El Diario del CISO El Diario del CISO (The CISO Journal) Edición 10

Desafíos EL DIARIO DEL CISO (THE CISO JOURNAL) Mayo(May), Volumen 10/2019 Pensando y Trabajando por un Líder de Seguridad Digital En esta edición Desafíos de un Líder de Seguridad Digital (LSD) CISOS.CLUB  Desafíos de un LSD de hoy (Challenges of a DSL’s today)  Pensamientos de un LSD  Thoughts of a DSL  International InfoSec & CyberSecurity News  Influencers  Influenciadores  Noticias de Seguridad y Ciberseguridad  Reportes y encuestas de la Semana (Report & surveys of the Week)  Ruta de la Seguridad  Bolsa de Empleo  Other Magazines & More ¿Qué debe significar para ti como profesional de seguridad digital o #LSD anticipar en el contexto de la Ciber- Seguridad? Challenges of a Digital Security Leader (#DSL) CISOS.CLUB “No podremos anticipar nada, mientras que no seamos capaces de cuestionar lo aprendido, desaprender lo que se sabe y ser curioso por lo que aún no se sabe” “We cannot anticipate anything, as long as we are not able to question what we have learned, unlearn what we know and be curious about what we still do not know” Pregunta de reflexión Reflection question ¿Cómo un #LSD construye su capacidad de anticipación? How does an #DSL builds its capacity to anticipate? Welcome to a new edition of El Diario del CISO. A space for learning and reflections for you as Digital Security Leader #DSL #DigitalSecLeader. The news of these two weeks that have already gone by continue to show the reality of the cybersecurity world and its quite interesting dynamics in a digital environment that is increasingly Volatile, Uncertain, Complex and Ambiguous. The most talked about these weeks are: Analyzes two years after the devastating Wannacry malware and even its effects in today's organizations. The exposure of Instagram data of more than 40 million users, the vulnerability that affects platforms such as CISCO and clearly WhatsApp that were affected. Microsoft and the urgency to apply security patches whenever it is possible to infect their systems. The costs that are still being analyzed in the Equifax case ; the analyzes one year after GDPR and its current effects. Studies that show that Ransomaware and Malware go down in their form but increase the use of tactics to hide this type of digital anomalies, as well as the effects that Phishing begins to have on cloud services specifically SaaS and last but not least Less important comments to Google for its recent publication of a bad security practice in the handling of information of people. These and other news show that it is necessary to be prepared for the uncertain and that digital security professionals and their leaders must know and understand the cybersecurity context in order to prepare for uncertain scenarios like the current ones. What should it mean for you as a digital security professional or #DSL to anticipate in the context of Cyber Security?