home.social

#cisos — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #cisos, aggregated by home.social.

  1. Wie man sich in den nächsten 12 Monaten auf #KI-gestützte #Cyberbedrohungen vorbereitet: Die Cloud Security Alliance (#CSA) und das SANS Institute haben gemeinsam mit 250 #CISOs ein Strategie-Briefing veröffentlicht, das die Bedrohungslage durch KI-gestützte #Schwachstellenanalyse bewertet.

    Organisationen müssen ihre Risikomodelle in der #Cybersicherheit grundlegend neu gestalten. Vorgeschlagen wird deshalb ein 12-Monats-Plan für ein "#Mythos-ready Security Program":

    labs.cloudsecurityalliance.org

  2. Wie man sich in den nächsten 12 Monaten auf #KI-gestützte #Cyberbedrohungen vorbereitet: Die Cloud Security Alliance (#CSA) und das SANS Institute haben gemeinsam mit 250 #CISOs ein Strategie-Briefing veröffentlicht, das die Bedrohungslage durch KI-gestützte #Schwachstellenanalyse bewertet.

    Organisationen müssen ihre Risikomodelle in der #Cybersicherheit grundlegend neu gestalten. Vorgeschlagen wird deshalb ein 12-Monats-Plan für ein "#Mythos-ready Security Program":

    labs.cloudsecurityalliance.org

  3. Wie man sich in den nächsten 12 Monaten auf #KI-gestützte #Cyberbedrohungen vorbereitet: Die Cloud Security Alliance (#CSA) und das SANS Institute haben gemeinsam mit 250 #CISOs ein Strategie-Briefing veröffentlicht, das die Bedrohungslage durch KI-gestützte #Schwachstellenanalyse bewertet.

    Organisationen müssen ihre Risikomodelle in der #Cybersicherheit grundlegend neu gestalten. Vorgeschlagen wird deshalb ein 12-Monats-Plan für ein "#Mythos-ready Security Program":

    labs.cloudsecurityalliance.org

  4. Wie man sich in den nächsten 12 Monaten auf #KI-gestützte #Cyberbedrohungen vorbereitet: Die Cloud Security Alliance (#CSA) und das SANS Institute haben gemeinsam mit 250 #CISOs ein Strategie-Briefing veröffentlicht, das die Bedrohungslage durch KI-gestützte #Schwachstellenanalyse bewertet.

    Organisationen müssen ihre Risikomodelle in der #Cybersicherheit grundlegend neu gestalten. Vorgeschlagen wird deshalb ein 12-Monats-Plan für ein "#Mythos-ready Security Program":

    labs.cloudsecurityalliance.org

  5. Wie man sich in den nächsten 12 Monaten auf #KI-gestützte #Cyberbedrohungen vorbereitet: Die Cloud Security Alliance (#CSA) und das SANS Institute haben gemeinsam mit 250 #CISOs ein Strategie-Briefing veröffentlicht, das die Bedrohungslage durch KI-gestützte #Schwachstellenanalyse bewertet.

    Organisationen müssen ihre Risikomodelle in der #Cybersicherheit grundlegend neu gestalten. Vorgeschlagen wird deshalb ein 12-Monats-Plan für ein "#Mythos-ready Security Program":

    labs.cloudsecurityalliance.org

  6. Vulnerabilidades en proveedores y falta de skills – los dos frentes más críticos para los CISOs

    La ciberseguridad corporativa atraviesa un punto de máxima complejidad. Por un lado, los ataques a la cadena de suministro alcanzaron niveles récord: los actores maliciosos ya no apuntan solo a las empresas, sino a sus proveedores, integraciones SaaS y servicios de terceros (Fuente CertiSur). 

    Por el otro, las organizaciones enfrentan una escasez creciente de talento especializado capaz de anticipar y gestionar estos riesgos interconectados. Esta doble presión convierte a la seguridad de proveedores y al déficit de skills en los desafíos más urgentes para los CISOs en 2026.

    En este contexto, cada nuevo partner tecnológico suma una posible puerta de entrada y obliga a reforzar auditorías, monitoreo continuo y acuerdos de seguridad más estrictos. A la vez, la falta de profesionales capacitados para operar, escalar y automatizar estrategias de defensa deja a los equipos internos sobreexigidos, intentando hacer más con menos.

    Esta realidad se confirma en un reciente informe de BrandShield, que consultó a 200 CISOs sobre los principales riesgos que enfrentan hoy las organizaciones. El estudio revela una dispersión de amenazas que refleja la complejidad del ecosistema digital. 

    Las 10 amenazas que más preocupan a los CISOs

    • Phishing
    • Malware y ransomware
    • Suplantación de marca
    • Filtración de datos y credenciales
    • Ataques a la cadena de suministro
    • Vulnerabilidades en software de terceros
    • Amenazas internas
    • Fraudes en redes sociales y sitios falsos
    • Deepfakes y manipulación de identidad
    • Riesgos asociados a IA generativa

    La conclusión es contundente: no existe una amenaza dominante. “Los niveles de preocupación están repartidos de manera pareja, lo que indica que los CISOs hoy enfrentan un ecosistema de riesgos interconectados que se potencian entre sí”, explicó Néstor Markowicz, COO de CertiSur.

