Good news for the CISO? Really.

There are several things happening right now that are making the CISO’s job better, both in terms of credibility and consistency.

by Dan Holden on April 3, 2019

So much of the news related to CISOs today is negative. The reasons are clear because the challenges are enormous. The threat landscape has never been more complex and the enterprise threat surface has never been larger. Making matters worse, digital transformation and cloud computing have proliferated data, applications, and workloads across a broad array of new partners, technologies, and business models. Internally, from a culture standpoint, the CISO must deal with a host of challenges, from C-Suite politics to staffing issues that are stressing and straining their teams to keep pace. You may ask, "is it really that bad?" Unfortunately, yes, it is. In fact, these challenges are driving many CISO’s to struggle with issues of burnout. The sum of the challenges is being manifested in real, human ways. Is there anything positive happening out there? Read more...

SC Magazine UK

Getting Control of Security Controls

A focus on technology first, or an imbalanced control implementation, doesn’t necessarily lead to greater protection

by Douglas Ferguson on February 19, 2019

The effective deployment of technology depends on a business-level understanding of the organization. Technology on its own solves very few problems. However, when it is part of a comprehensive protection strategy, and truly integrated, operationalized, and measured, then it can deliver positive return on investment. Historically security controls provide a cautionary example. Whether you insource, outsource, or have blended security operations, it doesn’t change the critical fact that control management, to be seen positively by business leadership, has to answer the following: Read more...

Info Security Magazine

Pharos Security Launches SaaS Platform
for Measuring Security Risk and ROI

System Designed for Business Executives; Enabling Better Understanding of Risks and Requirements

Pharos Security today announced a new software as a service platform, Pharos CSO, that enables Chief Information Security Officers to develop and measure a holistic and calibrated business plan that evaluates current security capabilities against specific attack sophistication, together with a multi-year strategy and ROI justification to meet specific protection goals aligned to business objectives. Finally, security leaders will have a tool that allows them to educate and influence executive leadership to make and measure specific investments that reduce the overall risk to the organization. Read more...

Successful Security Program