Cybersecurity is not a low-skill field. It requires general IT knowledge, specialist cybersecurity certifications, and, sometimes, knowledge about particular industry sectors such as finance and health. We need talented, skilled professionals to meet the demand. And we don’t need them in a few years – we need them now. How do we get enough people in the pipeline to meet the growing need?
GSOC, SOC, VSOC, JSOC, NOC, INSOC... The possibilities are endless when it comes to a center, building, or facility that mitigates and responds to enterprise security issues, either within the U.S. or on a global level.
Whether you’re establishing your firm’s first Global Security Operations Center (GSOC), including a co-located Network Security Operations Center (NSOC) or refreshing your current GSOC’s and/or NSOC’s capabilities, here are my recommendations for success.
Today’s center of gravity in cybersecurity is shifting, pulling the skills and experience of cyber defenders in new directions. In most companies, this situation has led to a convergence of responsibilities between physical security, information security and cybersecurity teams, and an increased commitment to “staffing-up” of dedicated “cyber defenders.”
Improving employees’ cybersecurity awareness often hinges on communicating those initiatives into risks they understand.
March 1, 2017
There’s a C- on your report card, but you’re not alone: The 2017 Global Cybersecurity Assurance Report Card found that the world’s information security practitioners gave global cybersecurity readiness an overall score of 70 percent – a six-point drop over 2016.
Cities big and small are making their way into the smart realm, putting sensors on everything from street lights to sensors, buildings to connected cars, and thus, making themselves “smart.”
There have been volumes written about the role of the CSO and how to gain a seat at the table in the C-suite. A relatively small number of CSOs have been able to convince their management that the CISO should be under their purview, citing the inherent mission conflicts that exist when the CISO reports to the CIO.
Analyzing the background of security leaders across the corporate security and risk management landscape, it is not surprising to see that a significant percentage of them have come from the public sector.