ISC2 Insights
The latest ISC2 updates, along with member views on global cybersecurity trends and issues, public policy, technology innovation and more.
Article •November 11, 2025 Join Cybersecurity Leaders at ISC2 SECURE London 2025: AI, Innovation and Emerging Threats
Discover the latest trends, technologies and threats shaping cybersecurity at ISC2 SECURE London 2025, where industry leaders and professionals come together for a day of insight, innovation and collaboration.
Article •November 7, 2025 #ISC2Congress: Securing the Skies – The Cybersecurity Challenges of Advanced Air Mobility
Securing our airspace and the devices that pass through it is more critical than ever, with civilian and military drones now part of the mix. Securing piloted and autonomous craft, airspace infrastructure and communications is therefore critical to maintain safety and operational viability.
Article •November 6, 2025 #ISC2Congress: License to Secure – A People-Centric Approach to Managing Cumulative Third-Party Data Breach Risk
Explore a people-centric approach to managing cumulative third-party data breach risk. Learn how cybersecurity leaders are shifting from traditional vendor assessments to data-driven models that reflect the complexity of today’s interconnected digital ecosystems.
Article •November 6, 2025 #ISC2Congress: Everyone Has a Plan Until They Are Punched in the Mouth
From misconfiguration of technical controls, process failure or misalignment of job function, failure is inevitable. It is important to turn that failure into opportunity, as explained by a panel of experts at ISC2 Security Congress, who shared their largest career missteps with the goal of embracing failure.
Article •November 6, 2025 #ISC2Congress: Beyond the Snowflake Breach
At ISC2 Congress in October 2025 Vishal Chawla, CISSP, Founder and CEO of BluOcean Cyber, talked about the Snowflake data breach of the previous year and asked: was it really a vendor failure?
Article •November 5, 2025 #ISC2Congress: Learn Common Red-flag Words to Avoid in a Professional Services Agreement
Do you always read the fine print in Professional Services Agreements before signing on the dotted line? You should. In his session at ISC2 Security Congress 2025, Mike Monahan, CISSP, of Burns & McDonnell warned of the eight “malwords” that often appear in contracts which can cause problems if you don’t root them out before signing on the dotted line.
Article •November 4, 2025 #ISC2Congress: AI Growth Demands Steep Learning Curve from Organizations
Keynote speaker Brian Krebs calls for more discernment on new technology such as AI, more offensive cybersecurity
Article •November 4, 2025 ISC2 Cybersecurity Month: Resources and Insights
#CybersecurityAwarenessMonth - ISC2 marked Cybersecurity Awareness Month with a series of articles featuring advice, experiences and opinions from ISC2 members on how to raise cybersecurity awareness, tackle critical security challenges to create a more robust and resilient workplace and to improve understanding of key cybersecurity trends and issues. We’ve collected that shared knowledge into a single resource for you to use and share.
Article •November 3, 2025 Who Earns the ISC2 Certified in Cybersecurity Certification?
Discover key trends among ISC2 Certified in Cybersecurity (CC) holders, including job roles, experience levels and career benefits, as the credential celebrates its three-year milestone.
Article •October 31, 2025 Risk Acceptance: A Sticking-Plaster Solution?
#CybersecurityAwarenessMonth - Done thoughtfully, risk acceptance is a valuable governance tool; As Ernest Blankson, CISSP, explains, problems arise when acceptance shifts from being a conscious choice to a routine shortcut and a temporary fix.