Aphinia - Your CISO Wire Update
Here’s your weekly update on comings and goings, jobs, networking opportunities and actionable insights:
These are the most recent appointments and promotions of your cybersecurity peers. Say “CONGRATS!”🥂 to:
→ Marshall Irwin was appointed as Chief Information Security Officer at Fastly.
→ Todd Jacobs was appointed as Chief Information Security Officer at Spiff.
→ Ajay Gupta was appointed as Chief Information Security Officer at AmerisourceBergen.
→ Russ Murrell was promoted toChief Information Security Officer at Texas Capital.
→ Scott Roberts was appointed as Chief Information Security Officer at UiPath.
→ Rich Baich was appointed as Chief Information Security Officer at AT&T.
→ William Gregorian was appointed as Chief Information Security Officer at Galileo Medical.
→ Keith Barros was appointed as Chief Information Security Officer at Chapman University.
→ Sean Wechter was appointed as Chief Information Security Officer at Boomi.
→ Kristina Dorville was appointed as Chief Information Security Officer at Truist Insurance Holdings.
→ Heather Gantt-Evans was appointed as Chief Information Security Officer at Marqeta.
Appointed? Promoted? Let us know!
Aphinia is growing! Say hello, reach and connect with our new members:
Edison Humphries, CISO, MasTec, Inc.
Hemant Jain, CISO, State of Indiana
Jitendra Chandna, CISO, Definture Inc.
Ryan Leonard, CTO / CISO, EverSec Group
Garth Kippen, Director Information Security, Bluegreen Vacations
Daniel Pekol, Director of Information Security, Nutanix
David Gatewood, Director Offensive Security - Red Team, HCA Healthcare, Inc.
Douglas Yale, Principal, Global Information Security (GIS), OpenText
Gary Landau, Virtual CISO, Unisys
Jordan Turek, VP, Deputy CISO, Sandy Spring Bank
Welcome on board!
Do you want to share your story with fellow CISOs? Want to impart your wisdom and share actionable insights? And - importantly - to further enhance your personal brand and get visibility for the next advisory role, consulting gig or a new position?
Check out our wide ranging conversation with our guest Darrel Raynor (Senior Director, Technology and Cybersecurity, Heartland AEA) about all things cybersecurity, current and emergent cybersecurity threats, best practices in mitigation, and career advice:
For your personal 30 minutes of spotlight simply respond with "interview" in the subject of the email and we will find time that works for you.
Our dance card is filling up fast, please respond today!
Several important events happened that merit your attention:
Microsoft scrutinized. Cyber Safety Review Board will review the role of Microsoft in the alleged breach of government email servers by the Chinese hackers.
Ivanti - third time is the charm. Ivanti reported another vulnerability in its Endpoint Manager Mobile (EPMM) application, formerly known as MobileIron Core. That’s the third vulnerability in less than two weeks.
Details on Lapsus$. The US DHS Cyber Safety Review Board (CSRB) has published its eport on the Lapsus$ gang. The report looks at the gang's techniques and made 10 recommendations on how companies can defend themselves.
Know thy recruiter. Estonian crypto payment company CoinsPaid was hacked with social engineering and $37 million was stolen when a developer was approached on LinkedIn with a lucrative job offer and as part of the interview, downloaded a “test assignment” that contained malicious payload to his work computer.
US AI cyber contest: The White House and DARPA have announced a two-year contest designed to improve the security of AI systems. Named the AI Cyber Challenge (AIxCC), the contest will provide security researchers with access to cutting-edge technology from the world's leading AI companies, such as Google, Microsoft, and OpenAI. The contest will include a prize pool of up to $20 million, with a $4 million top prize.
These senior cybersecurity sales roles you may want to forward to your friends and colleagues:
→ Sia Partners is looking for a Chief Information Security Officer in Philadelphia, PA.
→ Chemonics is looking for a Chief Information Security Officer (remote).
→ AvidXchange is looking for a Chief Information Security Officer in Charlotte, NC.
→ iHeartMedia is looking for a Chief Information Security Officer in Dallas, TX.
→ Surgery Partners is looking for a Chief Information Security Officer in Nashville, TN.
Looking for a job? Hiring? Let us know.
These are virtual and live events for the cyber community you may find interesting:
=Industry Events=
InfoSec World is taking place on September 25-27, 2023 in Lake Buena Vista, FL
CISO Summit is taking place on November 16, 2023 in New York, NY.
CyberTech is taking place on January 29-31, 2024 in Tel Aviv, Israel.
RSA 2024 is taking place on May 6-9, 2024 in San Francisco, CA.
Attending or hosting an event? Let us know!
There’s been discussion on implications of using AI products by OpenAI (ChatGPT) and Github (Copilot) in the work environment - from cybersecurity and potentially, legal standpoints.
To offer your opinion on the subject and to participate in the discussion, join Aphinia Slack channel here >
Bad guys have been busy recently 📈 :
China hacked Japan’s sensitive defense networks.
The database with names and addresses of 40 million registered UK voters was hacked.
Police Service of Northern Ireland (PSNI) experienced a severe security breach revealing personal details of its entire workforce.
Thousands of banking records exposed after Alberta dental benefits administrator hacked.
1 million Oregon Health Plan members impacted by data breach.
Georgia’s Cambridge College admitted it was hacked where 30,000 personal records were compromised.
But a handful of guys were nabbed 👮♀️:
Polish police took down LolekHosted.net, a bulletproof hosting service used by criminals to launch cyber-attacks and arrested 5 administrators.
Interpol shut down phishing-as-a-service operation named "16shop" with arrests of alleged operators made in Indonesia and Japan
Interpol arrested 103 individuals in 20 countries, seized 2 million euros and blocked 208 bank accounts in connection with the Nigerian cyber gang.
Stay safe.
Misha Sobolev
Aphinia