ISACA always does a great job with conferences. The conference name may change from ISACA CACS to ISACA Conference to Digital Trust World in Boston, but the quality is the same. The attendance is well beyond 2019 levels. #digitaltrustworld Presenting “5…lnkd.in/gS3_SKnh

“Only overnight trauma and stroke services have been impacted” Are we being this desensitized to ransomware? #cybersecurity #cybersecurityleadership #cisos #ransomware #heathitsecurity From the Cybersecurity Collaborative Daily Morning Security Report lnkd.in/gnKvQueP

With $10M in reward money, it would appear that we are a long ways away from the attacker doing any time. #cisos #cybersecurityleadership #ransomware From the Cybersecurity Collaborative Daily Morning Security Report lnkd.in/gNKiNacy

One of the many joys I am privileged to experience in cybersecurity is teaching the IT Risk Management and Cybersecurity Leadership courses at Northwestern University McCormick School of Engineering for the MSIT program. I like to ‘bring the CISO real…lnkd.in/gzKAT8iE

It is amazing in this world that all of us are not clicking on a phishing page or malicious webpage. End user training is essential, however equally so are the technical controls which prevent these from reaching the end user. #ph…lnkd.in/epsEJGeh lnkd.in/eKFAtw62

Do you think other states will follow? Or will be have a sensible Federal approach to resolving these disagreements? Nothing against the citizens of Montana, but this is the same state that when the DHHS lost medical records on all…lnkd.in/gpJwxg-X lnkd.in/g4J5k64r

Unlike our US lawmakers approach to fixing social security and Medicare shortfalls by kicking the can down the road for future politicians to deal with, the issue with Quantum Computing emerging threats is that once the capability…lnkd.in/gCCRySsd lnkd.in/gaSREaVM

People understand physical wars and the need for strong military defenses. The question is - are our companies increasing investments in cybersecurity during war-time conflicts (beyond the Dod/Homeland Security)? Are we appropriate…lnkd.in/gwySkeBY lnkd.in/gTkuJx2W

Please join Ranjana Chawla and myself as we discuss an issue that is so critical, and unfortunately not addressed as it should be. The time to prepare for the upcoming SEC rule is now. lnkd.in/gdYeEJfa

Is Generative AI ready for prime time? It will be interesting to see how fast the $1M, in 10K increments is paid out in "round one", as security analysts work to improve the technology. While this is a useful tool, it is still a to…lnkd.in/g8S6mRxS lnkd.in/ge8VHZrn

With every new technology, we have a period to muddle through to figure out how to secure it. Are you putting the brakes on it first? #cybersecurityleadership #cisos #chatgpt #generativeai #bardai From the Cybersecurity Collaborative Daily Morning Securit…lnkd.in/gtsh_8bX

With the recent actions in the Joe Sullivan case, many CISOs questioned whether or not they should have their own legal counsel. Join my longtime friend, experienced lawyer and Judge Larry Dietz as we explore this issue. lnkd.in/gtdSGv_M

Unfortunately too many companies approach cybersecurity as an ad-on, ad-hoc activity vs a systematic part of delivering products and services. The report from the Cybersecurity Collaborative Daily Morning Security Report highlights…lnkd.in/gUxssw_q lnkd.in/gwTJav5c

I'm speaking at Proposed SEC Cyber Rule: 4-Steps To Uncover Your Material Risks. Would you like to attend? This is something every organization should be preparing for now. lnkd.in/gu9TqTtQ

Join us TODAY 6/14/23 at 12PM-12:30PM EST while we discuss this very important issue and Material Risk Considerations to the SEC Cyber Rule! lnkd.in/gSqsR_KN

It bogles the mind to think of how many attacks are placed on this infrastructure every day. Join us as Rob Duhart Jr. discusses the challenges and defense of a critical e-commerce platform, with lessons companies large and small can leverage. lnkd.in/g7ukiBfh

It was a fun time moderating a panel on ChatGPT, Generative AI, and Machine learning from a CISO point of view, with a stellar panel of Shafia Z. Sarah Buerger CISSP @betts_wendy and Elizabeth Ogunti, CISA, CRISC, CISM . ISSA Chicago Chapter always does…lnkd.in/g5pyRWdV

Phishing still remains the predominant method of entry to systems. User awareness training is necessary, but not sufficient. Endpoint protection, anti-malware tools, email gateways limiting access, network segmentation, all must be…lnkd.in/gKUWGp8j lnkd.in/gz3KdpDY

I spoke at my first COSAC Security Conference 15 years ago, at the halfway point. David Lynas and John Sherwood with frequent presentations by Andy Clark (creators of the The SABSA Institute ), have led a group of experienced security leaders to discuss a…lnkd.in/g6S49maY

If a company says they are “unaware of any misuse of the confidential information (stolen during a breach)” does that give you a warm and fuzzy? Does this make the breach sound better? Or does it mean they haven’t seen the evidence…lnkd.in/gDntYMzg lnkd.in/gT-rx5K4