惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
量子位
M
MIT News - Artificial intelligence
Y
Y Combinator Blog
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
Google DeepMind News
Google DeepMind News
Hugging Face - Blog
Hugging Face - Blog
博客园_首页
雷峰网
雷峰网
I
InfoQ
罗磊的独立博客
博客园 - 聂微东
酷 壳 – CoolShell
酷 壳 – CoolShell
大猫的无限游戏
大猫的无限游戏
D
Docker
H
Hackread – Cybersecurity News, Data Breaches, AI and More
腾讯CDC
博客园 - 三生石上(FineUI控件)
The GitHub Blog
The GitHub Blog
K
Kaspersky official blog
P
Privacy & Cybersecurity Law Blog
S
SegmentFault 最新的问题
T
Threat Research - Cisco Blogs
H
Help Net Security
小众软件
小众软件
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
C
CERT Recently Published Vulnerability Notes
WordPress大学
WordPress大学
T
Tenable Blog
T
The Blog of Author Tim Ferriss
C
Cisco Blogs
Simon Willison's Weblog
Simon Willison's Weblog
博客园 - Franky
A
Arctic Wolf
T
Threatpost
Scott Helme
Scott Helme
C
Cybersecurity and Infrastructure Security Agency CISA
D
Darknet – Hacking Tools, Hacker News & Cyber Security
T
The Exploit Database - CXSecurity.com
G
GRAHAM CLULEY
Security Latest
Security Latest
Spread Privacy
Spread Privacy
L
LINUX DO - 热门话题
V
Vulnerabilities – Threatpost
P
Privacy International News Feed
S
Schneier on Security
Latest news
Latest news
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
C
Cyber Attacks, Cyber Crime and Cyber Security
C
CXSECURITY Database RSS Feed - CXSecurity.com