    Esto exige abandonar el enfoque tradicional de priorizar un único riesgo y avanzar hacia una defensa integral basada en múltiples capas de seguridad, que incluya:

    • Automatizar la gestión de certificados
    • Detectar y desactivar amenazas en tiempo real
    • Incorporar autenticación multifactor (MFA)
    • Aumentar la visibilidad sobre accesos, sistemas expuestos y terceros

    El panorama actual demuestra que el ciberdelito ya no opera en compartimentos aislados. Una campaña de phishing puede ser la antesala de un ransomware; una identidad digital manipulada mediante deepfake puede habilitar accesos críticos; una filtración en un proveedor puede comprometer a toda la organización.

    “Hoy la ciberseguridad es un tema de negocio, no solo de tecnología”, subrayó Markowicz. “Un ataque puede detener la operación completa de una empresa, generar pérdidas significativas y afectar su reputación. Con amenazas diversas y altamente conectadas, un incidente aislado puede escalar muy rápido”.

    Frente a este escenario, la prioridad es ganar visibilidad y automatizar. “El primer paso es saber qué certificados, accesos y sistemas están expuestos. Luego, automatizar su gestión, sumar MFA y concientizar equipos. Esa combinación reduce de inmediato la superficie de ataque y prepara a la organización para responder de manera ágil ante cualquier incidente”, concluyó el COO.

    #arielmcorg #certisur #cisos #infosertec #phishing #PORTADA #skillsSeguridad

  7. #CISOs and analysts need clarity—not another #AI system that makes unverifiable decisions. 😓 With Model Context Protocol (MCP) you can get that clarity! 🤩 It provides explainable, governed, and verifiable AI assistance that improves investigation speed and SOC efficiency. And, this is where tangible ROI really emerges.

    So, how exactly does MCP deliver ROI? It provides:
    1️⃣ Faster investigations with verifiable context
    2️⃣ Explainable results that analysts can trust
    3️⃣ More productive teams with fewer escalations
    4️⃣ Governance for AI usage

    Learn about practical steps for implementing MCP in your SOC, download the the Ultimate Guide to MCP, and more.👇

    graylog.org/post/mcp-roi-in-a- #CyberSecurity #InfoSec #SIEM

  8. #Cybersicherheit in messbare #Geschäftswerte verwandeln: Wer in betrieblichem #Cybersecurity #Management keine wirtschaftlich messbaren Vorteile sieht, investiert im Regelfall auch nicht, so eine neue Gartner-Umfrage.

    An derlei Ergebnissen wird vor allem die zentrale menschliche Rolle deutlich, die #CISOs im Unternehmen haben, nämlich die Komplexität von Cybersecurity in messbare Geschäftswerte wie Umsatz, Kosten und Auswirkungen auf den Shareholder Value zu übersetzen:

    gartner.com/en/newsroom/press-

  9. #Cybersicherheit in messbare #Geschäftswerte verwandeln: Wer in betrieblichem #Cybersecurity #Management keine wirtschaftlich messbaren Vorteile sieht, investiert im Regelfall auch nicht, so eine neue Gartner-Umfrage.

    An derlei Ergebnissen wird vor allem die zentrale menschliche Rolle deutlich, die #CISOs im Unternehmen haben, nämlich die Komplexität von Cybersecurity in messbare Geschäftswerte wie Umsatz, Kosten und Auswirkungen auf den Shareholder Value zu übersetzen:

    gartner.com/en/newsroom/press-

  10. #Cybersicherheit in messbare #Geschäftswerte verwandeln: Wer in betrieblichem #Cybersecurity #Management keine wirtschaftlich messbaren Vorteile sieht, investiert im Regelfall auch nicht, so eine neue Gartner-Umfrage.

    An derlei Ergebnissen wird vor allem die zentrale menschliche Rolle deutlich, die #CISOs im Unternehmen haben, nämlich die Komplexität von Cybersecurity in messbare Geschäftswerte wie Umsatz, Kosten und Auswirkungen auf den Shareholder Value zu übersetzen:

    gartner.com/en/newsroom/press-

  11. #Cybersicherheit in messbare #Geschäftswerte verwandeln: Wer in betrieblichem #Cybersecurity #Management keine wirtschaftlich messbaren Vorteile sieht, investiert im Regelfall auch nicht, so eine neue Gartner-Umfrage.

    An derlei Ergebnissen wird vor allem die zentrale menschliche Rolle deutlich, die #CISOs im Unternehmen haben, nämlich die Komplexität von Cybersecurity in messbare Geschäftswerte wie Umsatz, Kosten und Auswirkungen auf den Shareholder Value zu übersetzen:

    gartner.com/en/newsroom/press-

  12. #Cybersicherheit in messbare #Geschäftswerte verwandeln: Wer in betrieblichem #Cybersecurity #Management keine wirtschaftlich messbaren Vorteile sieht, investiert im Regelfall auch nicht, so eine neue Gartner-Umfrage.

    An derlei Ergebnissen wird vor allem die zentrale menschliche Rolle deutlich, die #CISOs im Unternehmen haben, nämlich die Komplexität von Cybersecurity in messbare Geschäftswerte wie Umsatz, Kosten und Auswirkungen auf den Shareholder Value zu übersetzen:

    gartner.com/en/newsroom/press-

  13. Choosing a #SIEM doesn’t have to mean trade-offs! 🔄 Watch this video and learn how you can get fast detection, predictable costs, and analyst-friendly workflows — without the compromises that hold legacy platforms back. 🙌

    Legacy ingest-based SIEMs force #security teams to pick between visibility, cost, and analyst efficiency. But there's a different model that offers flat, transparent pricing, license-free data lake storage, and flexible deployment options — running natively on #AWS.

