Risk Identification/Classification/Mitigation

Redefining Risk: Inside the Launch of Axonius Exposures with CISO – Lenny Zeltser – RSAC25 #1

April 28, 2025

In this interview, Axonius CISO Lenny Zeltser shares the vision behind Axonius Exposures, the company’s latest innovation in unified risk management. Launched ahead of RSA Conference 2025, Exposures tackles one of the most persistent challenges in cybersecurity today: making sense of fragmented risk signals to drive confident, actionable decision-m...

Leadership

The Pace of Investments Requires Better Risk Management, Boards Challenged, & More – Greg Sullivan – BSW #388

March 26, 2025

Cybersecurity teams were under increasing strain in 2024. To alleviate this burden, 2025 will see greater reliance on automation to streamline workflows, enhance threat detection, and accelerate incident response. But some of these investments may come with risks. Greg Sullivan, Founding Partner at CIOSO Global, joins Business Security Weekly to d...

Cybersecurity insurance

Why your cyber insurance may not cover everything: Finding and fixing blind spots

Paul WagenseilMarch 26, 2025

You may think you're fully covered by your cybersecurity insurance carrier — until you file a claim. Here’s why most claims aren't 100% compensated, and how you can make sure yours will be.

Identity

Securing AI: How identity security is key to trusting AI in the enterprise

Paul WagenseilMarch 17, 2025

Your in-house AI agent must be properly protected and handled. Here's why to treat it as a privileged user governed by privileged access management.

Encryption

Hidden flaws exist in millions of RSA digital certificates

Paul WagenseilMarch 13, 2025

Keyfactor research finds that about 18% of RSA-based digital certificates have flaws ranging from trivial to very serious. A new tool promises to find them.

Incident Response

How to break down barriers to cyber resilience

Paul WagenseilFebruary 18, 2025

The survival of your business may depend on its degree of cyber resilience, or how quickly it can recover from a crippling systems outage. Here's what stands in the way and how to overcome it.

Application security

Threat Modeling That Helps the Business – Sandy Carielli, Akira Brand – ASW #316

February 4, 2025

Threat modeling has been in the appsec toolbox for decades. But it hasn't always been used and it hasn't always been useful. Sandy Carielli shares what she's learned from talking to orgs about what's been successful, and what's failed, when they've approached this practice. Akira Brand joins to talk about her direct experience with building threat ...

Industry Regulations

Similarities Between SOX And SEC’s Cyber Rule – Padraic O’Reilly – BSW #373

November 18, 2024

The Sarbanes-Oxley (SOX) Act was a watershed moment in corporate governance, fundamentally altering how companies approached financial reporting and internal operational controls. By holding executives personally accountable for the accuracy of financial reports, SOX restored investor confidence in the wake of corporate malfeasance. The SEC's new...