The Stack

How Lloyds has transformed its trusted critical data for AI Micron's revenue surges with no end to the memory shortage in sight Ubiquiti UniFi OS vulnerabilities exploited in the wild Mistral's new OCR 4 model shows size matters EU approves €76m in state aid for chip testing firm Even FedEx is a winner of the data centre boom Why AWS thinks AI coding assistants need a new place to run Why China is forging closer ties with open-source foundations China's CPU-only supercomputer tops power list Runtime: Why 'Bring-your-own-Cloud' is taking off; the TRAIT&R framework for agents, and... AWS adds yet another security tool to speed up patching Scattered Spider: UK teen pleads guilty to TfL attack OSS security finally gets a Magic Quadrant Places for People forking out £60m for new ERP system Google offers ATT&CK for bad AI, with surging cost forecast STACKUP: The Stack's weekly tech startups and funding wrap Bring Your Own Cloud: why more enterprises are buying in AWS takes NVIDIA "G7" Blackwell instances GA Runtime: Vercel sets up a new framework for agents, Databricks finds a new Genie, and… Borussia Dortmund's IT head has to sometimes think "outside of the box" Accenture stumbles after Middle East, AI, merger questions Cabinet Office offering £100k+ for AI "ambassador" Critical Splunk Enterprise vulnerability being exploited Accenture buys majority stake in OT security company Dragos npm's security rethink, Satya’s warning, a COBOL win, and... US spending billions to counter China's tech influence NatGeo Society CTO on migrating 15 years of video data to the cloud Alibaba opens French data centres in Europe cloud push SpaceX to take over Cursor in $60bn play for AI coding market Hosting firm Hetzner hikes prices sharply amid supply chain pain HSBC's CIO: AI is easy. True impact is hard. Databricks' Ali Ghodsi: 'Your processes have to change' Rackspace’s "30MW" AMD deal: The devil's in the details The Stack acquires Runtime What is npm doing to protect the JavaScript ecosystem Ron van Kemanade, Group COO, Lloyds, on agents, COBOL, IAM. Langflow instances are getting exploited – again Red Hat's $5 billion answer to Mythos: fix all the code OpenAI acquires German startup to spin up cloud dev environments for better agent control STACKUP: The Stack's weekly tech startups and funding wrap Microsoft CEO warns over concentrated AI model dependency Internet pillar cURL takes a summer holiday from security Anthropic knee-capped by abrupt export controls Months after losing its CEO, now Adobe's CFO gets poached Oracle zero-day exploited for nearly two weeks by Shiny Hunters HM Treasury needs a new CTO, the salary is below average AMD joins UK's Sovereign AI train with Cambridge "AI lab" Oracle PeopleSoft vulnerability exploited: 100s reported hit Oracle reports a $638 billion backlog The UK wants to record court hearings - but not an actual plan Bank of England restarts stalled £24m data collection refresh Anthropic warns LLMs can crank out N-day exploits cheap and fast Defender under Attack: June's Patch Tuesday in the spotlight LibreOffice denounces Euro-Office as Microsoft Trojan Horse Apple's revamped Siri AI leans on Google models and cloud AI could be driving IT hiring in Europe, new report finds UK calls for “device-based” nude controls Cult browser project Ladybird cuts off code community UK gets $1.5bn AI Hardware Plan, and a big-coalition sovereign model plan too STACKUP: The Stack's weekly tech startups and funding wrap Fake IT support staff are walking in to US law firms to steal data Apple found a way to sharply cut token use Apache Livy graduates to Top-level project for Spark support Supabase raises $500m, looks to horizontal Postgres scaling GitLab Field CTO on unlikely customers pulling ahead with AI Killing the card? The UK’s banks eye a payments revolution MPs call on UK government to drop £330m Palantir-NHS deal The Tokenomics Foundation is coming for AI Finops Microsoft's new models give it a better moat The EU dropped its latest tech sovereignty package – what to know HMRC digital transformation: new customer service platform Tokenmaxxing is dead. Finops for AI is emerging slowly. This database company wants to take on Palantir ChatGPT 5.5 and Codex now on Bedrock for easy AWS access Multicloud gets sweeter with a 500 Mbps free private link Alphabet raising $80bn to keep up with ballooning AI CapEx How to get visibility and isolation for AI in Kubernetes Red Hat packages injected with worm in supply chain attack STACKUP: The Stack's weekly tech startups and funding wrap Dell COO says “pain” of price hikes will continue NVIDIA, MS tease tighter agent-native security primitives in Windows Sumedh Thakar: CISOs need to think Shock, WoW, and "AWE" Microsoft turns down temperature amid Nightmare Eclypse row IBM to put $5bn and 20,000 engineers into OSS security fight MongoDB eyes more federal work, snaps up partner Clarity Chinese cyber victims overlapping with industrial strategy - ESET Microsoft stirs a hornets nest over “criminal” zero day disclosure threats Snowflake's AI coding tool is "flywheel" for data platform “Headless” Salesforce hits 1 trillion API calls MySQL gets a foundation with no Oracle, but Alibaba presense GCHQ teases “blueprint” for national AI cyber defense BNP Paribas moves to “zero copy” data model Snowflake joins US federal discount scheme Can Dropbox's new CEO save it from stagnation? Zscaler CEO drools over Mythos tailwind, but Jason's and Joe's departures spook markets Google chases a Kubernetes moment for AI agents UKHSA sticks with Oracle after outsourcing payroll Lenovo eyes “personal AI super agents” in $100 billion drive US eyes physics-based safeguards for water cyber threats Accenture beats IBM in Post Office's latest bid to ditch Horizon
The CISO needs to get focused on business resilience
Stephen Pritchard · 2026-06-10 · via The Stack

CISOs need to balance the needs of the business with an ever more complex threat landscape, regulatory pressures, and still keep on top of the basics of cybersecurity.

According to Jonathan Trull, CISO at security vendor Qualys, and Martin Smith, founder and chairman of the Security Awareness Special Interest Group (SASIG), understanding threats, and managing risks, are now a CISO’s core tasks.

But organisations are also paying more attention to business resilience, not least in the wake of a series of high-profile cyber attacks, in the UK and elsewhere.