    With this model you can:
    ✅ Retain all logs without breaking the budget using tiered routing and AWS-backed storage
    ✅ Cut alert fatigue with campaign-based threat correlation mapped to MITRE ATT&CK
    ✅ Reduce triage from 20 minutes to 2 minutes with context-aware investigations
    ✅ Streamline compliance with built-in audit trails, automated reports, and long-term searchable archives
    ✅ Scale effortlessly with search performance tested at 100+ TB/day

    Whether you’re a SOC lead, a #CISO, or a team struggling with AWS log onboarding — see how you can get complete visibility, smarter detection, and cost control in this "Hot 10 Minute Take" with Seth Goldhammer.👇

    graylog.org/resources/graylog- #CyberSecurity #CISOs #AlertFatigue

  14. #CISOs need to lead in multiple directions at once: upward to execs, downward to analysts, and laterally to peers. ⬆️ ⬇️ ↔️ 😬 Not an easy thing! It's a complex leadership role, to say the least. Alignment and communication are critical to maintaining effectiveness within #security teams — and CISOs are on the line to deliver.

    In this article, Jim Nitterauer details several strategies that CISOs can employ, to make this happen. Some of Jim's advice includes:

    ☑️ Translating strategy into actionable guidance
    ☑️ Making security policies enablers, not bottlenecks
    ☑️ Redefining metrics through a human lens
    ☑️ Integrating compliance into everyday workflows

    Check out his article in Cybersecurity Insiders to learn about these and other strategies.

    🔗 cybersecurity-insiders.com/bui #CISO #leadership #cybersecurity

  15. Ça y est, c'est aujourd'hui! 🎉

    Polar est officiellement lancée – la conférence incontournable pour les leaders, gestionnaires et responsables techniques en cybersécurité!

    Rejoignez-nous pour une journée riche en apprentissages, en échanges inspirants et en rencontres avec la communauté, au Capitole Hôtel - Le Confessionnal.

    ✨ Moment spécial: Le Ministre de la Cybersécurité et du Numérique, Gilles Bélanger, sera présent pour parler à la communauté!

    🔗 Découvrez le programme complet: polarcon.ca/

    Merci à TELUS, notre partenaire principal, pour leur soutien exceptionnel! 🙌

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    It's here, it's today! 🎉

    Polar is officially launched – the must-attend conference for leaders, managers, and cybersecurity professionals!

    Join us for a day filled with learning, inspiring exchanges, and connections with the community, at the Capitole Hotel - Le Confessionnal.

    ✨ Special moment: Minister of Cybersecurity and Digital Technology, Gilles Bélanger, will be present to speak with the community!

    🔗 Discover the full program: polarcon.ca/

    Thank you to Telus, our principal partner, for your exceptional support! 🙌

  16. Ça y est, c'est aujourd'hui! 🎉

    Polar est officiellement lancée – la conférence incontournable pour les leaders, gestionnaires et responsables techniques en cybersécurité!

    Rejoignez-nous pour une journée riche en apprentissages, en échanges inspirants et en rencontres avec la communauté, au Capitole Hôtel - Le Confessionnal.

    ✨ Moment spécial: Le Ministre de la Cybersécurité et du Numérique, Gilles Bélanger, sera présent pour parler à la communauté!

    🔗 Découvrez le programme complet: polarcon.ca/

    Merci à TELUS, notre partenaire principal, pour leur soutien exceptionnel! 🙌

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    It's here, it's today! 🎉

    Polar is officially launched – the must-attend conference for leaders, managers, and cybersecurity professionals!

    Join us for a day filled with learning, inspiring exchanges, and connections with the community, at the Capitole Hotel - Le Confessionnal.

    ✨ Special moment: Minister of Cybersecurity and Digital Technology, Gilles Bélanger, will be present to speak with the community!

    🔗 Discover the full program: polarcon.ca/

    Thank you to Telus, our principal partner, for your exceptional support! 🙌

  17. Ça y est, c'est aujourd'hui! 🎉

    Polar est officiellement lancée – la conférence incontournable pour les leaders, gestionnaires et responsables techniques en cybersécurité!

    Rejoignez-nous pour une journée riche en apprentissages, en échanges inspirants et en rencontres avec la communauté, au Capitole Hôtel - Le Confessionnal.

    ✨ Moment spécial: Le Ministre de la Cybersécurité et du Numérique, Gilles Bélanger, sera présent pour parler à la communauté!

    🔗 Découvrez le programme complet: polarcon.ca/

    Merci à TELUS, notre partenaire principal, pour leur soutien exceptionnel! 🙌

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    It's here, it's today! 🎉

    Polar is officially launched – the must-attend conference for leaders, managers, and cybersecurity professionals!

    Join us for a day filled with learning, inspiring exchanges, and connections with the community, at the Capitole Hotel - Le Confessionnal.

    ✨ Special moment: Minister of Cybersecurity and Digital Technology, Gilles Bélanger, will be present to speak with the community!

