By Diana-Lynn Contesti (Chief Architect, CISSP-ISSAP, ISSMP, CSSLP, SSCP), John Martin (Senior Security Architect, CISSP-ISSAP, CISM, Open Group Certified Architect Master) and Richard Nealon (Senior Security Consultant, CISSP-ISSMP, SSCP, SABSA SCF) Cybersecurity professionals are often faced with making difficult decisions under intense pressure with the potential of long-term effects on the business. Over time, this stress can weigh on cybersecurity pros and potentially cause “burnout” among employees as well as long-term psychological effects. What can be done to prevent burnout among employees and how can we support our fellow colleagues? These questions are becoming more prevalent in the industry as security breaches become commonplace. Recently a member of the (ISC)² Community asked for a guide, pamphlet or simply help for

In 2018, the UK’s Department for Digital, Culture, Media and Sport (DCMS) funded the creation of the UK Cyber Security Council, which launched in March 2021. The UK government will look to the council as the authority on the cyber profession as it works to implement and enforce consistent standards for the industry. In January 2022, DCMS issued a public consultation on proposals to develop the cybersecurity profession in the UK. The proposal looks to provide clarity to the industry by looking at similar established fields such as accounting, law, and engineering that already have professional standards and pathways in place. Additionally, the proposals set out to address pathways into the profession and make it more accessible to a wider

Finding qualified cybersecurity personnel is never easy. Recruitment has become an even bigger challenge in the last two years as workforce shortages intensified and corporate networks expanded into employees’ homes. Worldwide, 60% of organizations say they are struggling to recruit cybersecurity talent, while 52% struggle to retain qualified people, according to a new report by Fortinet. The report is based on a survey of 1,223 IT and cybersecurity decision-makers across the globe. The struggle has a cost: 67% of respondents say the cybersecurity talent shortage creates additional risks for their organizations. Already, 80% of organizations have suffered at least one cybersecurity breach attributable to “a lack of cybersecurity skills and/or awareness.” When it comes to staffing cybersecurity teams, organizations have

By Samuel Rugi, an MSc Information technology (Security), Certified Information Security Professional (CISSP), Certified Information Security Management (CISM), Cybersecurity Mentor at the Cyversity Organization and a Co-Chair Leadership LaunchPad at Technology Association of Oregon. Security awareness is becoming a hot potato for most of us in the cybersecurity sector, within our organizations, local and global communities. I have spent considerable time studying and working on this technical area as part of my duties while securing and championing best practices and behavioral change within various organizations. While this is not to claim that I am a distinguished industry expert in communication strategies, training like CISSP and my experience have led to success in my career. I believe these lessons can be

As the war in Ukraine rages on, (ISC)² leaders took the opportunity to remind cybersecurity practitioners in the most recent Inside (ISC)² webinar of a simple but essential message: Be vigilant. As the hostilities continue, it is possible the war will spill over into the cyber realm, said Jon France, who joined (ISC)² in January as the organization’s first CISO. Cyber is the “fourth plain after land, sea and air” in the Ukraine war, he said. France joined CEO Clar Rosso and Board of Directors Chairperson Zachary Tudor for the quarterly webinar, during which they provided updates on the organization’s ongoing activities, including the introduction of an entry-level cybersecurity certification that is now in pilot phase. Among other topics, the discussion also covered