks."
"We are not just in the security business because its a vibrant market and a great opportunity to grow BT's business, we are in the security business because we have to be in the security business," says Kevin Brown, recently-appointed managing director of BT Security.
"Every customer that we see is going through some form of digital transformation (so we are talking about) ... how security plays into that, and what some of the challenges are in managing digital risk."
GDPR has opened up corporate and public minds to the importance of data privacy, but even with punitive fines looming, many organisations failed to prepare, and as infractions work their way through the system, there are more serious consequences to come.
More extensive that ever: AI-driven chat-bots to Zero-day mining as a service, Fuzzing; 5G, successes & failures of GDPR, loss of faith in the public internet, the IOT, breaches, Sim-jacking, skills shortage, ROI, death of privacy, failure to evolve and a host of novel new threats and solutions.
Increasing the number of women in cyber-security would raise the industry's IQ. So SC Media UK editor Tony Morbin asks Jane Frankland and Amanda Finch - why aren't more women working in cyber-security?
From high level hard tech to senior leadership & management, our 50 women list exemplifies women contributing to the cyber-security sector at every level, despite representing just 10 percent of the workforce.
"I don't ever want to get a position because I am a woman, I want to get it because I am the right person for the job." - Sian John MBE, chief security advisor, cyber-security solutions group Microsoft
SC Interview: Sian John, Microsoft - the push for security-by-design and IIOT/desktop network separation
Sian John, chief security advisor, Microsoft, took time out from Microsoft Future Decoded 2018 to explain the organisation's drive for security-by-design, and support for separating industrial and desktop networks.
Ranking countries whose data is availabe on the dark web, the UK came out third - ie third worst - for having its data exposed - after the US and Canada - albeit using TDLs as a proxy for source.
The Internet celebrates its 50th birthday - an awesome system that's insecure with new insecure access devices being added exponentially. If we do want change, we have to do it now says Berners Lee.
Google knows lots about us, but it has to tread a balance between using that data to enhance services, while respecting our privacy and keeping our details secure.
SC's UK cyber-security salary explains attributes for different roles, shows high demand & huge variation: junior analysts, £25K in manufacturing; public sector CISOs on £95k, colleagues at large banks - £500k.
The persistence of open buckets is greater than reported. "The problem is systemic, not for just large organisations. If the big guys do it, what's happening with smaller organisations? The exact same thing!"
Scores out of 100 are given to a range of threats covering devastation, likelihood, nuisance factor, financial impact and defendability, presented in an accessible format - a pack of Trumps playing cards.
Is Zero Trust really achievable given the complexity in finance service organisations?
Brought to you in partnership with Forescout