CIO.works – Page 26

Shifting the Cybersecurity Odds

Cybersecurity challenges persist despite rising investments. Key areas to address for resilience include: accurate asset management to mitigate visibility issues; protecting against leaked credentials with two-factor authentication; prioritizing vulnerabilities based on risk assessments; and making informed product purchasing decisions through real-world testing. Taking actionable steps can improve defense effectiveness and shift the odds in favor of organizations against cyber threats.

https://www.theregister.com/2025/02/24/shifting_the_cybersecurity_odds/

Top 5 Cybersecurity Threats HR Professionals Must Watch Out for in 2025

By CIO / Blog / HR, cybersecurity

Top 5 cybersecurity threats for HR in 2025:

AI-Enhanced Phishing: Cybercriminals use AI to create more convincing phishing attacks.
Insider Threats: Employees may unintentionally or maliciously leak sensitive data due to excessive access.
Third-Party Tech Vulnerabilities: Reliance on HR tech platforms can expose organizations if a vendor is compromised.
Remote Work Risks: Unsecured personal devices and networks increase data vulnerability.
Quantum Computing Risks: Advanced computing capabilities may outpace current encryption, allowing future decryption of intercepted data.

HR must proactively improve security and employee training to mitigate these threats.

https://www.shrm.org/in/topics-tools/news/blogs/top-5-cybersecurity-threat-hr-professionals-should-know

6 Reasons so Many IT Orgs Fail to Exceed Expectations Today

By CIO / Blog / strategy

TLDR: Many IT organizations underperform due to: 1) vague expectations, 2) misaligned success metrics, 3) shifting targets, 4) legacy technology hurdles, 5) insufficient resources, and 6) unclear accountability structures.

https://www.cio.com/article/3829265/6-reasons-so-many-it-orgs-fail-to-exceed-expectations-today.html

Prioritizing Organizational Cybersecurity Governance, Boosting Operational Resilience Across OT, ICS Environments

By CIO / Blog / operational technology, cybersecurity

Cybersecurity governance in OT and ICS is crucial for organizational resilience. Companies must adapt to evolving regulatory standards and enhance employee training. Industry frameworks like ISA/IEC 62443 and NIST provide guidance for protection against cyber threats while balancing operational efficiency. Leadership plays a vital role in fostering a security culture and risk management. As IoT integration expands attack surfaces, organizations should adopt strong authentication, encryption, and continuous monitoring. Regular audits and industry collaboration are essential to remain compliant and proactive against cyber risks.

https://industrialcyber.co/features/prioritizing-organizational-cybersecurity-governance-boosting-operational-resilience-across-ot-ics-environments/

Software Engineering Job Openings Hit Five-year Low?

By CIO / Blog / recruiting

Software engineering job openings are at a five-year low, with a 35% decrease in vacancies since January 2020 and a 3.5x drop since mid-2022. Despite a broader job market increase of 10%, software development positions have plunged 34%. Factors include interest rate changes, tech overhiring in 2021-2022, and potential productivity boosts from AI tools. While hiring has slowed, some startups are thriving with smaller teams. Predictions remain mixed on future hiring trends, particularly with the emergence of non-developer software creation facilitated by AI.

https://blog.pragmaticengineer.com/software-engineer-jobs-five-year-low/

Microsoft Says AI Tools Such as Copilot or ChatGPT Are Affecting Critical Thinking at Work

By CIO / Blog / AI

Microsoft warns that AI tools like Copilot and ChatGPT could harm critical thinking at work, leading to reliance and reduced independent problem-solving. Research indicates that while AI enhances efficiency, it also diminishes active engagement in tasks, especially when workers overly trust AI outputs. The study calls for the design of AI to better support critical thinking, as workers face challenges adapting to these technologies.

https://www.itpro.com/technology/artificial-intelligence/ai-tools-critical-thinking-reliance

AI Killed The Tech Interview. Now What?

By CIO / Blog / recruiting, AI

AI has drastically changed tech interviews, making traditional methods ineffective. Interviews are often disliked, with candidates often overprepared for irrelevant tech skills. AI tools now allow easier problem-solving, undermining the validity of coding assessments like Hackerrank. Future solutions include in-person interviews, enhanced monitoring software, or adapting interviews to consider AI usage. A hybrid approach that combines remote assessments with in-person interviews could provide a balance. Ultimately, interviews will evolve to assess candidates' ability to effectively use AI and manage software development challenges.

https://kanenarraway.com/posts/ai-killed-the-tech-interview-now-what/

Coder Chief Product Officer on AI & Bringing CDEs to the Enterprise

By CIO / Blog / AI

Coder's Chief Product Officer, Eric Ledyard, discusses AI's role in transforming developer accessibility and the company's focus on cloud development environments (CDEs) for enterprises. Coder aims to streamline onboarding and enhance operational efficiency with scalable solutions. Ledyard sees AI as an opportunity rather than a threat, believing it will redefine developer roles but not eliminate them. Coder is expanding its offerings for large enterprises while continuing to support its open-source user base, ensuring compliance and security as they grow.

https://www.channelinsider.com/news-and-trends/us/coder-developer-enterprise/

Council Post: Lock All The Doors: The Cybersecurity Risks Of Overlooked Devices In Computer Networks

By CIO / Blog / cybersecurity

Cybersecurity threats often exploit overlooked devices like IoT appliances rather than traditional targets. These devices, often unsecured, can be gateways for attackers who gather data quietly. High-profile breaches, such as the Las Vegas casino hack via an unsecured fish tank, highlight these vulnerabilities. To mitigate risks, organizations should monitor devices, change default credentials, segment networks, and advocate for better security standards, reducing potential cybercrime exposure.

https://www.forbes.com/councils/forbestechcouncil/2025/02/21/lock-all-the-doors-the-cybersecurity-risks-of-overlooked-devices-in-computer-networks/

A Proactive Blueprint For Modern Cybersecurity

By CIO / Blog / cybersecurity

CTEM (Continuous Threat Exposure Management) offers a proactive cybersecurity strategy, focusing on continuous monitoring, context-driven prioritization, and consistent remediation. By integrating AI, it enhances threat detection and response, breaking down silos between detection and prevention efforts. This unification aids in holistic risk management and promotes cross-team collaboration. To measure success, CTEM emphasizes metrics like response times and vulnerability reductions, helping organizations demonstrate cybersecurity effectiveness and justify investments. In an evolving digital landscape, CTEM represents a dynamic approach to strengthening security posture.

https://www.forbes.com/sites/tonybradley/2025/02/21/a-proactive-blueprint-for-modern-cybersecurity/