    🔗 Discover the full program: polarcon.ca/

    Thank you to Telus, our principal partner, for your exceptional support! 🙌

  18. Ça y est, c'est aujourd'hui! 🎉

    Polar est officiellement lancée – la conférence incontournable pour les leaders, gestionnaires et responsables techniques en cybersécurité!

    Rejoignez-nous pour une journée riche en apprentissages, en échanges inspirants et en rencontres avec la communauté, au Capitole Hôtel - Le Confessionnal.

    ✨ Moment spécial: Le Ministre de la Cybersécurité et du Numérique, Gilles Bélanger, sera présent pour parler à la communauté!

    🔗 Découvrez le programme complet: polarcon.ca/

    Merci à TELUS, notre partenaire principal, pour leur soutien exceptionnel! 🙌

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    It's here, it's today! 🎉

    Polar is officially launched – the must-attend conference for leaders, managers, and cybersecurity professionals!

    Join us for a day filled with learning, inspiring exchanges, and connections with the community, at the Capitole Hotel - Le Confessionnal.

    ✨ Special moment: Minister of Cybersecurity and Digital Technology, Gilles Bélanger, will be present to speak with the community!

    🔗 Discover the full program: polarcon.ca/

    Thank you to Telus, our principal partner, for your exceptional support! 🙌

  19. Ça y est, c'est aujourd'hui! 🎉

    Polar est officiellement lancée – la conférence incontournable pour les leaders, gestionnaires et responsables techniques en cybersécurité!

    Rejoignez-nous pour une journée riche en apprentissages, en échanges inspirants et en rencontres avec la communauté, au Capitole Hôtel - Le Confessionnal.

    ✨ Moment spécial: Le Ministre de la Cybersécurité et du Numérique, Gilles Bélanger, sera présent pour parler à la communauté!

    🔗 Découvrez le programme complet: polarcon.ca/

    Merci à TELUS, notre partenaire principal, pour leur soutien exceptionnel! 🙌

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    It's here, it's today! 🎉

    Polar is officially launched – the must-attend conference for leaders, managers, and cybersecurity professionals!

    Join us for a day filled with learning, inspiring exchanges, and connections with the community, at the Capitole Hotel - Le Confessionnal.

    ✨ Special moment: Minister of Cybersecurity and Digital Technology, Gilles Bélanger, will be present to speak with the community!

    🔗 Discover the full program: polarcon.ca/

    Thank you to Telus, our principal partner, for your exceptional support! 🙌

  20. More ITSPmagazine's Remote - yet amazing - CyberCon Melbourne Coverage!

    Sean Martin, CISSP and I reconnected with our friend Tim Brown, CISO at SolarWinds, who is keynoting the event talking about Leading Through Crisis, Trust, Context, and Resilience.

    Tim Brown's job changed overnight. December 11th, he was managing security operations at SolarWinds. December 12th, he was leading response to one of cybersecurity's most scrutinized incidents.

    We caught up with our longtime friend from New York and Florence to Melbourne ahead of his keynote at #AISA CyberCon. Tim became the first CISO ever charged by the SEC—a distinction nobody wants, but one that shaped his mission to help others prepare for their own crisis moments.

    What saved SolarWinds? Implicit trust. The war room team operated without second-guessing because relationships were built before December 2020.

    Tim's CIO handled deployment. Engineering investigated the build system. Marketing and legal managed their domains. Everyone knew their role.

    "400 engineers focused completely on security for six months in pure focus.

    When you say it with emotion, it conveys the real cost," Tim explains. Written communication failed during the incident. People needed to hear, to feel the weight of decisions in real time.

    Tim now mentors aspiring #CISOs through the RSA Conference CISO Bootcamp, teaching the non-technical aspects of security leadership: board communication, managing stress, building culture. He's candid about the toll—including a heart attack in Zurich the week his SEC charges were announced—and why finding your safe place isn't a luxury, it's survival.

    His CyberCon keynote covers incident response stages and how culture determines who steps up versus who runs away when crisis hits.

    Watch or listen:

    🎬 Full Interview: youtu.be/4jqx_IshhWI

    🎧 Podcast: itspradio.com/episodes/first-c

    🎬 Highlights: youtu.be/z5_GJEuBNdU

    Click here for the full coverage with more interviews with Jacqueline Jayne, Amberley Brady, and more to come!

    If you're leading security teams or aspiring to, Tim's lessons are essential. Build trust now, before you need it.

    #CISO #Leadership #IncidentResponse #Cybersecurity #CyberConMelbourne #SolarWinds #CrisisManagement #SecurityLeadership #infosec

  21. More ITSPmagazine's Remote - yet amazing - CyberCon Melbourne Coverage!

    Sean Martin, CISSP and I reconnected with our friend Tim Brown, CISO at SolarWinds, who is keynoting the event talking about Leading Through Crisis, Trust, Context, and Resilience.

    Tim Brown's job changed overnight. December 11th, he was managing security operations at SolarWinds. December 12th, he was leading response to one of cybersecurity's most scrutinized incidents.

    We caught up with our longtime friend from New York and Florence to Melbourne ahead of his keynote at #AISA CyberCon. Tim became the first CISO ever charged by the SEC—a distinction nobody wants, but one that shaped his mission to help others prepare for their own crisis moments.

