We’re excited to share that Ciaran Martin and Robert Mazur are joining the keynote lineup – alongside Ian Bremmer and Carey Lohrenz – at this year’s (ISC)² Security Congress. Ciaran Martin founded the UK National Cyber Security Centre (NCSC) in 2016. Under his tenure as CEO, the NCSC attracted worldwide acclaim as the leading authority in cybersecurity across the globe. Ciaran is currently a professor of Public Management at the University of Oxford’s Blavatnik School, specializing in cybersecurity as well as the relationship between technology and public policy. “Ciaran Martin’s achievements as head of the UK National Cyber Security Centre are world-renowned,” said Clar Rosso, CEO, (ISC)². “We are thrilled to have him provide his insight and guidance on the

In 2021, North Carolina became the first state to prohibit state agencies and local government entities from paying a ransom following a ransomware attack. This, first-of-its-kind, state law also prohibits public entities from communicating with a malicious actor following a ransomware attack. Instead, they will have to consult with the North Carolina Department of Information Technology when they experience such an attack. On June 28, 2022, Florida Governor Ron DeSantis signed HB 7055. Effective, July 1, 2022, it requires all state agencies report cybersecurity and ransomware incidents, and that every state employee receives substantive training in cybersecurity. New York, Pennsylvania, Arizona and Texas all have considered legislation that would prevent the paying of ransom in ransomware cases. Pennsylvania’s bill has

On November 1, several changes will be made to the SSCP exam. We are excited to share that the SSCP exam will be available in four more languages. Currently, the SSCP exam is available in English and Japanese, but come November it will also be available in Chinese, Korean, German and Spanish. In addition to these new languages, we will be updating the length of the SSCP exam. As announced earlier this year for both the CISSP exam and CCSP exam, 25 pre-test (unscored) items will be added. These items do not impact the pass/fail result of your exam, but they are indistinguishable from operational (scored) items, so if you’re taking the exam, you should consider every item carefully and

Tech giants, major cybersecurity companies, cryptocurrency scams, and remote work fraud are in the news this week. Here are the latest cybersecurity threats and advisories for the week of July 28, 2022. Threat Advisories and Alerts Liquidity Miner Scam Robs Cryptocurrency Buyers of More Than $70 Million The FBI has warned cryptocurrency investors about a liquidity mining scam that has defrauded individuals of more than $70 million since January 2019. The scammers lure victims by first building a relationship with them over a few days to several weeks. During this time, they mention liquidity mining as an investment strategy and offer a guaranteed 1-3% daily return. If the proposal is accepted, the victim is asked to connect their cryptocurrency wallet

On July 19, National Cyber Director Chris Inglis hosted the National Cyber Workforce and Education Summit at the White House. The event focused on “improving skills-based pathways to cyber jobs, educating Americans” and finding solutions for bridging the cyber workforce gap. (ISC)² CEO Clar Rosso attended the summit and introduced the new (ISC)² initiative to pledge one million Certified in Cybersecurity as our global commitment to close the workforce gap and expand diversity in cyber. Attendees of the summit included government officials such as Ambassador Susan E. Rice, White House Domestic Policy Advisor; Secretary of Commerce Gina M. Raimondo; Secretary of Labor Martin J. Walsh and Director of the Cybersecurity and Infrastructure Security Agency Jen Easterly. Other attendees included executives