Security

Netwrix Data Classification - Overview

Jun 10, 2020 By Netwrix In Netwrix

Netwrix Data Classification is a software platform that helps you solve your most critical data security, content optimization and compliance needs, regardless of where your data is located. Every day employees produce tons of data. This skyrocketing data growth causes problems across the organization. Users can’t find the documents they need. Sensitive files get placed on public shares. Data storages reach their limits. It’s harder and harder for you to satisfy requests from your legal and compliance departments. Don’t let this pressure get a hold.

View Video

Netwrix

Read more about Netwrix Data Classification - Overview

Ask the Experts: Lessons Learned from Cloud & DevOps

Jun 10, 2020 By Tripwire In Tripwire

What can the cybersecurity industry learn from DevOps practices and cloud adoption? We asked various information security professionals to share their thoughts on how agile processes and flexibility could benefit security.

View Video

Tripwire

Read more about Ask the Experts: Lessons Learned from Cloud & DevOps

The MITRE ATT&CK Framework: Command and Control

Jun 10, 2020 By Travis Smith In Tripwire

Most malware these days has some level of Command and Control. This can be to exfiltrate data, tell the malware what instructions to execute next, or download encryption keys in the case of ransomware. In each case of command and control, the attacker is accessing the network from a remote location. Having insight into what is happening on the network is going to be crucial in addressing these techniques.

Read Post

Tripwire

Read more about The MITRE ATT&CK Framework: Command and Control

How Does Identity-Based Encryption Work?

Jun 10, 2020 By atlastugce In Logsign

With the help of breath taking technological advancements, the majority of our communications are conducted online. That is why encryption techniques are more important than ever. Keep reading to learn more about encryption techniques and identity based encryption.

Read Post

Logsign

Read more about How Does Identity-Based Encryption Work?

A guide to penetration testing for compliance

Jun 10, 2020 By Redscan In Redscan

In many cases, penetration testing – a type of ethical hacking engagement designed to identify and address security vulnerabilities in networks, systems and applications – is required. Sometimes this requirement is specified directly, while in other cases it is implied by a need to build audit or assessment processes to mitigate cyber risk. This blog identifies some of the most common pen testing standards and regulations and provides guidance about the type of testing required.

Read Post

Redscan

Read more about A guide to penetration testing for compliance

What Is Third-Party Risk Management?

Jun 9, 2020 By Abi Tyas Tunggal In UpGuard

Third-party risk management (TPRM) is the process of analyzing and minimizing risks associated with outsourcing to third-party vendors or service providers. This is commonly known as third-party risk or vendor risk and can include financial, environmental, reputational, and security risks due to a vendor's access to intellectual property, sensitive data, personally identifiable information (PII), and protected health information (PHI).

Read Post

UpGuard

Read more about What Is Third-Party Risk Management?

Ask the Experts: Building a Stronger Cybersecurity Community

Jun 9, 2020 By Tripwire In Tripwire

What can we do to help improve the cybersecurity community? In this video, we asked industry experts to share their advice for building a stronger, more inclusive network of information security professionals.

View Video

Tripwire

Security

Read more about Ask the Experts: Building a Stronger Cybersecurity Community

Léargas Security chooses Elastic, drops Splunk to battle COVID-19 fraud

Jun 9, 2020 By Patrick Kelley In Elastic

Léargas Security (Léargas is Gaelic for “insight”) provides clients with actionable insights into anomalous or abstract behaviors through the correlation of data gathered from converged security controls: cyber and physical.

Read Post

Elastic

Read more about Léargas Security chooses Elastic, drops Splunk to battle COVID-19 fraud

How to get compliance audit training in the new virtual workplace

Jun 9, 2020 By Rachel Zahr In Synopsys

As many businesses have begun to work almost entirely remotely until an as-yet-to-be-determined date, they have had to plan for activities that took place largely in person in the past. For example, many compliance audits have gone virtual in these times of uncertainty. This shift has forced organizations to adjust how they prepare and plan. But even in these times of uncertainty, it is your organization’s responsibility to stay sharp and on track with security knowledge, planning, and response.

Read Post

Synopsys

Read more about How to get compliance audit training in the new virtual workplace

June 2020: Compliance Certification Roundup

Jun 9, 2020 By Dave Schmoeller In RiskOptics

Each month, Reciprocity highlights companies that have earned compliance certifications for information security frameworks. Here’s our June 2020 roundup of compliance news from around the United States, and around the world.

Read Post

RiskOptics

Read more about June 2020: Compliance Certification Roundup

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

Netwrix Data Classification - Overview

Ask the Experts: Lessons Learned from Cloud & DevOps

The MITRE ATT&CK Framework: Command and Control

How Does Identity-Based Encryption Work?

A guide to penetration testing for compliance

What Is Third-Party Risk Management?

Ask the Experts: Building a Stronger Cybersecurity Community

Léargas Security chooses Elastic, drops Splunk to battle COVID-19 fraud

How to get compliance audit training in the new virtual workplace

June 2020: Compliance Certification Roundup

Monthly Archive

Follow Us