Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

How CISOs Apply Zero Trust Thinking to Credential Harvesting Prevention

A customer opens their bank’s login page. At least, that’s what they think. The design is flawless, the fields are familiar. But it’s a cloned site built to harvest credentials. Within seconds, their details are replayed against the genuine portal. To the bank’s defenses, it looks like business as usual – same username, same password, same MFA prompt. This is the reality of credential harvesting, one of the most common precursors to account takeover.

When It Comes to Breaches, Boards Can't Hide Behind CISOs Any Longer

A trend that has long been on the rise is finally having its day. A recent industry report revealed that 91% of security professionals believe that ultimate accountability for cybersecurity incidents lies with the board itself, not with CISOs or security managers. If the security discussion hadn’t fully made its way into C-suite conversations before, it has now.

Why CIOs and CISOs Must Be Business Leaders First

In today’s climate, where every company is a technology company, there is a simple truth many still overlook: CIOs and CISOs can no longer afford to see themselves primarily as technologists or risk gatekeepers. The mandate is clear: They must be business leaders first, using technology and cybersecurity expertise as powerful tools to drive growth, trust, and competitive advantage.

Beyond the Perimeter: A CISO's Guide to Modern Security Architecture

In this episode of Make Work Happen, JumpCloud's CISO Bob Phan sits down with Superbet CISO Alex "Jay" Balan to challenge traditional cybersecurity thinking. They discuss Jay's "internet-first" security philosophy, which advocates for a strategic shift away from outdated on-premise practices and private networks. Learn why assuming compromise, practicing "resilience through violence," and establishing a single source of truth for identity are the keys to building a more secure and efficient organization.

From CISO to SOC Managers: Why Leadership Continuity Matters in Cybersecurity

In today's digital-first world, cybersecurity is no longer just a technical concern - it's a business-critical priority. As threats evolve and become more sophisticated, organizations rely on skilled leaders to manage governance, strategy, and daily operations. While many companies invest heavily in tools and technology, fewer focus on ensuring continuity among their security leadership teams. From Chief Information Security Officers (CISOs) to Security Operations Center (SOC) managers, leadership continuity is an often-overlooked element that can make the difference between resilience and vulnerability.

What Every CISO Should Know About How DLP Actually Works

For most CISOs, data loss prevention (DLP) has long been a familiar acronym. It’s a category of security technology that has been around for more than a decade, often associated with compliance and the need to keep regulated data under control. Yet while the concept sounds straightforward—preventing sensitive data from leaving the organization—the reality is that modern DLP platforms are far more sophisticated than their early predecessors.

Confessions of a CISO: I Have Trust Issues

The speed of software development today is driven by fierce competition and the constant demand for innovation. Organizations are launching software faster than ever to keep up with the market and drive growth. This need for speed has led to several key trends: These trends introduce a critical dilemma: How do you balance speed vs. trust? While fast releases are essential to meet market and user demands, sacrificing trust for speed can lead to severe business repercussions.

Do any CISOs feel lucky?

There are two enormous cybersecurity events each year in the United States: RSA Conference and the week in Vegas that is so full of conferences, summits, and ancillary events that it’s simply known as “Hacker Summer Camp.” From Security BSides Las Vegas to Black Hat and DEF CON, it takes the fortitude of a camel to survive the desert heat and the late nights.

Why AI Agents and MCP Servers Just Became a CISO's Most Urgent Priority

Over the last year, I’ve spent countless hours with CISOs, CTOs, and security architects talking about a new wave of technology that’s changing the game faster than anything we’ve seen before: Agentic AI and Model Context Protocol (MCP) servers. If you think AI is still in the “cool demos and pilot projects” stage, think again. We’re already seeing autonomous agents reasoning, remembering, and taking actions in live production environments.

Modern Access Control in the Public Sector: A CISO's Perspective

Hear from Keeper Security’s Chief Information Security Officer, Shane Barney, for an exclusive, interview-style webinar addressing the most pressing questions around secrets management and Privileged Access Management (PAM) in today’s public sector IT landscape.