CIO

DECEMBER 18, 2023

Over the summer, I wrote a column about how CIOs are worried about the informal rise of generative AI in the enterprise. Since then, many CIOs I’ve spoken with have grappled with enterprise data security and privacy issues around AI usage in their companies. Government oversight All the recent innovation has certainly caught the U.S.

Artificial Inteligence 299

Artificial Inteligence Enterprise Generative AI Firewall 299

CIO

FEBRUARY 24, 2023

Shift-left security” is the concept that security measures, focus areas, and implications should occur further to the left—or earlier—in the lifecycle than the typical phases that used to be entry points for security testing and protections. How did the term shift-left security originate?

Security 130

Security SDLC Compliance Storage 130

CIO

JANUARY 19, 2023

By Ravi Balwada, CTO of Guitar Center In retail, we don’t have the luxury of thinking about security as an afterthought. Also thanks to modern cybersecurity , new use cases have become available in retail that were never possible before. There is also the challenge of forensics and investigation of security incidents.

CTO 130

CTO Retail Mobile Innovation 130

The Crazy Programmer

MARCH 3, 2021

Cybersecurity isn’t something new. Unfortunately, the escalating rate of digitalization that is consuming IT resources across organizations has led to basic network and device hygiene becoming one of the most neglected components of cybersecurity. This shows that cybersecurity needs to become a fundamental best practice.

Systems Review 147

Systems Review Guidelines Compliance Firewall 147

Firemon

JULY 21, 2020

It’s an enormous and unending daily challenge to make sure that changes to firewall policies are not just executed quickly and efficiently, but changes don’t decrease the security of your network. Through the next several years, Gartner says that misconfiguration errors will be responsible for 99% of all firewall security breaches. .

Change Management 98

Change Management Compliance Firewall Software Review 98

CIO

APRIL 27, 2023

For technologists with the right skills and expertise, the demand for talent remains and businesses continue to invest in technical skills such as data analytics, security, and cloud. The demand for specialized skills has boosted salaries in cybersecurity, data, engineering, development, and program management. increase from 2021.

Technical Review 290

Technical Review Software Review Systems Review Software Engineering 290

Datavail

APRIL 22, 2020

Perhaps the biggest reason to modernize your legacy system is that its elements are no longer able to keep your agency safe from criminals or up-to-date with compliance requirements. Cybercriminals have targeted these government agencies and stolen millions of dollars with successful ransomware attacks.

Compliance 98

Compliance Firewall Industry Virtualization 98

AWS Machine Learning - AI

JANUARY 26, 2024

Many customers are looking for guidance on how to manage security, privacy, and compliance as they develop generative AI applications. We then discuss how building on a secure foundation is essential for generative AI.

Artificial Inteligence 120

Artificial Inteligence Generative AI Security Applications 120

CIO

DECEMBER 21, 2023

The diversification of payment methods and gradual increase in the volume of online transactions have cast a spotlight on the need for payment security compliance within the airline industry. With the new, recently onboarded Payment Card Industry Data Security Standard (PCI DSS) v4.0, she wonders. The PCI DSS v4.0,

Airlines 130

Airlines Security Systems Review Technical Review 130

Firemon

APRIL 12, 2023

The RSA cybersecurity conference in San Francisco is one of the largest and most respected conferences in the security industry, and it’s always exciting to see what new technologies and insights are being showcased. I’ve shared below what you can expect from FireMon and where you can find our speaking sessions.

Firewall 98

Firewall Conference Policies Compliance 98

CIO

NOVEMBER 14, 2023

If you ask someone, they’ll often recite a list of a dozen potential benefits of cloud — lower costs, better security, greater agility, and so on,” says Smith. data, security, development, architecture) as well. How will we balance security, agility, and usability? But that doesn’t answer the question.

Strategy 363

Strategy Cloud Weak Development Team Technical Review 363

Tenable

SEPTEMBER 8, 2023

Life is getting harder for cybersecurity pros, but there are ways to improve working conditions. Meanwhile, there’s a new, free attack-emulation tool for OT security teams. government is alerting about exploits to CVE-2022-47966 and CVE-2022-42475. Check out what a study found. Plus, the U.S.

Technical Review 67

Technical Review Systems Review Software Review Survey 67

Kaseya

MAY 2, 2022

What is a Security Operations Center (SOC)? A SOC is a centralized facility within an organization that houses an information security team responsible for continuously monitoring, detecting, analyzing and responding to any cybersecurity incidents on a 24/7/365 basis. And that’s why we have SOC. SIEM vs. SOC.