    What saved SolarWinds? Implicit trust. The war room team operated without second-guessing because relationships were built before December 2020.

    Tim's CIO handled deployment. Engineering investigated the build system. Marketing and legal managed their domains. Everyone knew their role.

    "400 engineers focused completely on security for six months in pure focus.

    When you say it with emotion, it conveys the real cost," Tim explains. Written communication failed during the incident. People needed to hear, to feel the weight of decisions in real time.

    Tim now mentors aspiring #CISOs through the RSA Conference CISO Bootcamp, teaching the non-technical aspects of security leadership: board communication, managing stress, building culture. He's candid about the toll—including a heart attack in Zurich the week his SEC charges were announced—and why finding your safe place isn't a luxury, it's survival.

    His CyberCon keynote covers incident response stages and how culture determines who steps up versus who runs away when crisis hits.

    Watch or listen:

    🎬 Full Interview: youtu.be/4jqx_IshhWI

    🎧 Podcast: itspradio.com/episodes/first-c

    🎬 Highlights: youtu.be/z5_GJEuBNdU

    Click here for the full coverage with more interviews with Jacqueline Jayne, Amberley Brady, and more to come!

    If you're leading security teams or aspiring to, Tim's lessons are essential. Build trust now, before you need it.

    #CISO #Leadership #IncidentResponse #Cybersecurity #CyberConMelbourne #SolarWinds #CrisisManagement #SecurityLeadership #infosec

  22. More ITSPmagazine's Remote - yet amazing - CyberCon Melbourne Coverage!

    Sean Martin, CISSP and I reconnected with our friend Tim Brown, CISO at SolarWinds, who is keynoting the event talking about Leading Through Crisis, Trust, Context, and Resilience.

    Tim Brown's job changed overnight. December 11th, he was managing security operations at SolarWinds. December 12th, he was leading response to one of cybersecurity's most scrutinized incidents.

    We caught up with our longtime friend from New York and Florence to Melbourne ahead of his keynote at #AISA CyberCon. Tim became the first CISO ever charged by the SEC—a distinction nobody wants, but one that shaped his mission to help others prepare for their own crisis moments.

    What saved SolarWinds? Implicit trust. The war room team operated without second-guessing because relationships were built before December 2020.

    Tim's CIO handled deployment. Engineering investigated the build system. Marketing and legal managed their domains. Everyone knew their role.

    "400 engineers focused completely on security for six months in pure focus.

    When you say it with emotion, it conveys the real cost," Tim explains. Written communication failed during the incident. People needed to hear, to feel the weight of decisions in real time.

    Tim now mentors aspiring #CISOs through the RSA Conference CISO Bootcamp, teaching the non-technical aspects of security leadership: board communication, managing stress, building culture. He's candid about the toll—including a heart attack in Zurich the week his SEC charges were announced—and why finding your safe place isn't a luxury, it's survival.

    His CyberCon keynote covers incident response stages and how culture determines who steps up versus who runs away when crisis hits.

    Watch or listen:

    🎬 Full Interview: youtu.be/4jqx_IshhWI

    🎧 Podcast: itspradio.com/episodes/first-c

    🎬 Highlights: youtu.be/z5_GJEuBNdU

    Click here for the full coverage with more interviews with Jacqueline Jayne, Amberley Brady, and more to come!

    If you're leading security teams or aspiring to, Tim's lessons are essential. Build trust now, before you need it.

    #CISO #Leadership #IncidentResponse #Cybersecurity #CyberConMelbourne #SolarWinds #CrisisManagement #SecurityLeadership #infosec

  23. More ITSPmagazine's Remote - yet amazing - CyberCon Melbourne Coverage!

    Sean Martin, CISSP and I reconnected with our friend Tim Brown, CISO at SolarWinds, who is keynoting the event talking about Leading Through Crisis, Trust, Context, and Resilience.

    Tim Brown's job changed overnight. December 11th, he was managing security operations at SolarWinds. December 12th, he was leading response to one of cybersecurity's most scrutinized incidents.

    We caught up with our longtime friend from New York and Florence to Melbourne ahead of his keynote at #AISA CyberCon. Tim became the first CISO ever charged by the SEC—a distinction nobody wants, but one that shaped his mission to help others prepare for their own crisis moments.

    What saved SolarWinds? Implicit trust. The war room team operated without second-guessing because relationships were built before December 2020.

    Tim's CIO handled deployment. Engineering investigated the build system. Marketing and legal managed their domains. Everyone knew their role.

    "400 engineers focused completely on security for six months in pure focus.

    When you say it with emotion, it conveys the real cost," Tim explains. Written communication failed during the incident. People needed to hear, to feel the weight of decisions in real time.

    Tim now mentors aspiring #CISOs through the RSA Conference CISO Bootcamp, teaching the non-technical aspects of security leadership: board communication, managing stress, building culture. He's candid about the toll—including a heart attack in Zurich the week his SEC charges were announced—and why finding your safe place isn't a luxury, it's survival.

    His CyberCon keynote covers incident response stages and how culture determines who steps up versus who runs away when crisis hits.

