Developers aren't choosing to ignore security issues - they don't have the skills or resources to create secure code due to a critical deficit in developer security training, especially how to manage vulnerable components effectively.
Ukraine has become a "training ground" for Russian hackers wishing to perpetrate cyber-attacks on the west, a Kyiv security expert has claimed.
Tapping into this huge talent pool [of non-traditional cyber-sec staff] will not be easy, but steps are being taken to make the cyber-security field more appealing to these populations, including teaching girl scouts about cyber-security.
GDPR-ready but prioritising cyber-security, including education and training for all staff to develop cyber-security culture, will enable delivery of significant financial savings.
More than two thirds of companies struggle to recruit the staff necessary to defend themselves; the Center for Cyber Safety and Education suggests a workforce gap of 1.8 million by 2022. What can be done asks Jay Coley.
Doug Wylie says organisations must invest in security skills now, to secure their systems for their future, noting companies have invested in tech for a workforce not trained how to securely operate and maintain these systems.
Piers Wilson, director of the Institute of Information Security Professionals (IISP) looks at the people challenges for an industry in the spotlight
Latest round of cyber-attacks underscore the need for regular security awareness training says Eldon Sprickerhoff.
More than a quarter of law firms in England and Wales were targeted by fraudsters in 2016, with most attempted scams taking place online, but there are a number of steps which can be taken to prevent attacks says Peter Groucutt
In Case you missed it: Dodgy Google play apps again; Linkedin hit; NHS database breach; GPS spoofing US navy?; board training lacking
The level of security of Wi-Fi networks and user awareness regarding information security has fallen significantly; a Positive Technologies security audit says mostly due to common vulnerabilities not needing much skill to implement.
In Case You Missed It: Skills gap real? Mirai hits DT; GDPR ignored; £14.5m cyber-centre; ApplePay vulnerable to two threats
Security tools are useful, but as Edewede Oriwoh explains, we also need to support our staff within an overall cyber-security strategy where employees are engaged and involved and come to own some of the security processes.
As the government heavily invests in supplying enough staff into the cyber-security industry to keep everyone safe, one question remains: are we trying to solve the wrong problem?
The new GCSE was meant to have provided pupils skills for the future, but no one is doing the course, where did we go wrong?
(ISC)2 study finds shortfall of cyber-security workers with a predicted skills gap of 350,000 in Europe by 2022.
People are now officially the strongest link in cyber-security and this people-centric approach demands that vendors make their tech easier to use, and organisations implement policies that people will choose to follow.
New research from social learning platform FutureLearn explains how employees feel about keeping their company network safe.
In Case You Missed It: Chinese hack MSPs; Windows Server 2003 flaw; Phishing hits travellers; retraining graduates; OpIsrael hacktivists targeted.
A team from Guangdong, China and South Africa share honours and win 1st prize after beating the best talent around the world in a global ICT skill competition held in Shenzhen, China this weekend.
A free cyber-security course being offered by Newcastle University's School of Computing Science is one of the latest ways to protect online privacy.
A scheme aimed at teaching young people online safety has published a list to show parents that their kids might have an interest IT security.
A Freedom of Information Request has unearthed the fact that for local councils, health and safety training is far more favoured than IT or data security.
CE2016, the fourth in a semi-annual series of pan-European cyber-security exercises organised by ENISA, has concluded today, bringing to a close six months of activity.
Dr Jessica Barker warns against alienating your users if you want to get them onside in the fight to secure your information network.
Half of all students in the UK have no security software installed on any of their devices, even though a quarter of teenagers are 'almost constantly' connected.
A new QinetiQ white paper warns firms that security training alone will not change employee behaviours.
NATO CCDCOE urged to promote cooperation in training of cyber-defence experts as the cyber realm declared a theatre of war.