Find Resources & Connect with members on topics that interest you.

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

Please sign in to see your topics.

You must be logged in to join this group.


Share knowledge about CyberSecurity with other ISACA members and idenfity and discuss issues that need more guidance from ISACA. Collaborate, make connections and learn how to keep your organization safe from Cyber risks.

ISACA members can participate by clicking on the “Join this Community” button. You must be signed into the site. Set your alerts to be notified of new discussion activity within this community. Not an ISACA member? Join now!

This Topic Has:
2398 Members
2 Online
17690 Visits

Community Leader



Badge: Energizer



Title: Service Area Manager / Senior Managing Consultant

Badge: Energizer


NEW! Activity Badges

Badges help others understand your level of community activity and your reputation as a contributor within the Knowledge Center. Learn More.

Discussions: 111 total

Must be a Topic member to contribute
View All »
The question : How will this impact the development of of expertise in cybersecurity ? There is a recognised lack of expertise in cybersecurity. Also, governments will be seeking partnerships with private sector on cybersecurity issues....
M.Lambert | 5/29/2015 1:31:09 PM | COMMENTS(5)
Hi Everyone, First of all I would like to WELCOME any new members just joining the Cybersecurity Group for the first time. This is intended to be a discussion area for new folks just joining the Cybersecurity Group for the first time. Please feel free to ...
Melody | 5/29/2015 12:45:38 PM | COMMENTS(11)
US - DHS is tasked to develop a set of voluntary security and privacy standards for Information Sharing and Analysis Organizations. Now, DHS is requesting public input on cyber info exchange group formation. See more at: http://w...
M.Lambert | 5/29/2015 11:25:08 AM | COMMENTS(3)
This is what Bruce Schneier claims in his article about a hacker who was detained by FBI after Tweeting about airplane software vulnerabilities. the facts that were reported: Chris Roberts was detained by FBI agents on Wednesday as he was deplanin...
M.Lambert | 5/20/2015 10:29:08 AM | COMMENTS(12)
Please feel free to invite your colleagues to join in. When you’re asked why to collaborate with this specific cybersecurity community, the answer is that we have more to offer: On top of discussions about the most current issues, we have: ...
M.Lambert | 5/14/2015 1:15:06 PM | COMMENTS(0)
ISACA members will have the opportunity to vote on approval of the new bylaws beginning 27 April at 9AM CDT (UTC -5 hours) until 6 June at 1AM CDT (UTC -5 hours). Votes can be cast by electronic ballot or by voting in person at the ISACA annual membersh...
Kim091 | 5/11/2015 6:40:08 PM | COMMENTS(5)

Documents & Publications: 69 total

Must be a Topic member to contribute
View All »
White Papers
Posted by ISACA 15 days ago
Posted by ISACA 29 days ago
Provides an overview of CSX as compared to other organizations as of 18 April 2015 and may not reflect items added or removed after that date.
Posted by Kim091 30 days ago
Posted by ISACA 43 days ago

Events & Online Learning: 5 total

Journal Articles: 67 total

Volume 3, 2015
by Roberto Puricelli, CISM
In recent years, numerous cases of advanced persistent threats (APTs) and data breaches have been seen, with those involving the largest, most high-profile enterprises garnering the most media attention.
Volume 3, 2015
by Steven J. Ross, CISA, CISSP, MBCP
Every now and again, I like to take a poke at standards, just to see what makes them work. Under consideration here is the cybersecurity framework published by the US National Institute of Standards and Technology early in 2014.
Volume 2, 2015
by Dan Shoemaker and William Arthur Conklin | Reviewed by Dauda Sule, CISA
Cybersecurity: The Essential Body of Knowledge is based on the US Department of Homeland Security’s compendium of best practices.
Volume 2, 2015
by Steven J. Ross, CISA, CISSP, MBCP
I did a Google search on the word cyber and was told there are 467 million references to that term.
Volume 2, 2015
by Larry G. Wlosinski, CISA, CISM, CRISC, CAP, CBCP, CDP, CISSP, ITIL V3
Information security events that affect cloud systems are occurring with no end in sight, so it should be no surprise that the cloud should be treated as a nonsecure environment with numerous threats and concerns.
Volume 1, 2015
by Tieu Luu
In November 2013, the US Office of Management and Budget (OMB) issued memorandum M-14-03 requiring all federal departments and agencies to establish an information security continuous monitoring (ISCM) program.

Wikis: 2 total

Blog Posts: 17 total

Data Privacy in today's world has crossed over from a requirement dependent on one agency or organization to be the global phenomenon.  Today the data traverses across the countries as well as continents at the speed unimaginable in past. In a flash of se...
Posted By : Mayank | 0 comments
  Rob Stroud is the New York based Vice President of Strategy and Innovation at CA Technologies and is the current President for the 2014-15 administrative term.  I caught up with Rob in Australia when he visited Canberra in June 2014...
Posted By : Rob Hanson | 2 comments
I saw Garry at the Sydney Chapter’s successful Strategic Planning event in July 2014.  He was animated and gregarious during the evening’s cocktail event and it felt good to see him again and catch...
Posted By : Rob Hanson | 0 comments
Agile technique in software development has been around for quite some time. There have been efforts to adopt the agile techniques for strategic planning, alignment and execution. Following are some of the relevant articles/blog posts in this area. The to...
Posted By : SA | 0 comments
Having been associated with the BS 7799 from its introduction as a Security Standard, and as a Contributor to the ISO 27001, and the last and final Chair of the ISO 27001 at the Department of Trade and Industry (DTI) I have been a long term supporter, and...
Posted By : John379 | 0 comments
and Become More Secure As a penetration tester I find it TOO EASY to fully compromise an internal network – without finding a single “vulnerability”! I spend most of my time on two types of engagements — PCI projects and penetration tests. The pen test...
Posted By : Stewart141 | 0 comments