    Watch or listen:

    🎬 Full Interview: youtu.be/4jqx_IshhWI

    🎧 Podcast: itspradio.com/episodes/first-c

    🎬 Highlights: youtu.be/z5_GJEuBNdU

    Click here for the full coverage with more interviews with Jacqueline Jayne, Amberley Brady, and more to come!

    If you're leading security teams or aspiring to, Tim's lessons are essential. Build trust now, before you need it.

    #CISO #Leadership #IncidentResponse #Cybersecurity #CyberConMelbourne #SolarWinds #CrisisManagement #SecurityLeadership #infosec

  24. More ITSPmagazine's Remote - yet amazing - CyberCon Melbourne Coverage!

    Sean Martin, CISSP and I reconnected with our friend Tim Brown, CISO at SolarWinds, who is keynoting the event talking about Leading Through Crisis, Trust, Context, and Resilience.

    Tim Brown's job changed overnight. December 11th, he was managing security operations at SolarWinds. December 12th, he was leading response to one of cybersecurity's most scrutinized incidents.

    We caught up with our longtime friend from New York and Florence to Melbourne ahead of his keynote at #AISA CyberCon. Tim became the first CISO ever charged by the SEC—a distinction nobody wants, but one that shaped his mission to help others prepare for their own crisis moments.

    What saved SolarWinds? Implicit trust. The war room team operated without second-guessing because relationships were built before December 2020.

    Tim's CIO handled deployment. Engineering investigated the build system. Marketing and legal managed their domains. Everyone knew their role.

    "400 engineers focused completely on security for six months in pure focus.

    When you say it with emotion, it conveys the real cost," Tim explains. Written communication failed during the incident. People needed to hear, to feel the weight of decisions in real time.

    Tim now mentors aspiring #CISOs through the RSA Conference CISO Bootcamp, teaching the non-technical aspects of security leadership: board communication, managing stress, building culture. He's candid about the toll—including a heart attack in Zurich the week his SEC charges were announced—and why finding your safe place isn't a luxury, it's survival.

    His CyberCon keynote covers incident response stages and how culture determines who steps up versus who runs away when crisis hits.

    Watch or listen:

    🎬 Full Interview: youtu.be/4jqx_IshhWI

    🎧 Podcast: itspradio.com/episodes/first-c

    🎬 Highlights: youtu.be/z5_GJEuBNdU

    Click here for the full coverage with more interviews with Jacqueline Jayne, Amberley Brady, and more to come!

    If you're leading security teams or aspiring to, Tim's lessons are essential. Build trust now, before you need it.

    #CISO #Leadership #IncidentResponse #Cybersecurity #CyberConMelbourne #SolarWinds #CrisisManagement #SecurityLeadership #infosec

  25. Conférence de POLAR: “TLP:RED - From Shadows to Spotlight: understanding nation-state cyber threats and their relevance to Canada”
    (EN will follow)

    Pour cette 3e édition de notre conférence POLAR pour CISO, gestionnaires, directeurs et leaders techniques en cybersécurité le 16 octobre, nous aurons le privilège d'entendre Amir Ali & Palo Alto

    Ne manquez pas cette occasion de vous joindre à nous pour cette journée au Capitole Hotel Salle Confessional de Québec. Plus d'informations et achats de billets ICI: polarcon.ca/

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    =====

    Talk at POLAR: “TLP:RED - From Shadows to Spotlight: understanding nation-state cyber threats and their relevance to Canada”

    For this third POLAR edition for CISO, managers, directors and tech leads in cybersecurity on October 16th, we will have the privilege to hear Amir Ali & Palo Alto talk on this subject.

    Don't miss this opportunity to join us at our 1-day banquet conference at the Capitole Hotel Salle Confessional in Québec City. To have more info or buy tickets: polarcon.ca/

  26. Conférence de POLAR: “TLP:RED - From Shadows to Spotlight: understanding nation-state cyber threats and their relevance to Canada”
    (EN will follow)

    Pour cette 3e édition de notre conférence POLAR pour CISO, gestionnaires, directeurs et leaders techniques en cybersécurité le 16 octobre, nous aurons le privilège d'entendre Amir Ali & Palo Alto

    Ne manquez pas cette occasion de vous joindre à nous pour cette journée au Capitole Hotel Salle Confessional de Québec. Plus d'informations et achats de billets ICI: polarcon.ca/

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    =====

    Talk at POLAR: “TLP:RED - From Shadows to Spotlight: understanding nation-state cyber threats and their relevance to Canada”

    For this third POLAR edition for CISO, managers, directors and tech leads in cybersecurity on October 16th, we will have the privilege to hear Amir Ali & Palo Alto talk on this subject.

    Don't miss this opportunity to join us at our 1-day banquet conference at the Capitole Hotel Salle Confessional in Québec City. To have more info or buy tickets: polarcon.ca/

  27. Conférence de POLAR: “TLP:RED - From Shadows to Spotlight: understanding nation-state cyber threats and their relevance to Canada”
    (EN will follow)

    Pour cette 3e édition de notre conférence POLAR pour CISO, gestionnaires, directeurs et leaders techniques en cybersécurité le 16 octobre, nous aurons le privilège d'entendre Amir Ali & Palo Alto

    Ne manquez pas cette occasion de vous joindre à nous pour cette journée au Capitole Hotel Salle Confessional de Québec. Plus d'informations et achats de billets ICI: polarcon.ca/

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    =====

    Talk at POLAR: “TLP:RED - From Shadows to Spotlight: understanding nation-state cyber threats and their relevance to Canada”

    For this third POLAR edition for CISO, managers, directors and tech leads in cybersecurity on October 16th, we will have the privilege to hear Amir Ali & Palo Alto talk on this subject.

