Steve Durbin explores why a proposed 10-year freeze on state-level AI regulations could undermine innovation, accountability, and public trust.
Tariff volatility can disrupt supply chains and expose businesses to cyber security threats. Learn how rapid responses to tariff changes may create vulnerabilities for bad actors to exploit.
Steve Durbin highlights growing cyber risks as Trump’s executive order fuels new uncertainty in global supply chain security and regulatory expectations.
Steve Durbin unpacks how agentic AI's autonomous capabilities are being exploited by cybercriminals, posing new threats to cybersecurity and reshaping digital risk landscapes.
Explore how evolving trade policies are increasing cyber risks across global supply chains, and what businesses and policymakers can do to mitigate these threats.
Explore five critical security trends transforming enterprise resilience through 2027, from digital identity threats to global data fragmentation and AI-driven risks.
Discover the five essential elements to consider before designing a cyber exercise, ensuring your organization is prepared, resilient, and ready to respond to cyber threats effectively.
Technology is an enabler in countless ways. It has empowered a range of shifts in…
For an AI agent to “think” and act autonomously, it must be granted agency; that…
Steve Durbin explores how defensive AI can effectively counteract sophisticated cyber threats in this insightful Forbes article.
Steve Durbin explores impact on global risk management. Learn why CISA cuts are considered a dangerous gamble in an increasingly volatile world.
Explore Steve Durbin's insights on tackling social media disinformation through media literacy, critical thinking, and platform accountability.
Discover how OSINT awareness can mitigate social engineering attacks in Steve Durbin's latest SC Media feature.
Steve Durbin details five key areas where organisations and their risk managers must allocate efforts to navigate these uncertain times.
Paul Watts examines security leadership in a shifting threat landscape, sharing ways to better align cybersecurity with business goals.
Callum Moore explores the role of cyber simulation exercises in cyber resilience and how to gain buy-in from corporate leaders.
Discover the seven key trends shaping cyber threats and risk management for 2025, as outlined by Steve Durbin.
Explore with Steve Durbin the top cybersecurity concerns for boardrooms, from data breaches to AI-powered threats.
Discover from Steve Durbin how your organisation can defend against increasing cyber threats from state-backed adversaries.
Featured in Forbes, ISF CEO Steve Durbin shares his guidance on how security leaders can enable the board to make informed security decisions.
Featured in Forbes, ISF CEO Steve Durbin explores the impact and influence of social media in shaping opinions and disseminating news.
ISF Expert Richard Absalom explores why organisations need to move beyond awareness; sharing guidance on how to focus on security culture instead.
Steve Durbin shares seven recommendations on how organisations should approach their awareness and security culture programs.
Steve Durbin, ISF Chief Executive shares his thoughts on why organisations need a BISO and what traits are ideally suited for the role.
Steve Durbin, ISF CEO shares 5 important factors to consider when trying to mitigate and counterbalance business impact of technology failures
ISF CEO Steve Durbin shares his best practices on how security leaders can develop a positive brand and culture for cyber security.
Featured in Security Boulevard, ISF CEO, Steve Durbin shares recommendations on how to balance business growth with risk management.
Featured in Forbes, ISF CEO Steve Durbin explains how you can maximise value from existing cybersecurity investments to inform strategy.
ISF Head of Research, Paul Holland outlines the essential steps to ensure your organisation is well-positioned for cyber resilience.
ISF CEO Steve Durbin explains why rise of cybercrime-as-a-service amongst other trends, are lowering entry barriers for criminals.
ISF Head of Tools & Methodologies, Alex Jordan shares his expert opinion on managing extinction level risks associated with suppliers.
Over the last decade, OSINT (open-source intelligence) became a buzzword across many industries and lines…
ISF Head of Research, Paul Holland shares his expert opinion on incident preparedness and overcoming extinction level attacks.
"It’ll never happen to us." Most security and risk practitioners have faced this argument at…
Featured in Security Boulevard, ISF CEO Steve Durbin underscores how organisations can find value in predictive and GenAI implementation.
