EDGE EDITION | 10 Signs of a Good Security Leader

[TechWeb]( Follow Dark Reading: [RSS]( April 23, 2022 LATEST SECURITY NEWS & COMMENTARY [10 Signs of a Good Security Leader]( Strong leadership can lead to motivated and loyal employees. Here's what that looks like. [Backward-Compatible Post-Quantum Communications Is a Matter of National Security]( When a quantum computer can decipher the asymmetric encryption protecting our vital systems, Q-Day will arrive. [Securing the Stopgap: Controlling Access to SaaS Applications]( If enterprises continue to use emergency measures as long-term solutions, they must protect their IT estate. [What Steps Do I Take to Shift Left in Security?]( Security has benefited from shifting many late-cycle disciplines left or earlier in the cycle. [Adversaries Look for 'Attackability' When Selecting Targets]( A large number of enterprise applications are affected by the vulnerability in Log4j, but adversaries aren't just looking for the most common applications. They are looking for targets that are easier to exploit and/or have the biggest payoff. [Security Lessons From a Payment Fraud Attack]( Companies need to detect and counteract brute-force and enumeration attacks before fraudsters run away with their customers' funds. [Upgrades for Spring Framework Have Stalled]( Upgrading and fixing the vulnerability in the Spring Framework doesn't seem to have the same level of urgency or energy as patching the Log4j library did back in December. [How Do I Conduct a Resilience Review?]( As the first step, make sure that all business-critical data across your organization is protected. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [ByteChek Founder AJ Yawn Brings Discipline to Everything He Does]( Security Pro File: The former Army captain, whose security startup is on an upward trajectory, works hard to "make compliance suck less." [Eliminating Passwords: One Way Forward]( Fast Identity Online (FIDO) technology leverages security keys and biometrics to provide secure authentication. [Companies Going to Greater Lengths to Hire Cybersecurity Staff]( The cybersecurity market is red-hot. But with so many still-unfilled positions, companies may be more willing to bend or break some hiring rules. [MORE]( EDITORS' CHOICE [Name That Edge Toon: In Deep Water]( Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card. FEATURED ON DR TECH [Exploring Biometrics and Trust at the Corporate Level]( Biometric measurements should be part of any multifactor authentication (MFA) strategy, but choose your methods carefully: Some only establish trust at the device level. FROM THE NEWS DESK [6 Malware Tools Designed to Disrupt Industrial Control Systems (ICS)]( Stuxnet was the first known malware built to attack operational technology environment. Since then, there have been several others. Tech Resources - [Improving Operations with AI-Assisted Cybersecurity]( - [Unlocking Human Potential in SOC Teams With AI-Assisted Cybersecurity]( - [Quantifying the Gap Between Perceived Security and Comprehensive MITRE ATT&CK Coverage]( - [The Evolving Ransomware Threat: What Business Leaders Should Know About Data Leakage]( - [Protecting Critical Infrastructure: The 2021 Energy, Utilities, and Industrials Cyber Threat Landscape Report]( - [Managing Cyber Risk Across the Extended Vendor Ecosystem Report]( - [TIM Whitepaper]( [ACCESS TECH LIBRARY NOW]( - [Building an Effective Active Directory Security Strategy]( For cyber criminals, Microsoft's Active Directory is a treasure trove of user identity and system access. But while Active Directory is a potential attack vector, it can also play a crucial role in enterprise cyber defenses. In this webinar, experts ... - [Incorporating a Prevention Mindset into Threat Detection and Response]( Cybercriminals are becoming more sophisticated and their attacks are increasingly difficult to detect. While threat detection and response is a critical component of enterprise security defense, activities geared towards prevention could save security teams a lot of time and resources ... [MORE WEBINARS]( FEATURED REPORTS - [Rethinking Endpoint Security in a Pandemic and Beyond]( IT security teams are expending the concept of "endpoint security" as companies adjust to a distributed workforce. How much responsibility will enterprise IT take for the security of personal devices such as printers. How will they manage identities across multiple ... - [Zero Trust in Real Life]( [MORE REPORTS]( CURRENT ISSUE [Understanding DNS Threats and How to Use DNS to Expand Your Cybersecurity Arsenal]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [New Zscaler Research Shows Over 400% Increase in Phishing Attacks With Retail and Wholesale Industries at Greatest Risk]( [Incognia Introduces New Location-Based Device Authorization Solution]( [Cybereason Launches Digital Forensics Incident Response]( [Lightspin Secures Infrastructure as Code Files with New GitHub Integration]( [Alert Logic Releases MDR Incident Response Capability for Addressing a Breach]( [Datto to be Acquired by Kaseya for $6.2 Billion]( [MORE PRODUCTS & RELEASES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To update your profile, change your e-mail address, or unsubscribe, [click here.]( To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:customerservice_informationhub@techweb.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2022]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:customerservice_informationhub@techweb.com)