    Don't miss this opportunity to join us at our 1-day banquet conference at the Capitole Hotel Salle Confessional in Québec City. To have more info or buy tickets: polarcon.ca/

  28. Conférence de POLAR: “TLP:RED - From Shadows to Spotlight: understanding nation-state cyber threats and their relevance to Canada”
    (EN will follow)

    Pour cette 3e édition de notre conférence POLAR pour CISO, gestionnaires, directeurs et leaders techniques en cybersécurité le 16 octobre, nous aurons le privilège d'entendre Amir Ali & Palo Alto

    Ne manquez pas cette occasion de vous joindre à nous pour cette journée au Capitole Hotel Salle Confessional de Québec. Plus d'informations et achats de billets ICI: polarcon.ca/

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    =====

    Talk at POLAR: “TLP:RED - From Shadows to Spotlight: understanding nation-state cyber threats and their relevance to Canada”

    For this third POLAR edition for CISO, managers, directors and tech leads in cybersecurity on October 16th, we will have the privilege to hear Amir Ali & Palo Alto talk on this subject.

    Don't miss this opportunity to join us at our 1-day banquet conference at the Capitole Hotel Salle Confessional in Québec City. To have more info or buy tickets: polarcon.ca/

  29. Conférence de POLAR: “TLP:RED - From Shadows to Spotlight: understanding nation-state cyber threats and their relevance to Canada”
    (EN will follow)

    Pour cette 3e édition de notre conférence POLAR pour CISO, gestionnaires, directeurs et leaders techniques en cybersécurité le 16 octobre, nous aurons le privilège d'entendre Amir Ali & Palo Alto

    Ne manquez pas cette occasion de vous joindre à nous pour cette journée au Capitole Hotel Salle Confessional de Québec. Plus d'informations et achats de billets ICI: polarcon.ca/

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    =====

    Talk at POLAR: “TLP:RED - From Shadows to Spotlight: understanding nation-state cyber threats and their relevance to Canada”

    For this third POLAR edition for CISO, managers, directors and tech leads in cybersecurity on October 16th, we will have the privilege to hear Amir Ali & Palo Alto talk on this subject.

    Don't miss this opportunity to join us at our 1-day banquet conference at the Capitole Hotel Salle Confessional in Québec City. To have more info or buy tickets: polarcon.ca/

  30. Conférence de POLAR: “Agents IA en cyber: assez parlé, venez voir”
    (EN will follow)

    Pour cette 3e édition de notre conférence POLAR pour CISO, gestionnaires, directeurs et leaders techniques en cybersécurité le 16 octobre 2025, nous aurons le privilège d'entendre Samuel Bonneau parler sur le sujet.

    Ne manquez pas cette occasion de vous joindre à nous pour cette journée au Théâtre Le Capitole de Québec. Plus d'informations et achats de billets ICI: polarcon.ca/

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    =====

    Talk at POLAR: “Agents IA en cyber: assez parlé, venez voir”

    For this third POLAR edition for CISO, managers, directors and tech leads in cybersecurity on October 16th, we will have the privilege to hear Samuel Bonneau talk on this subject.

    Don't miss this opportunity to join us at our 1-day banquet conference at the Théâtre Le Capitole in Québec City. To have more info or buy tickets: polarcon.ca/

  31. Conférence de POLAR: “Agents IA en cyber: assez parlé, venez voir”
    (EN will follow)

    Pour cette 3e édition de notre conférence POLAR pour CISO, gestionnaires, directeurs et leaders techniques en cybersécurité le 16 octobre 2025, nous aurons le privilège d'entendre Samuel Bonneau parler sur le sujet.

    Ne manquez pas cette occasion de vous joindre à nous pour cette journée au Théâtre Le Capitole de Québec. Plus d'informations et achats de billets ICI: polarcon.ca/

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    =====

    Talk at POLAR: “Agents IA en cyber: assez parlé, venez voir”

    For this third POLAR edition for CISO, managers, directors and tech leads in cybersecurity on October 16th, we will have the privilege to hear Samuel Bonneau talk on this subject.

    Don't miss this opportunity to join us at our 1-day banquet conference at the Théâtre Le Capitole in Québec City. To have more info or buy tickets: polarcon.ca/

  32. Conférence de POLAR: “Startup: quand la cybersécurité s’impose dès le départ”
    (EN will follow)

    Pour cette 3e édition de notre conférence POLAR pour CISO, gestionnaires, directeurs et leaders techniques en cybersécurité le 16 octobre 2025, nous aurons le privilège d'entendre Mathieu Blais D’amours, François Dufour et Gabriel Lespérance sur le sujet.

    Ne manquez pas cette occasion de vous joindre à nous pour cette journée au Théâtre Le Capitole de Québec. Plus d'informations et achats de billets ICI: polarcon.ca/

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    =====

    Talk at POLAR: “Startup: quand la cybersécurité s’impose dès le départ”

    For this third POLAR edition for CISO, managers, directors and tech leads in cybersecurity on October 16th, we will have the privilege to hear Mathieu Blais D’amours, François Dufour and Gabriel Lespérance on this subject.

