When deploying automation in their security operations centers, organizations should start with "small and simple things," advises Nat Smith of Gartner, who also offers tips on retaining skilled SOC analysts.
Cloud security trends like “shift-left security” and “DevSecOps” refer to new strategies and paradigms that help organizations keep workloads secure in the age of cloud-based, scale-out, constantly changing applications and infrastructure.
Many in IT, security, and development probably understand what these...
What really makes a "strong" password? And why are your end-users tortured with them in the first place? How do hackers crack your passwords with ease? And what can/should you do about your authentication methods?
For decades, end-users have borne the brunt of the password tyranny, a result of the IT industries'...
The latest edition of the ISMG Security Report describes new details emerging from the SolarWinds supply chain hack investigation. Also featured: A discussion of why security education is so crucial in 2021 and tips on how to retain security and operations center analysts.
Your cloud journey is unique, but a new guide shows there are common patterns that steer you to the best approach for a successful outcome.
Learn which cloud adoption pattern your organization aligns with, key risks, recommendations and important questions to ask yourself at each stage of your journey.
This 2020 Gartner guide recognizes the importance of both manual and automated NDR capabilities and why enterprises should determine early on which response strategy best meets their security goals.
Learn why network detection and response (NDR) must be a core component of any security strategy in today’s dynamic...
How to Build a Resilient SOC for Today and the Future
Today’s business environment entails a tremendous amount of data, along with many new applications, technologies, and security risks, all of which make the need for an effective security operation center critically important
Download this eBook which outlines a...
When your business only has to secure one or two small environments, the traditional, on-premises logging approach can suffice.
But as environments grow in scale and spread across multiple data centers and cloud providers, you need one place to store all the logs, metrics, and events related to security. That’s...
Organizations are using DevOps and Agile practices, coding in containers
and microservices, and adopting Kubernetes at a record pace to help
manage all these components. Even five years ago, the level of agility,
speed, and flexibility the cloud-native stack enables was but a dream.
Since Google first introduced...
The latest edition of the ISMG Security Report offers leadership lessons from Equifax CISO Jamil Farshchi and Mastercard's deputy CSO, Alissa "Dr. Jay" Abdullah. Also featured: An assessment of cybersecurity priorities for President-elect Joe Biden.
Motivation, retention, and support are the crucial components of every successful security awareness training program. After you’ve got your program in place and it’s optimized to motivate adult learners, you can start to focus on improving the ‘stickiness’ of your program by focusing on improving your...
In light of the SolarWinds supply chain breach and other security incidents, the United States has substantial work to do in building a resilient digital infrastructure, says David Forscey of the Aspen Cyber Group, who outlines a five-step road map.
Based on the results of an independent survey of IT and IT security
practitioners, this second annual report looks at the latest trends in
security operations centers (SOC), both positive and negative. Here
presents an unvarnished view of the current state of SOC performance and
effectiveness based on responses...