Understanding the EU's Digital Operational Resilience Act
Steve Durbin explores the EU's Digital Operational Resilience Act (DORA), highlighting its significance for financial services.
The Building Blocks of Data Security
Explore the essential building blocks of data security in this insightful feature on Manufacturing.net by Steve Durbin.
Winning the War Against Social Media Disinformation
Explore Steve Durbin's insights on tackling social media disinformation through media literacy, critical thinking, and platform accountability.
The Evolving Role of the CISO: From tech expert to business partner
Paul Watts examines security leadership in a shifting threat landscape, sharing ways to better align cybersecurity with business goals.
How to Communicate Cybersecurity More Effectively to The Board
Featured in Forbes, ISF CEO Steve Durbin shares his guidance on how security leaders can enable the board to make informed security decisions.
Technology Governance Needs a Rethink on Prioritising Resilience Against Digital Threats
Research shows that only 3% of businesses have developed true resilience against cyber threats. ISF CEO Steve Durbin shares primary reasons for this disparity.
Building A More Behavior-focused Security Awareness Program
Steve Durbin shares seven recommendations on how organisations should approach their awareness and security culture programs.
Five Strategies For Boards To Enhance Governance And Resilience In The Face Of Evolving Cyber Risks
ISF CEO Steve Durbin shares five strategies on how board members can better manage and govern cyber security.
Who are BISOs and what do they bring to the cybersecurity table?
Steve Durbin, ISF Chief Executive shares his thoughts on why organisations need a BISO and what traits are ideally suited for the role.
The Impact of Technology Failures on Business Resilience
Steve Durbin, ISF CEO shares 5 important factors to consider when trying to mitigate and counterbalance business impact of technology failures
Striking a Balance Between Business Growth, Risk Management, and Cybersecurity
Featured in Security Boulevard, ISF CEO, Steve Durbin shares recommendations on how to balance business growth with risk management.
The 6 Elements Defining a Valid Cybersecurity Strategy
Featured in Forbes, ISF CEO Steve Durbin explains how you can maximise value from existing cybersecurity investments to inform strategy.
EXPERT OPINION: Social Engineering Attacks: Understanding OSINT to mitigate risk
Over the last decade, OSINT (open-source intelligence) became a buzzword across many industries and lines…
5 recommendations for acing the SEC cyber security rule
SEC risk management and disclosure rules can be fraught with difficulties. Steve Durbin, chief executive of the ISF, offers advice for coping.
EXPERT OPINION: The bigger they are, the harder we will all fall
"It’ll never happen to us." Most security and risk practitioners have faced this argument at…
Readying Your Company For The New SEC Cyber Incident Disclosure And Risk Management Rules
Featured in Forbes, ISF CEO Steve Durbin breaks down the SEC material incident disclosure and enhanced governance requirements.
Generative AI vs. Predictive AI: A Cybersecurity Perspective
Featured in Security Boulevard, ISF CEO Steve Durbin underscores how organisations can find value in predictive and GenAI implementation.
ISF: Your first line of defence
Interviewed by The European, ISF CEO, Steve Durbin shares the ISF perspective on implementing an effective cyber strategy
The Core Elements of a Cybersecurity Posture
ISF CEO Steve Durbin shares seven core elements that can lay the groundwork for a healthy cybersecurity posture.
Key Takeaways from the British Library Cyberattack
Featured in Dark Reading, ISF CEO, Steve Durbin shares key takeaways from the event, with guidance on practicing good information governance.
Urgently needed: AI governance in cyber warfare
Featured in Help Net Security magazine, ISF CEO Steve Durbin outlines the importance aligning AI's ethics with society’s fundamental values.
Weaponized Disinformation Threatens Democratic Values
Steve Durbin, ISF CEO, shares insights into the looming AI-security threats from his interview with Brian Lord, CEO of Protection Group International.
5 key elements of cyber simulation exercises to boost cyber resilience
Steve Durbin, ISF CEO, shares five key elements required to design cyber simulation exercises aimed at enhancing cyber resilience.
The Risks And Rewards Of AI: Strategies For Mitigation And Containment
ISF CEO Steve Durbin explores the major risks AI poses for today and for the future, and how we can address and mitigate these threats.
Five ways security leaders can demonstrate the business value of cybersecurity
Steve Durbin, ISF CEO, shares five best practices on how security leaders can justify the business value of cybersecurity and improve alignment with business goals
Business Risk Preparation: The Interlocked World Of Technology, Geopolitics, Regulations And Cybersecurity
ISF CEO Steve Durbin features in Forbes to share some of the top risks organisations need to be prepared for; impact of geopolitics on supply chains, environmental challenges of quantum computing and more.
How to design and deliver an effective cybersecurity exercise
ISF CEO STEVE Durbin featured in Helpnet Security to share his insights on how to design and develop an effective cyber simluation exercise.
ISF Resources to Support the NIST Cybersecurity Framework 2.0
Discover what the latest updates to the NIST CSF mean for your organisation as Head of Tools at the ISF, Alex Jordan, provides his thoughts.