Interviewed by The European, ISF CEO, Steve Durbin shares the ISF perspective on implementing an effective cyber strategy
ISF CEO Steve Durbin shares seven core elements that can lay the groundwork for a healthy cybersecurity posture.
ISF Distinguished Analyst, Paul Watts features in InfoRisk Today to share his perspectives on balancing cyber risk and business goals.
Steve Durbin, ISF CEO, shares insights into the looming AI-security threats from his interview with Brian Lord, CEO of Protection Group International.
Featured in Infosecurity Magazine, Distinguished ISF Analyst Paul Watts, shares his views on resilience and effective cyber crisis management.
Steve Durbin, ISF CEO, shares five key elements required to design cyber simulation exercises aimed at enhancing cyber resilience.
Steve Durbin, ISF CEO, shares five best practices on how security leaders can justify the business value of cybersecurity and improve alignment with business goals
Paul Holland shares his thoughts on protecting and securing the integrity and confidentiality of information within OT environments.
Paul Holland provides insight into a possible new threat to operational technology environments, specifically those in the energy sector.
Outgoing employees pose significant security risks to organizations. Here are some of the major issues…
Steve Durbin explores steps to developing a human-centred security program that engages your workforce to better protect your organisation.
Paul Watts explores the shifting nature of business, the role of the security leader, and the impact of not aligning to each other’s goals.
Steve Durbin explores the ways security teams can best measure, analyse and report cyber security threats and performance
Richard Absalom explores the soft skills needed to navigate boardroom politics, ensuring measurements support decisions and drive action.
With cyber security becoming riskier, costlier and more complicated, Steve Durbin explores four key challenges to look out for in 2023.
Steve offers actionable guidelines to building and maintaining the skills and relationships that can take security leaders to the next level.
Steve Durbin offers his thoughts on how enterprises can make the most out of threat intelligence for smarter security.
Human behaviour is one of the biggest challenges faced by security practitioners, leaders and cyber risk managers today.
Threat actors are predicted to weaponise industrial control systems in order to harm or kill humans by 2025 - how should you prepare?
Steve Durbin discusses the cyber best practices and security controls you should be implementing now to mitigate the threat of deepfakes.
Steve Durbin featured in Forbes to shed light on the best practices you should consider to better protect ICS environments.
Steve Durbin offers advice on how you can prevent the dilution of enterprise value and trust in the eyes of your stakeholders.
Francesca Williamson shares insight on how you can detangle the complexities of the supply chain and create better security practices.
Steve Durbin features in the World Economic Forum, offering considerations to consider when evaluating cyber incident response capabilities.
Steve explains how you can prepare against unintended consequences of cyber regulations, no matter how well-intentioned they might be.
Steve Durbin deconstructs Zero Trust; explaining how it works, what the common misconceptions are, and what to consider before implementation.
Steve Durbin outlines steps organisations and security teams can use to understand and prepare for potential threats in times of instability.
Steve Durbin offers advice on the M&A process: how you can mitigate risk and highlight to leadership the value of information security.
ThoughtLab's press release for their study, providing evidence-based insights into the most effective cybersecurity practices and investments.
Steve Durbin outlines how CISOs can shift from being reactive to proactive, improving the overall resilience of their organisation.
Dan Norman looks at what needs to be considered when evaluating the risks involved in an organisation’s security strategy.
Emma Bickerstaffe explores what makes a good security training programme and questions buyers should ask when procuring training as a service.
Daniel Norman, ISF Senior Solutions Analyst, takes a closer look at 'Human-Centred Security' and how to achieve it.
Discussing key pervasive cyber threats for 2022, Steve Durbin's recent Forbes article presents a strong foundation for security teams.
Read Steve Durbin's latest article highlighting the impact of the unconscious mind upon cybersecurity vulnerabilities.
Read Emma Bickerstaffe's latest article for Computer Weekly as she offers CISO's food-for-thought following the pandemic.
Cybercrime is a major threat to every industry and organization in the world. No wonder global entities are desperately seeking a silver bullet that can somehow neutralize cybersecurity threats.