Security 111

Security Systems Review Network Malware 111

Tenable

JULY 15, 2022

Topics that are top of mind for the week ending July 15 | Government cybersecurity efforts tripped by technical debt. Neglect SaaS security at your own risk. Lessons learned about critical infrastructure security. 1 – Don’t downplay SaaS security. Regulatory compliance. And much more! Backup and storage.

Weak Development Team 53

Weak Development Team Government Infrastructure Architecture 53

Firemon

OCTOBER 31, 2023

As Australia has grown increasingly connected, the security of critical infrastructure has never been more paramount. In response to the evolving threat landscape, the Australian government enacted the Security of Critical Infrastructure Act (SOCI) in 2018. You cannot protect what you cannot see.

Infrastructure 49

Infrastructure Meeting Compliance Network 49

CircleCI

JULY 18, 2022

One emerging challenge that developers and IT leaders face is the need to stay compliant with regulations and control frameworks that stipulate comprehensive data security, incident response, and monitoring and reporting requirements. Compliance requirements can add significant overhead to an organization.

Compliance 52

Compliance Software Review Software Policies 52

CTOvision

OCTOBER 21, 2015

Founder and Chief Security Strategist at eSentire Eldon Sprickerhoff recently penned a blog post titled " The Perfect Storm: Understanding the Implications of the Regulatory Governance Spotlight." This is a field we encourage all technology professionals to track, even if your current duties are far from the investment advice world.

CTO Coach 93

CTO Coach Government Firewall Compliance 93

Firemon

JUNE 26, 2020

But while complexity has never been easier, security has never been more difficult. FireMon’s 2020 State of Hybrid Cloud Security Report found respondents aren’t making much headway against the rapid rise of public cloud adoption. Hybrid cloud growth is outpacing the ability to secure it.

Cloud 111

Cloud Firewall Policies Compliance 111

Ivanti

JUNE 20, 2023

Increases in attack surface size lead to increased cybersecurity risk. Thus, logically, decreases in attack surface size lead to decreased cybersecurity risk. As with all things related to security and risk management, being proactive is preferred. Reduce your cybersecurity attack surface by reducing complexity.

Software Review 92

Software Review Policies Weak Development Team Technical Review 92

CTOvision

MAY 6, 2015

With this post we are initiating coverage of Firemon, provider of proactive security intelligence and governance capabilities. Firemon enables enterprises to continuously analyze, visualize and improve the capabilities of your existing network security infrastructure. from their website: Security Manager 8.0

Government 102

Government Firewall Policies Continuous Delivery 102

Ivanti

AUGUST 28, 2023

In a previous blog post, I discussed the two main areas to audit before the European Union’s updated Network and Information Security Directive (NIS2) becomes ratified law in October 2024. Review your current supply chain security flaws. Improving efficiency by streamlining processes, enhancing performance, reducing errors, etc.

Security 67

Security Technical Advisors Technical Review Compliance 67

Tenable

FEBRUARY 22, 2021

When you're new to vulnerability assessment (VA) – or any other area of cybersecurity, for that matter – some aspects of the process might seem unfamiliar or confusing. This is particularly true of the jargon; cybersecurity and technology as a whole have a long list of specialized terminology. . Balancing security and compliance.

Malware 89

Malware Spyware Compliance Network 89

Openxcell

OCTOBER 2, 2023

With a wide range of services, the companies now also offer Cloud Migration, Artificial Intelligence, Cybersecurity, Data Science, and SaaS solutions. The security of data is enhanced The importance of data security cannot be overstated in today’s globally connected world.

Technical Review 52

Technical Review Security Technology Weak Development Team 52

Mentormate

OCTOBER 4, 2021

However, investments in CI/CD can be leveraged to provide continuous security as well. Continuous Security Is an Investment in Freedom. In our experience, all of the same arguments can be applied to security as a critical feature of both the code that is built and the infrastructure on which it is deployed.

Software Review 98

Software Review Operating System Systems Review Testing 98

Palo Alto Networks

MAY 16, 2023

Implementing effective security measures becomes more difficult, especially if you are relying on manual inventory processes. Or, they could simply spin up a new cloud instance outside of security controls. These situations were rare with traditional IT infrastructures, but they're becoming increasingly common.