    Don't miss this opportunity to join us at our 1-day banquet conference at the Théâtre Le Capitole in Québec City. To have more info or buy tickets: polarcon.ca/

  33. Conférence de POLAR: “Cyberattaque vécue à la STO”
    (EN will follow)

    Pour cette 3e édition de notre conférence POLAR pour CISO, gestionnaires, directeurs et leaders techniques en cybersécurité le 16 octobre 2025, nous aurons le privilège d'entendre Yves Béthencourt parler sur le sujet.

    Ne manquez pas cette occasion de vous joindre à nous pour cette journée au Théâtre Le Capitole de Québec. Plus d'informations et achats de billets ICI: polarcon.ca/

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    =====

    Talk at POLAR: “Cyberattaque vécue à la STO”

    For this third POLAR edition for CISO, managers, directors and tech leads in cybersecurity on October 16th, we will have the privilege to hear Yves Béthencourt talk on this subject.

    Don't miss this opportunity to join us at our 1-day banquet conference at the Théâtre Le Capitole in Québec City. To have more info or buy tickets: polarcon.ca/

  34. Conférence de POLAR: Sécurité Physique
    (EN will follow)

    Pour cette 3e édition de notre conférence POLAR pour CISO, gestionnaires, directeurs et leaders techniques en cybersécurité le 16 octobre 2025, nous aurons le privilège d'entendre Francis Coats sur le sujet.

    Ne manquez pas cette occasion de vous joindre à nous pour cette journée au Théâtre Le Capitole de Québec. Plus d'informations et achats de billets ICI: polarcon.ca/

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    =====

    Talk at POLAR: Physical Security

    For this third POLAR edition for CISO, managers, directors and tech leads in cybersecurity on October 16th, we will have the privilege to hear Francis Coats on this subject.

    Don't miss this opportunity to join us at our 1-day banquet conference at the Théâtre Le Capitole in Québec City. To have more info or buy tickets: polarcon.ca/

  35. Conférence de POLAR: “Le Threat Hunting: Ce que vous devriez savoir pour préparer vos équipes”
    (EN will follow)

    Pour cette 3e édition de notre conférence POLAR pour CISO, gestionnaires, directeurs et leaders techniques en cybersécurité le 16 octobre 2025, nous aurons le privilège d'entendre Stephane Asselin parler durant cette conférence.

    Ne manquez pas cette occasion de vous joindre à nous pour cette journée au Théâtre Le Capitole de Québec. Plus d'informations et achats de billets ICI: polarcon.ca/

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    =====

    Talk at POLAR: “Le Threat Hunting: Ce que vous devriez savoir pour préparer vos équipes“

    For this third POLAR edition for CISO, managers, directors and tech leads in cybersecurity on October 16th, we will have the privilege to hear Stephane Asselin.

    Don't miss this opportunity to join us at our 1-day banquet conference at the Théâtre Le Capitole in Québec City. To have more info or buy tickets: polarcon.ca/

  36. Conférence de POLAR: “AI Security & Security with AI - Where are we today?”
    (EN will follow)

    Pour cette 3e édition de notre conférence POLAR pour CISO, gestionnaires, directeurs et leaders techniques en cybersécurité le 16 octobre 2025, nous aurons le privilège d'entendre Chris Roberts, Gautam Korlam, et Hugues Foltz lors de ce panel.

    Ne manquez pas cette occasion de vous joindre à nous pour cette journée au Théâtre Le Capitole de Québec. Plus d'informations et achats de billets ICI: polarcon.ca/

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    =====

    Talk at POLAR: “AI Security & Security with AI - Where are we today?”

    For this third POLAR edition for CISO, managers, directors and tech leads in cybersecurity on October 16th, we will have the privilege to hear Chris Roberts, Gautam Korlam and Hugues Foltz during this panel.

    Don't miss this opportunity to join us at our 1-day banquet conference at the Théâtre Le Capitole in Québec City. To have more info or buy tickets: polarcon.ca/

  37. Conférence de POLAR: “De la salle de classe au cloud: les défis cyber de l’éducation”
    (EN will follow)

    Pour cette 3e édition de notre conférence POLAR pour CISO, gestionnaires, directeurs et leaders techniques en cybersécurité, nous aurons le privilège d'entendre Guillaume Dubé et Benoît Desautels présenter lors du panel.

    Ne manquez pas cette occasion de vous joindre à nous pour cette journée au Théâtre Le Capitole de Québec. Plus d'informations et achats de billets ICI: polarcon.ca/

    #infosec #ciso #cisos #cisolife #cisoadvisor #cisoseries #cybersecurite #polqc #polcan #canada #quebec #conference #cybersecuritymanagement #hacking #redteam #blueteam #management #summit #securityindustry

    =====

    Talk at POLAR: “De la salle de classe au cloud: les défis cyber de l’éducation”

    For this third POLAR edition for CISO, managers, directors and tech leads in cybersecurity, we will have the privilege to hear Guillaume Dubé and Benoît Desautels, and present during their panel.

    Don't miss this opportunity to join us at our 1-day banquet conference at the Théâtre Le Capitole in Québec City. To have more info or buy tickets: polarcon.ca/