Six Steps to Help Leaders Achieve A Good Standard Of Cybersecurity
ISF Chief Executive Steve Durbin, features in Forbes to outline six essential steps for security leaders to enhance their cyber readiness.
Achieving The Five Levels Of Information Security Governance
Steve Durbin offers advice on what strategies can be taken to make information security better connected to organisational goals and strategy.
Six Principles for Building Engaged Security Governance
Steve Durbin features in TechTarget to offer insight into engaged governance and the six principles that organisations should implement.
Measuring Cyber Security: The what, why and how
Steve Durbin explores the ways security teams can best measure, analyse and report cyber security threats and performance
Three Unintended Consequences of Well-Intentioned Cyber Regulations
Steve explains how you can prepare against unintended consequences of cyber regulations, no matter how well-intentioned they might be.
5 Levers Lawmakers Can Use to Tackle Cybercrime
Steve Durbin breaks down each element of the cybersecurity framework presented in the recently released report led by the ISF with CC-Driver.
Revised Scope of UK Security Strategy Reflects Digitised Society
The omission of the word ‘security’ from the title of the UK government’s new National Cyber Strategy is a telling one.
Four Major Cyber Risks in an Era of Tech Dominance
Read as Steve explores the technological risks that may lead to crises in the next decade in his latest article for Forbes.
Is cyber insurance a worthwhile investment?
Here are five questions to help determine if your company needs cyber coverage. The cyber…
Giant Group cyber attack prompts renewed calls for statutory regulation of umbrella companies
The speed of the outage and the protracted nature of the recovery bears all of…
A response to planned data protection changes
As the UK chases a Brexit dividend to open up non-EU markets to UK businesses…
What are the risks associated with personal, unsanctioned apps on corporate devices and why?
From a security perspective, what are the personal apps/app types that you think CISOs should…
Adapting InfoSec for Container Security
Containerization has effectively become the new normal for expediting app delivery and improvements; security concerns…
The case for vaccine passports: the real world versus the digital world
Distinguished Analyst Andy Jones and Senior Analyst Alex Jordan, both of the ISF, take opposing…
Look for GDPR fines to increase, extend beyond breaches
organizations should in particular note the extent of fines levied by regulators for infringements that…
Privacy 2020: From Prepared to Alarmed, the Year the Rubber Hit the Road
With 2020 coming to a close, SC Media is delivering through a series of articles…
Apple to Deliver ‘Privacy Labels’ for Apps, Revealing Data-Sharing Details
Just as consumers now automatically accept cookies and agree to privacy policies, they may also…
Imminent Cyberthreat Could Disrupt Hundreds of US Healthcare Systems
Basic cyber hygiene standards need to be met, covering patching and updates, network segmentation, network…
FBI: Hospitals and Healthcare Providers Face Imminent Ransomware Threat
The healthcare services have an outdated approach to security awareness, education, and training... Daniel Norman,…
Norway Alleges Russia Orchestrated Parliament Email Hack
The attacking state will build user profiles, understand patterns of behavior and then they will…
ISF Supports Cyber and Compliance Challenges with Launch of Aligned Tools Suite 2020
We live in an uncertain world where budgets and resources are tight, yet the need…
Ring’s Flying In-Home Camera Drone Escalates Privacy Worries
Smart home devices, such as Ring, collect an inordinate amount of sensitive personal data in…
Why Data Ethics Is a Growing CISO Priority
With data collection growing, and increased concern about how it is handled, a synergy between…
The Future's Biggest Cybercrime Threat May Already Be Here
By Steve Durbin, Managing Director, ISF Current attacks will continue to be refined, and what…
How To Prepare Your Business As Worldwide Recession Looms
By Steve Durbin, Managing Director, ISF and Forbes Business Council Member The business world is…
EU court kills Privacy Shield, wreaks havoc on digital economy
Schrems II “Was always going to be a major test for the Privacy Shield,” Steve…
Google, Apple tighten protections on contact tracing; Americans worry over privacy
As the likes of Google and Apple bolster privacy in the race to come up…
Connecticut town drops drone program to combat COVID-19 spread over privacy concerns
“Like other Internet of Things (IoT) devices, drones currently have very poor security controls, making…
The Privacy-Security Balance in Digital Surveillance: Lessons from COVID-19
A major feature of the current COVID-19 crisis has been the sudden growth of state…
Covid-19 Poll Results: One in Four Prioritize Health Over Privacy
“Ultimately we are being asked to trust our governments in their ability to handle personal…
US Sen. Gillibrand Announces Legislation to Create a Data Protection Agency
"As pressure from regulatory compliance increases, businesses must take an increasingly integrated and well-rounded approach…
Ringing in a new National Privacy Law?
Privacy advocates have long called for a federal privacy law and it’s coming…in the meantime,…
Data Privacy Day 2020 Encourages Consumers to “Own Their Privacy”
The theme of Data Privacy Day 2020 is “Own Your Privacy.” Data Privacy Day began…