Home > Blog > 10 Popular Blogs Every CISO Should Read

10 Popular Blogs Every CISO Should Read

The Chief Information Security Officer (CISO) of an organization is responsible for establishing the cybersecurity strategy and for maintaining the plan of action to protect information assets, ensuring employee security training, and supervising security teams. Given they have so many responsibilities, it is crucial they stay up to date on the latest security breaches, cybersecurity indicators from industry leaders, learn about the best practices in the security industry, and much more. In an attempt to make it easier to find the information CISOs are looking for, we are showcasing ten popular blogs for CISOs to help them stay on top of their game.

Center for Internet Security

The Center for Internet Security provides CISOs the information they need, such as the latest cyber threats and what the CISOs should focus on. They also have newsletters and advisory warnings in addition to blog posts.

CIO – Security

CIO-Security’s blog showcases detailed reviews of security suites made by experts along with news, how-tos, features, reviews, and videos. They provide different categories in their blog articles ranging fromIDG TechTalk Voices, news analysis, opinion, digital policy outlooks, interviews, and much more.

CSO Online

CSO Online has excellent up to date information with the latest information regarding information security. They have articles regarding how to stay secure in the cloud to 10 free security tools that are worth taking a look at. In addition to their well-written blog articles, they also have security-focused slideshows to other forms of media.

InfoSec Institute

The InfoSec Institute was founded in 1998 by information security instructors, and they now provide information for security sector certifications to training kits on topics such as Phishing. The InfoSec Institute’s blog has in-depth knowledge on a wide variety of issues including but not limited to, Fundamentals of Blockchain Security, Top must-have cybersecurity books, Top 6 security best practices for agile developers and much more.

Krebs on Security

The Krebs on Security blog is useful to CISOs since they provide information about the latest information leaks, data breaches, up to date warnings and security tools to be using and much more.

SANS Internet Storm Center

When CISOs need to see the level of malicious activity on the internet, it is best to check out the SANS Internet Storm Center since they continuously monitor the level of malicious activity on the internet. In addition to monitoring, the SANS Internet Storm Center provides various podcasts and forums so CISOs can stay up to date.

TechTarget – SearchCIO

TechTarget’s SearchCIO has a wide variety of resources for CIOs such as news, downloadable free guides, trending topic articles, articles on finding solutions for your current or next project, videos, podcasts, infographics, and much more. They have a “Topics Covered” panel, which gives a glance into the wide variety of the different topics they have articles on. These topics range from Digital business transformation and innovation to IT applications, infrastructure, and operations.

Verizon Security Blog

Need to find up to date information regarding data breach investigation reports, insights on security trends or white paper, and news? Verizon’s Security blog has a wide variety of information, no matter what one is looking for. Verizon’s Security Blog also has content from Verizon Insights lab, which has many articles that provide information regarding social engineering or insider threats.

Wired – Threat Level

Wired’s Threat Level focuses on news on crime, security, and privacy. They have both traditional blogs and podcasts for those who want to listen on the go. Well known writers such as Andy Greenberg writes blogs about whistleblowers, hacking briefs, dark web, and security.


In ZDNet’s CXO blog, they state, “Technology is such a vital competitive differentiator that all business execs, whether they are CIOs, CEOs, CFOs or CMOs, need to understand the essentials.” Their blogs give detailed, in-depth information that security executives need to know to be able to do their job accurately.

SVG sprite

Free trial

Contact us to learn more about a free trial.



Schedule a demo

Whether investor, risk actuary or cyber engineer, sign up for updates on TDI’s EcoSystem and let us know your area of particular interest.



Schedule a demo

Whether investor, risk actuary or cyber engineer, sign up for updates on TDI’s EcoSystem and let us know your area of particular interest.