Lessons learned

This, in turn, will force organisations to take a hard look at their operations, and prioritise their most critical systems for protection. Cybersecurity is not immune to wider pressures on technology budgets, and resilience measures are not cheap.

“Oftentimes we have short memories of major events,” says Qualys’ Trull. “Over the 20-plus years that I've been doing this, a lot of it was in response to major incidents. Things like, ransomware that would suddenly hit a well-known vulnerability and impact many, many, many customers. 

“And then we do our thing, react to it, and you don't see as many. Then we have something like Notpetya, that was delivered by a nation state actor, and hit large companies, operating out of the UK, the US, globally, with billions of dollars in damages. We do a lot of work, respond very tactically. But then we forget. We just go on to the next risk,” he says. 

But this is changing. “We've definitely learned some hard lessons from that over the last year,” he concedes.

This, in turn, has changed the way boards see cyber risk. In the past, business leaders might have paid lip service to information security, or left it to the IT department. That is no longer an option.

Boards, says SASIG’s Smith, now have no choice but to pay attention to cybersecurity.

“In the many decades that I've been in this business, cyber security has emerged from a specialist topic to something which is at the centre of operations,” he says. “We all rely on so much now on technology, information technology, but regulations come in, we've had the high-profile cases that have been in all the press. Boards have no choice now. They must take this matter seriously.”

But this, Smith suggests, is not new territory for boards, or at least should not be.

“Boards are no strangers to risk. Remember, this is just a new form of risk, and if you had a finance director saying, I don't really understand finance risk, I'm going to leave that to my accountants or the head of HR saying I don't really understand people. I'm going to leave that to my HR department…”

“A board can no longer say I don't really understand cyber, I'm going to leave that to my IT people. It's no longer acceptable. You can't hide behind ignorance anymore,” he warns. “That perception has changed because it had to change.”

Visibility

Changing board perceptions around cybersecurity, though, demands an accurate picture of the threats facing the organisation. This includes the risks posed by vulnerabilities in applications or devices, through to industry-wide or even geopolitical risks. These influence whether or why an organisation comes under attack, if not how.

At the same time, cybersecurity teams need to understand how the business operates, and which systems are the “crown jewels”. Security risk and threat analysis needs to work together with accurate inventories of the business’ technology, locally, in the field, and in the cloud.

“I think CISOs need to have more than a technical conversation,” says Smith. “We talked about it this at the ROCon conference: about identifying your crown jewels, identifying what it is you are protecting. Because if you don't look after the important things, anything else you're doing is a waste of effort.

“We're protecting things that don't really matter… You do need to understand what the business is, and you need to be looking at risks from over the horizon, which is threat intelligence, all the way through to protection. And then when it does go wrong, ensuring that operations can continue,” says Smith.

“In the past, this focused on technical security. It now needs to sit within a business case and the CISO needs to be a communicator as much as a technical expert.”

Here, vendors such as Qualys play an important, and expanded role. Best known for its vulnerability detection and management, Qualys now provides a wider view of risk and threats through its Risk Operations Centre technology.

The ROC integrates vulnerability reports and CVEs with data from an enterprise’s end points and infrastructure, threat intelligence feeds and the wider business context, including regulations and geopolitical risk.

As Qualys’ Trull points out, this is a complex task, not least because enterprises depend on a widening range of in-house, cloud, open source and SaaS tools for their day-to-day operations.

“An application that you're building yourself is a conglomeration of open source libraries,” he says. “It's extremely complex just to say, what do I have and what would be the business impact… What would happen if they all went offline?” 

Even as CISOs have to grapple with the bigger business and strategic picture, failing to patch “one server out of 20,000” could still bring down the organisation, he says. 

“If our operations truly stop, everything's down. How long would it take us to recover? What if we had a rebuild from scratch? What is the amount of time that would take?”

CISOs, and boards, need to prepare for the worst, and be ready to recover the business when an attack does happen. And that depends on a clear view of vulnerabilities, threats and risks.

Delivered in partnership with Qualys.