Information security program management

CISOs and information security programs are vital to protecting enterprises against today's cyber threats. In this resource centers, get the latest news and advice about CISO practices, infosec prrogram management and more.

New & Notable

Download this free guide

Free Guide: Root Causes of the Cybersecurity Skills Shortage

Our editorial director sat down with David Shearer, CEO of (ISC)², for a Q&A where they discussed what is (and isn’t) contributing to the cybersecurity skills shortage in the United States and how to fix the problem.

Corporate E-mail Address:
You forgot to provide an Email Address.
This email address doesn’t appear to be valid.
This email address is already registered. Please login.
You have exceeded the maximum character limit.
Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

Information security program management News

April 22, 2019 22 Apr'19
Marcus 'MalwareTech' Hutchins pleads guilty to Kronos charges

Marcus 'MalwareTech' Hutchins, known as being an integral player in stopping the WannaCry ransomware outbreak, pleads guilty to conspiring to create and distribute the Kronos banking Trojan.
April 08, 2019 08 Apr'19
Data breach legislation proposes jail time for CIO, HR execs

Sen. Elizabeth Warren takes a swing at corporate negligence in new legislation that may create jail risk for the C-suite. The bill is unlikely to advance, however.
March 26, 2019 26 Mar'19
2019 RSA Conference bottom line: People are security's strongest asset

People in the security community and beyond are more important and influential than the leading technologies if the talk at the 2019 RSA Conference is any indication.
March 22, 2019 22 Mar'19
Risk & Repeat: RSA Conference 2019 in review

This week's 'Risk & Repeat' podcast looks back at RSA Conference and discusses the show's diversity and inclusion efforts as well as the top trends and sessions from the show.

View All News

Information security program management Get Started

Bring yourself up to speed with our introductory content

information security (infosec)

Information security (infosec) is a set of strategies for managing the processes, tools and policies necessary to prevent, detect, document and counter threats to digital and non-digital information. Continue Reading
AI cybersecurity benefits are real, but not automatic

Smart tech promises security and other benefits, but they don't come automatically. Learn how these tools work and where they can work best in your organization. Continue Reading
AI security tech is making waves in incident response

Experts weigh in on the latest smart cybersecurity tools -- how they work, the implications for your IT security team and whether the investment is worth the expense. Continue Reading

View All Get Started

Evaluate Information security program management Vendors & Products

Weigh the pros and cons of technologies, products and projects you are considering.

Top risks of deploying zero-trust cybersecurity model

Adopting a zero-trust model for cybersecurity brings many benefits -- but also risks. Find out why a zero-trust approach to security is not a panacea. Continue Reading
Challenges and benefits of using the Mitre ATT&CK framework

Taking the first step might be the biggest hurdle to using the Mitre ATT&CK cybersecurity framework. Find out more about the benefits, challenges and how to get started. Continue Reading
Top 5 reasons for a zero trust approach to network security

As network perimeters disintegrate and enterprises adopt cloud computing, discover the top reasons organizations are opting for a zero trust approach to network security. Continue Reading

View All Evaluate

Manage Information security program management

Learn to apply best practices and optimize your operations.

Why do enterprises need employee security awareness training?

With human error as the leading cause of breaches and security incidents within the enterprise, organizations should offer employees mandatory security awareness training with regular refreshers. Continue Reading
Simplify incident response for zero-day vulnerability protection and beyond

Protection against a zero-day vulnerability and other cyber-risks is complicated, but simplifying cybersecurity incident management could be the key to protecting online assets. Continue Reading
Automating incident response with security orchestration

Security orchestration, automation and response technology is now seen as a key aid to security pros attempting to thwart an onslaught of cyberattacks. Continue Reading

View All Manage

Problem Solve Information security program management Issues

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

What are the most important security awareness training topics?

Organizations looking to heighten security awareness among employees need to cover a wide variety of security awareness training topics, but social engineering tops the list. Continue Reading
DHS-led agency works to visualize, share cyber-risk information

A Department of Homeland Security initiative strives to improve cybersecurity information sharing between the public and private sector, but familiar challenges remain. Continue Reading
HPE takes aim at STEM and cybersecurity education, awareness

HPE CISO Liz Joyce worked with the Girl Scouts on an educational cybersecurity game for girls and ensures HPE's Women in Cybersecurity encourages more women to join the industry. Continue Reading

View All Problem Solve