Ransomware is a complex threat, but its impact can be lessened, says Thomas Gresham.
Many organizations still hesitate to move to the cloud. Why?
The one-throat-to-choke theory is a fallacy, says David Shearer, CEO, (ISC)².
Containment solutions can help stop the spread of malware, says Bufferzone CEO Israel Levy.
Companies can benefit by using a complex security approach, says A1QA's Aleksey Abramovich.
Invest in the talented women on your team, says Joyce Brocaglia.
This is an exciting - albeit overwhelming - time for security pros, says Daniel Polly.
Vendors bundling software with open source libraries caught the IT community unprepared, says Secunia's Kasper Lindgaard.
A single solution won't stop data theft, says ADP's Roland Cloutier.
The rise of IoT will require a completely new approach to network security, says vArmour CEO Timothy Eades.
An ill-informed worker is a weak link that leaves a giant gap in your defenses, says SOHO Solutions VP Scott Aurnou.
Every enterprise is susceptible to a breach, unless something changes, says Craig Shumard, principal of Shumard and Associates.
Cooperation is required to advance the profession, says Towerwall's Candy Alexander.
With parameters, new tech can help your business, says McAfee's Jonathan Fox and Tyson Macaulay.
It's possible to safely manage the security risks posed by BYOD, says Anders Lofgren at Acronis Access.
Nation-states are flexing their muscles in the cyber realm, says Avatier's Ryan Ward.
Many groups have striven to cultivate a more welcoming workplace, says Alison Gianotto.
Chip technology can prevent criminals from producing counterfeit credit cards.
Exec buy-in and new tech can help fight cyber threats, says BitSight's Stephen Boyer.
Recent breaches prompt a new emphasis on education and corporate culture, says Allegis Capital's Bob Ackerman.
Let's agree on a definition of the term "security" and move forward from there, says AT&T's Chris Mark.
The malicious insider or outsider does not stop on the first attempt, says Verdasys' Peter Tyrrell.
Don't hang your hat on enterprise app store security, says Jack Walsh at ICSA Labs.
We don't need to make the same mistakes of the first generation of PCs and servers, says the SANS Institute's John Pescatore.
Cloud providers must be evaluated before moving operations, says the DTCC's Mark Clancy.
Robust enterprise security requires more than checking compliance boxes, says Diebold CSO Adam Williams.
Managing privacy is moving toward collaboration, communication and education, says Ernst & Young's Sagi Leizerov.
To defend against evolving threats, prepare and maintain vigilance, says DTCC's Parthiv Shah.
The rule may help leaders better understand the impact of cyber risks, says PwC's David Burg and Laurie Schive.
Espionage and fraud in cyber is not an armed conflict, says SystemExpert's Jonathan Gossels.
Prior to a job switch, ask questions to learn if the company you are considering is in good shape, says former Yahoo CISO Justin Somaini.
Security pros should be less secretive, says New York City CISO Dan Srebnick.
If we want the best minds, we can no longer look to only half the population, says Karen Purcell.
2013 may be the year that U.S. companies strike back at their cyber adversaries, says Taia Global's Jeffrey Carr.
Though standards lack, sharing threat data is vital, says EMC's Christopher Harrington.
We must resolve issues around data sovereignty, says Capgemini's Joe Coyle.
Flame's cryptofunctionality silenced all the haters, says F-Secure's Mikko Hyppönen.
Only through collaboration can government and the private sector thwart cyber attacks, says Raymond Choo.
Expect a sea change in digital security over the coming years, says Richard Bejtlich.
Today's firms must identify people who have knowledge from disparate areas, says Tracey Wilen-Daugenti.
The operating environment itself must be altered, says Verdasys' Dan Geer.
Be patient and give staffers a real chance to show their stuff, says Michael Potters, CEO of the Glenmont Group.
...nevertheless, companies need to do a better job of protecting IP, says Adam Segal.
Data protection laws can be more effective if simpler, says JAS Global Advisors' Jeff Schmidt.
It's time to rethink the basic approach to protecting our businesses, and new technologies are leading the way, says Cisco CSO John Stewart.
To avoid past mistakes, one should appeal to outside experts, says Kyrus CTO Michael Tanji.
At present, unlike car safety, there are no standards for malware prevention, says George Ledin, a professor at Sonoma State University.
Assessing what level of risk is acceptable to one's business is key to any move to the cloud, says Siobhan Byron, president of Forsythe Technology Canada.
The time is ripe for open dialogue around teaching trust, says RSA Conference's Hugh Thompson.
Sign up to our newsletters
SC Magazine Articles
- CISO salaries and demand for cyber-skills skyrockets, surprising no-one
- Malwarebytes says sorry for multiple AV bugs, still unpatched
- Ransomware and POS attackers to zero in on small businesses, retailers
- TaxAct breached: Customer banking and Social Security information compromised
- Student SSNs exposed in University of Central Florida breach