A while back I wrote up a post on the quick install of Forseti Security. I had a chance to mess around with the 2.0 version and wanted to note a few things down here and talk about how I’m trying out the idea of Security Policy as Code.
Modern log aggregation stacks including ELK (Elasticsearch, Logstash, and Kibana), Google’s Stackdriver, or AWS Cloudwatch are great tools, but their browser-based interfaces are not for everybody. At Egnyte, we rely heavily on logs to monitor our systems and solve customer issues. Therefore, many of our engineers depend on Kibana, the ELK browser-based query tool.
With the ever-evolving threat landscape, cybersecurity is something that can neither be taken lightly nor ignored. This statement holds true irrespective of the size of your business. Although from a marketing perspective, every type of publicity is a good publicity, you would definitely not want your company to come into the headlines for a data breach.
SIEM solution, as one of the best cybersecurity solutions, can help organizations being compliant with the GDPR strict requirements. As a matter of fact, GDPR compliance is indispensable for enterprises managing the data of European Union (EU) citizens because noncompliant organizations have to bear the brunt of huge penalties in terms of massive fine and reputational damage.
The recent scandal involving Facebook’s data privacy has garnered global media attention and widespread mistrust for the social platform. It all erupted when it was reported that private information from approximately 87 million profiles was used to covertly influence the 2016 U.S. election.
Across every major news outlet the topic of cyber security threats and data privacy are impossible to miss. From multinational companies being relieved of millions of credit card numbers, to foreign hacking, to the selling of user data via social media, digital security is clearly more important than ever. Threats are being realized by vulnerable organizations large and small.
A Security Operation Center (SOC) can be either a team who works 24/7 in shifts or a facility dedicated and well-organized to detect, prevent, assess, and respond to cyber-threats and incidents and helps to achieve compliance requirements.
A mature DevOps practice involves applying multiple tools at different steps of the delivery pipeline, and a new study from IntSights focuses on these tools that may be open to attack on the Internet. Each new tool added to your process can expand your attack surface area – and, in many cases, new development and delivery tools are being used without oversight from a security team.
Gone are the times when endpoint protection was limited to installing an anti-virus and expecting a reasonable level of protection. With the introduction of Bring Your Own Device (BYOD) and increasing number of IoT devices, there are more endpoints than ever and so are the security threats associated with them.
Best practices for securing your data when terminating an employee actually start with the initial onboarding process. Every established organization looking to scale should consult legal counsel after first having drafted an employee handbook. Once created, every employee should be provided an employee handbook outlining the acceptable use policy related to any and all corporate IT resources.