Paul Watts, distinguished analyst, contributes to how ransomware has managed to retain its high profile in cybercrime for Computer Weekly.
By Steve Durbin, Chief Executive of the ISF. Zero trust isn't a silver bullet, but…
For more advanced, sophisticated supply chains, it’s about continually going back over it to increase…
From a security perspective, what are the personal apps/app types that you think CISOs should…
Containerization has effectively become the new normal for expediting app delivery and improvements; security concerns…
Perhaps the biggest change that CISOs need to accept is that hybrid working is how…
The pandemic has caused a tectonic shift in how we live and work. Many companies…
In the first of his regular new information security columns for Security Middle East, Daniel…
Interview with Steve Durbin, Chief Executive of the ISF and The European The combination of…
While many organizations have a security awareness training program in place, few trigger real behavior change or...
The idea that technology can solve all our problems is seductive. It seems like every product vendor claims to...
With the pandemic precipitating a health crisis that continues to threaten the global economy and the real possibility of a...
Many people can become good leaders. After all, you can learn how to communicate and how to be a better listener; you can...
By Steve Durbin, Chief Executive of the ISF With the pandemic precipitating a rapid acceleration…
By Steve Durbin, CEO of the Information Security Forum, and Forbes Business Council Member Building…
By Steve Durbin, CEO of the ISF Maturing your organization’s ability to detect intrusions quickly…
By Steve Durbin, CEO of the ISF Leading the enterprise to a position of readiness,…
By Steve Durbin, Managing Director of the ISF. There may be no better way to…
One area that organizations need to deal with is the rise of the insider threat,…
The insider threat is one of the greatest drivers of security risks that organizations face…
How can security keep pace with a cyber threat landscape that rapidly becomes more sophisticated…
Attackers will continue to be presented with the tools and opportunities to target and exploit…
By Steve Durbin, Managing Director, Information Security Forum, and Forbes Business Council Member Ransomware, phishing,…
Technology and processes should complement behavior, not add friction and impede productivity... Steve Durbin, Managing…
A human-centered security program helps organizations to understand their people and carefully craft initiatives that…
As a starting point, an individual will always choose to be productive in their current…
A typical strategy should aim to reduce the number of security incidents and improve the…
Errors and acts of negligence can cause significant financial and reputational damage to an organization,…
Errors and acts of negligence can cause significant financial and reputational damage to an organization...…
Apprenticeships, on the job learning, backed up with support training packages are the way to…
Cross training within an organization is a good method of closing the skills gap by…
All infosec teams have been under huge pressure lately and good CISOs acknowledge that and…
Being a next-generation CISO is an extremely rewarding position that allows an individual to become…
As data breaches increase, many will be the result of Insider threats. In fact, the…
Typically, the success of ransomware is reliant on whether or not the target organization has…
Becoming a next-generation CISO requires an individual to embrace and master new skills and disciplines,…
“Increasingly, lockdown has driven us all online and the training industry has been somewhat slow…
VPN, cloud, and phishing misunderstandings show up in myths about security and remote work. Security…
How has the coronavirus impacted the outlook on security over the next few years? The…
An insider threat is a security risk that originates from within an organization. According to…
Identifying normal behavior baselines is essential to behavior-based authentication. However, with COVID-19 upending all aspects…
“My biggest concern is when remote workers enter phase three since it is unlikely that…
"Criminals have become more sophisticated by considering the psychological aspects of an attack," says Mark…
The number of new people claiming unemployment benefits totaled a staggering 6.648 million last week…
“Remote working and remote business interactions will identify new opportunities, new ways of working that…
As we work remotely and isolate ourselves from friends and colleagues as best we can,…
There just aren't enough certified cybersecurity pros to go around -- and there likely never…
By Steve Durbin, Managing Director of the Information Security Forum. As the cyberthreat landscape becomes…
One of the biggest security threats to your team might be the person working right…
The belief that effective perimeter security is the best way to protect data is a…
Humans are often referred to as the “weakest link” in information security. However, organisations have…
