Fresh Thinking for the Modern CISO

powered by Kudelski Security
  • An Eight-Step Guide to Managing a Cyber-Attack for the First Time.

    “I’m a New Security Leader and My Business Has Been Breached. What Next?” An Eight-Step Guide to Managing a Cyber-Attack for the First Time.

    It comes as no surprise to anyone who follows industry news that reports of cybercrime are increasing. While no security leader ever gets ‘used’ to being breached, the first time it happens is especially daunting. This is a guide put together for new security leaders, based on discussions with our Incident Response team and CISOs…

  • 2023 Cybersecurity Predictions

    Our top cybersecurity predictions for 2023

    It’s the time of year when the industry begins making its top cybersecurity predictions for the year ahead. Gartner, among others, recently released their top 8 cybersecurity predictions for 2023, writing that supply chain and geopolitical issues will continue to dominate cybersecurity. In this article, our team looks into the proverbial crystal ball to share…

  • 6 Key Considerations for Good Insider Risk Management

    6 Steps to Effective Data Security

    In this blog post, we’ll identify where today’s data security programs often fail and look at six steps to effective data security. These cover everything from product definition, minimal viable discovery, and services, to telemetrics, metrics as well as threat detection and response capabilities. If you’ve ever asked the question: ‘How can my company reduce…

  • Cyber Risk

    Getting Started with Cyber Risk Quantification and Decisioning

    Over the last few years, there has been increasing interest by CISOs and business leaders in cybersecurity risk quantification. Many of the CISOs we are working with are keen to connect security risk to the language of business. In this article, Graeme Payne reviews how cyber risk quantification and decisioning can be used to communicate…

  • 15 Practical Tips for More Effective Cybersecurity Incident Response

    15 Practical Tips for More Effective Cybersecurity Incident Response

    Building an effective cyber incident response plan requires more than having the right tools in place or engaging the right cyber incident response services. As a security leader, you’re responsible for building the right security foundation and fostering a culture of teamwork and open dialogue during a crisis. Summarizing a recent webinar, this article will…

  • MITRE ATT&CK & D3FEND: Step-by-Step Guide to Closing Security Visibility Gaps

    In this article, summarized from a recent managed detection and response webinar, we’ll explain what MITRE D3FEND is, how it complements the MITRE ATT&CK framework, and how you can use it to identify and close gaps in security visibility. It’s no secret that cybercrime is on the rise with attacks happening more frequently and for…

  • What’s Next in Cybersecurity: Predictions from Andrew Howard

    Every year, the cybersecurity sector publishes articles on what we can expect to see in the course of the year. This article, published originally in InfoSec on August 8, 2022 by Ali Hadley looks at the predictions Kudelski Security CEO, Andrew Howard, made at the beginning of 2022 in a podcast with Infosec. As we…

  • Can Zero Trust be a business enabler? It’s all about perception.

    It was back in 2017 that the Economist predicted data would replace crude oil as the world’s most valuable resource and that there would be a new “asset-light” economy built on digital rather than physical infrastructures. In hindsight, we could say, yes, of course that’s the case. We know the value of data and those…