Late last week, while working with my team on our continued search for a Next Gen Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR), and User and Entity Behavior Analytics (UEBA)
A Primer on Vulnerability Management
You are a business that stores data on your organization’s network and wants to keep the network as secure as possible. Protecting your business assets has become a complex challenge that includes keeping up with
Three Tips on Why Multi-Factor Authentication is Critical to Data Security
Cybercrime is rife in 2022. Kaspersky released a new report revealing a growing number of cyberattacks on small businesses so far in 2022. Researchers compared the period between January and April 2022 to the same period in
2022 RSA Conference – 3 Key Takeaways
According to this article by CRN about this year’s RSA Security Conference, “cybersecurity is now in ‘fast-forward’ mode where attendees are almost in awe at the transformation of the industry since 2020”. I’d have to
Security Lesson #7: The Essentials of Implementing Effective Perimeter Security
As I highlighted in my first post, no company or government agency is immune to cyberattacks, and these attacks are a growing threat to every organization. To protect against these attacks, you need a layered security system, starting
Security Lesson #6: What Are Endpoints and How Do You Secure Them?
This is the latest post in our Security Lessons series. In our last post, we talked about application security and how the security measures at the application level prevent data or code within the application
Security Lesson #5: How to Think about Your Application Security Strategy
This is the latest post in our Security Lessons series. In my last two posts, I explained what data security is and outlined data security best practices. In this post, I turn to the next
Top 5 Cybersecurity Trends in 2022: Pandemic-Level Ransomware, Talent Gap, Government Involvement, Threat Intel Availability, and more
It’s no secret that cybersecurity attacks and breaches have accelerated in recent years, but the growing impact and volume of such attacks has entered the public eye more aggressively than ever before. From record-breaking ransomware
Advisory: Apache Log4j Vulnerability Log4j zero-day vulnerability AKA Log4Shell (CVE-2021-44228)
What is the Log4j vulnerability? On December 9, a remote code execution (RCE) vulnerability was identified in Java logging library Apache Log4j, which is a ubiquitous software component used throughout the Internet and many applications. The
Security Lesson #4: Build Your Data Security Strategy on Best Practices
The data security layer is about protecting the data you have. It includes the different cybersecurity practices that you use to secure your data and prevent data breaches and misuse. Data encryption and access restrictions