The findings from a penetration test can help you identify risks and gaps in your security controls. Charles Gillman offers tips to maximize the value of your next pen test and, in the process, deliver better results.
cloud migration, and the work from anywhere
model are opening up a world of possibilities
for organizations, pushing them to reinvent
core business models and unlock new revenue
On the other hand, from SolarWinds
to the recent Colonial Pipeline attack, it has
While there are many solutions that claim to simplify certificate lifecycle management, not all of
them are built to address the unique complexities of today’s expansive and distributed digital
When evaluating a certificate management solution, it is important to look for
key capabilities that...
80% of companies will allow employees to work from home or the office. We call this “hybrid work.” This has created a need for secure access services that work consistently across locations so users can work from anywhere, can scale easily without complexity, and can minimize risk of cyber threats like ransomware...
Steve King, director of cybersecurity advisory services for ISMG's CyberTheory, has just been appointed a member of the Forbes Technology Council. He discusses the role, his passion for Zero Trust and new initiatives to expect from CyberTheory in 2022.
The U.S. Transportation Security Administration has issued new security directives for higher-risk freight railroads, passenger rail, and rail transit that it says will strengthen cybersecurity across the transportation sector in response to growing threats to critical infrastructure.
The Bioeconomy Information Sharing and Analysis Center is warning biotechnology organizations, including vaccine makers and other biomanufacturers, of escalating threats involving Tardigrade malware, which experts say is used to launch ransomware and other potentially serious attacks.
The latest edition of the ISMG Security Report features an analysis of best practices for negotiating a ransom payment. Also featured: Busting Zero Trust myths and the dangers of mythologizing defenders.
There is a safer and potentially more profitable way to
conduct business along the manufacturing enterprise –
and the funny thing is it has been here all the time.
By applying API RP 754 and extending it with edge
analytics, it is possible for manufacturers to create a process safety
Cyber fusion center platforms (CFC) were initially designed to address these
challenges but haven’t always delivered on their promise. The reason is that most
platforms provide just one or two of the three core SOAR capabilities (security
orchestration, automation, and response) and not well enough to...
Integrating a complete and powerful SOC solution into your business will help
alleviate the risks and workload involved in monitoring and protecting your network.
When evaluating SOC options, whether in-house or outsourced, it is important to
understand that a SOC’s capabilities will determine the success of your...
A recent FireEye report, based
on interviews with 800 CISOs, showed that more than half of all
businesses aren’t ready for a cyberattack.
Additionally, in a study by the Ponemon Institute, nearly two-thirds of all
businesses experienced a cyberattack or breach in the previous 12
months. 65% of respondents said...
What the Good News Is, What to Watch Out For, and What to Do About It
Shifting security even further to the left to
achieve scale and speed requires a carefully
weighed understanding of the state of security.
Download this DevSecOps guide which presents:
Trends that will help
bolster the capabilities of...
Zero Trust: Is it the operational model that's going to propel us into a more secure future? Or just another marketing message to be tossed onto the pile of past campaigns? In this latest Cybersecurity Leadership panel, the top minds in the sector weigh in on the present and future of Zero Trust.