Peer-Driven Insights

Security Operations Center (SOC)

Featured One-Minute Insights

How are U.S. CISOs Addressing Liability Risk?

New regulations taking effect in the U.S. mean that cybersecurity leaders could face legal liability in the event of an incident. What strategies are they using to protect themselves?

How are U.S. CISOs Addressing Liability Risk?

Active Ambassadors in This Topic

Rathik Pathak

JM Financial Services Ltd

Travel and Hospitality, 1k - 5k

View All Community Ambassadors

Community Posts

Does implementing Zero Trust mean sacrificing usability?

Read More Comments

What do folks think about this ? Paying a ransom is a tough choice with some real ethical dilemma's. But not you may also face other legal implications
https://www.reuters.com/article/us-treasury-cyber/update-1-companies-may-be-punished-for-paying-ransoms-to-sanctioned-hackers-us-treasury-idUSL1N2GS1DD?utm_medium=email&_hsmi=96540456&_hsenc=p2ANqtz--Alyy-d-nqhJ5NmRQ5SYFq1OaiGPdb4pIT2sbsn4lmvd-8Mk05lqVgpEtH1Nbmx7RuFLb2A5hbGzExNtBK4POzNc2gsNiUWGfwowpMrM3i6BHXd0w&utm_content=96540456&utm_source=hs_email

What are you doing when it comes to preventing users from sending emails that could contain corporate data to their personal email addresses? Do you have controls in place or do you strongly discourage it through company policies? Many organizations have to deal with personal email addresses so blocking outbound emails to @gmail or other major players is out of the question. Thanks.

Read More Comments

How do we include the supply chain risk landscape in our daily risk assessments?

Read More Comments

What do you wish security professionals would start/stop doing?

Read More Comments

Why should IT departments implement zero trust?

Read More Comments

Has the success of SaaS and cloud made organizations lazy when it comes to security?

Read More Comments

Are the IT "industry best practices" part of the problem or the solution to cybersecurity?
https://thehill-com.cdn.ampproject.org/c/s/thehill.com/opinion/technology/553891-our-cybersecurity-industry-best-practices-keep-allowing-breaches?amp

Read More Comments

Would you ever be comfortable with the government taking a direct action to address vulnerabilities in your networks?

Read More Comments

As a CIO of a manufacturing plant or some other sort of industrial facility, such as a Power Plant, what are your main concerns on adopting new software for automation / OT (Operational Technology) or other IoT/IIoT related systems?

Read More Comments

Should telecommunications companies focus more on preventing DDOS attacks?

Read More Comments

Has your company made you feel comfortable about the prospect of returning to the office?

Yes - My company has been clear with the back to office plan85%

No - Messaging around return to the office has been confusing and disjointed14%

Should there be federal ordinances in place for cybersecurity threats where the affected organization is billed for the shutdown?

Read More Comments

What tool should security professionals absolutely NOT be using?

Read More Comments

point in time security assessments or security performance management that is more continuous / automated - which do you prefer ? Check out this paper by Ed Amoroso - retired ATT Chief Security Officer - founder of TAG Cyber
https://www.tag-cyber.com/analysis/white-papers/requirements-for-security-performance-management

I plan to rely on static annual external assessments of security to judge effectiveness70%

I plan to look at security performance management capabilities to assess continuously my security effectiveness29%

What's your annual cybersecurity budget per employee?

Less than $100039%

$1000 - $200050%

$2000 - $30006%

$3000+4%

View Results