Systems Review 116

Systems Review Software Review Internet Cloud 116

Palo Alto Networks

JANUARY 16, 2020

federal government strategy since the early 2000s. However, when it comes to securing hybrid and public federal clouds, agencies have historically relied upon an abundance of people and point products. API-based cloud security and compliance. Network security management. Container security and compliance.

Cloud 53

Cloud Firewall Serverless Compliance 53

Firemon

OCTOBER 13, 2020

This is part 3 of a 4-part series addressing compliance myths and what you need to know about uniting compliance and security in a hybrid environment. One of the oldest security practices is to “just say no.” They can’t wave the white flag because compliance and access control are difficult and time-consuming for them.

Firewall 64

Firewall Compliance Policies Technical Review 64

d2iq

AUGUST 27, 2020

public sector organizations can accelerate adoption of the D2iQ Kubernetes Platform to more quickly and securely build and deploy cloud native applications and services. Many government agencies in the United States require Federal Information Processing Standards (FIPS) compliance or validation for deployed software.

Government 98

Government Transportation Telecommunications Healthcare 98

CIO

JANUARY 24, 2024

As leaders in healthcare and cybersecurity, we must be extra vigilant in understanding our vulnerabilities and providing our organizations with the best defense possible, even as we face ongoing budget constraints and a challenging cybersecurity talent shortage. Cyberattacks are inevitable, but successful attacks don’t have to be.

Healthcare 299

Healthcare Compliance Artificial Intelligence Artificial Inteligence 299

CTOvision

JUNE 30, 2015

Recently, a data breach at the Office of Personnel Management ( OPM ) demonstrated once again the vulnerability of data and how even when an organization has seemingly deployed the right tools, security holes can be exploited to gain access to highly sensitive information. One such integrated tool suite is produced by FireMon.

Firewall 114

Firewall Data Compliance Network 114

Palo Alto Networks

OCTOBER 18, 2019

By John Harrison, Regional Product Marketing Manager, EMEA, and Fred Streefland, Regional Chief Security Officer. You might be surprised to learn that SSL decryption can be a valuable tool for protecting data in compliance with the European Union’s General Data Protection Regulation (GDPR), when applied according to best practices.

Compliance 41

Compliance Malware Network Firewall 41

Firemon

SEPTEMBER 16, 2022

The most common threat to business security is accidental firewall and cloud security group misconfigurations. The average enterprise network team is asked to make more than 100 firewall changes per week, and these changes can then take weeks to manually implement. Problem 1: Time-consuming Manual Changes.

Change Management 52

Change Management Firewall Technical Review How To 52

Firemon

JULY 16, 2019

Every day, when I open LinkedIn or Twitter, I come across at least a handful of posts or articles on security automation. Some companies have taken the plunge, many are actively evaluating automation, and almost all security vendors are evangelizing it. Security decisions are very contextual. To automate or not to automate?

Strategy 40

Strategy Firewall Compliance Policies 40

Kaseya

DECEMBER 7, 2021

Globally, cybersecurity has emerged as one of the biggest challenges facing corporations, and discussions on how to prevent and defend against cyberthreats have been a focal point of MSPs and IT teams this year. Nonetheless, IT risk assessment isn’t just confined to cybersecurity.

Backup 64

Backup Disaster Recovery Weak Development Team Systems Review 64

Planbox

APRIL 15, 2020

Cyber Essentials demonstrates Planbox’s commitment to cyber security, and acknowledges that the company has taken the necessary steps to protect against a wide variety of the most common cyber attacks, viruses and malware. Secure Configuration. To learn more about Cyber Essentials, please visit the National Cyber Security Centre.

Malware 52

Malware Chemicals Firewall Government 52

Kaseya

OCTOBER 3, 2023

Endpoint detection and response (EDR) is among the latest breed of security software designed to keep emerging and sophisticated cyberthreats like ransomware at bay. Our blog provides all the information you need about EDR. Endpoint security is the first line of defense for any organization. Give it a read. What is EDR?

Malware 52

Malware Software Review Systems Review Technical Review 52

Datavail

APRIL 4, 2023

However, many businesses may still be hesitant to migrate to Oracle Cloud Infrastructure due to current investment in existing on-premise infrastructure, security and encryption concerns, and data governance. Oracle Cloud can allow your company to control how and where data is stored in public or private clouds behind firewalls.

Infrastructure 52

Infrastructure Cloud Systems Review Technical Review 52