All Articles

We had a CISO community Fireside on "Practical Approach To Understanding Attack Surface Management (ASM) In 2023" with Chris Ray (security architect) and Bikash Barai (cofounder CISO Platform, FireCompass). We discussed on how ASM dramatically improv

Our editorial team has handpicked the best talks at Discussion Summit - a small community summit where we aim to find out the problems and solutions currently faced in the cyber security industry. This talks is on 'Iranian Nationwide Terror And Intel

As we continue to move forward in the Industry 4.0 era of greater connectivity between the physical and digital, the promise and development of smart cities become a more likely vision. Keeping a smart city secure is a challenge as the urban safety e

CISO Contributors

• Rajiv Nandwani (IT Security & physical security continuity senior manager, BCG)
• Vijay Kumar Verma (SVP & Head Cyber Security Engineering, Jio Platforms)
• Vikas kapoor (Vice President, Cyber Security, VOIS)

Panel Discussion (Rec

About Speaker

Manoj Kuruvanthody, CISO & DPO, Tredence

(PPT) Presentation From The Discussion

Hello Members,

There has been some very interesting findings in the Verizon DBIR Report 2022. The community has been asking many questions and is excited. We requested a community session from our partner firecompass research division which you can j

We're talking about the latest Java-based vulnerability CVE-2021-44228. Recently, a critical Zero-day vulnerability has been found in log4j which permits Remote Code Execution (RCE) allowing the attackers to get remote access. The Vulnerability got

Keynotes From World-Renowned Industry Experts (Best Of The World) :  

• "The state of security markets and changing buying priorities" by Maria Kussmaul - Head Security, Investment Banking | Wharton School 
• "Q3 2021 Changes To The Entire IT Secur

I got into a very insightful debate with somebody who will remain nameless in the beginning of this post, but will perhaps be revealed later. The debate focused on the role of context in threat detection.

Specifically, it is about the role of local c

Definition
Penetration testing and red teaming activities have traditionally been heavily dependent on human testers and their toolkits of commercial and proprietary tools. A new market of solutions is emerging that can fully or semiautomate continuo

There are only 3 fundamental ways to stop attacks from motivated and intelligent adversaries.

Let’s identify and explore those options, and discuss how they may be applied to undermine Ransomware.

This video is the latest installment of a multi-part

The ‘SolarWinds hack’, a cyberattack recently discovered in the United States, has emerged as one of the biggest ever targeted against the US government, its agencies and several other private companies.

About Speaker
Sudhakar is Progressive CEO an

The attack was first detected on 2nd July and had spread to over over 30 MSPs and over 1,500 businesses in the US, AUS, EU, LATAM and Asia. 

The customers received the malicious “VSA agent hotfix” pack that was able to overcome anti-virus protections

Key Takeaways (Summary by Anton Chuvakin):

• SOC is first a TEAM. Next a PROCESS. And it uses TECHNOLOGY too, but ultimately people and process defines SOC success
• Key challenges in building a modern SOC include (1) gaining visibility with the expa

About The Report

In the Hype Cycle for Security Operations 2021, Gartner points out, organizations that can easily identify the event types that will impact their business in terms of brand damage or reduced operational capacity, stand a much greater

As enterprises battle to conquer the new normal, an old concept of ‘Zero Trust’ has come to the fore. What is zero trust and how pertinent is it for the situation that businesses find themselves? What is the right approach to implement this framework