%term

20 CIS Controls: Control 20 - Penetration Tests and Red Team Exercises

Mar 20, 2018 By Travis Smith In Tripwire

Today, I will be going over Control 20 from version 7 of the top 20 CIS Controls – Penetration Tests and Red Team Exercises. I will go through the eight requirements and offer my thoughts on what I’ve found.

Read Post

Tripwire

Read more about 20 CIS Controls: Control 20 - Penetration Tests and Red Team Exercises

7 Steps to GDPR Compliance

Mar 16, 2018 By LevelBlue In LevelBlue

AlienVault Security Advocate, Javvad Malik, shares what your organization needs to know to achieve GDPR compliance and how AlienVault USM can speed up and simplify the process.

View Video

LevelBlue

Read more about 7 Steps to GDPR Compliance

EventSentry SysAdmin Tools: Digital Signature Verification with checksum.exe

Mar 16, 2018 By Ingmar Koecher In EventSentry

Windows supports a code-signing feature called Authenticode, which allows a software publisher to digitally sign executable files (e.g. .exe, .msi, …) so that users can verify their autenticity. The digital signature of a file can be viewed in the file properties in Windows explorer on the “Digital Signature” tab.

Read Post

EventSentry

Read more about EventSentry SysAdmin Tools: Digital Signature Verification with checksum.exe

5 employee cyber security training questions you need to ask

Mar 15, 2018 By Patrick Knight In Veriato

Chances are your organization already addresses cyber security to some extent in new employee onboarding. Whether that’s traditional training videos on cyber security that employees watch on their own time, presentations by IT, or brochures, most employees know that their companies have cyber security protocol and best practices. But how many of your employees actually know what the protocol and practices are?

Read Post

Veriato

Read more about 5 employee cyber security training questions you need to ask

Netskope Demo - Continuous security assessment for AWS

Mar 14, 2018 By Netskope In Netskope

Amazon Web Services is a dynamic, constantly-changing environment. DevOps users are adding resources or modifying existing resources, significantly increasing the risk of misconfigurations that could result in vulnerabilities or a potential breach.

View Video

Netskope

Read more about Netskope Demo - Continuous security assessment for AWS

SIEM Implementation Strategies

Mar 13, 2018 By Tripwire Guest Authors In Tripwire

A SIEM or Security Information and Event Management is only as good as its logs. People can think of logs as the fuel for the engine. Without logs (log management), the SIEM will never be useful. Selecting the right types of logs to ingest in your SIEM is a complex undertaking. On one hand, it is easy to say “Log it all!” but you will inevitably reach the glass ceiling of your SIEM, which will either be your licensing or you will cap the performance of the SIEM hardware.

Read Post

Tripwire

Read more about SIEM Implementation Strategies

Breaches Are Costing Companies Much More Than Money

Mar 13, 2018 By Kris Lahiri In Egnyte

On August 5, 2015, the British mobile phone retailer, Carphone Warehouse discovered a “sophisticated attack” on its systems, possibly compromising the personal information of 2.5 million customers and the encrypted credit card data of an additional 90,000 customers.

Read Post

Egnyte

Read more about Breaches Are Costing Companies Much More Than Money

How Machine Learning Techniques Impact File Analysis

Mar 13, 2018 By Amrit Jassal In Egnyte

Applying machine learning (ML) and artificial intelligence (AI) techniques to analyze files within a content repository can raise the bar on operating efficiencies and produce smarter solutions that bring “structure” to unstructured data.

Read Post

Egnyte

Read more about How Machine Learning Techniques Impact File Analysis

Why Zero Trust Is Not As Bad As It Sounds

Mar 1, 2018 By Patrick Knight In Veriato

"Zero Trust" refers to a network security strategy that calls for all users – internal and external – to be authenticated before gaining access to the network. Zero Trust means organizations never implicitly trust anyone with their sensitive data. Instead of using a blanket network perimeter, Zero Trust networks implement a series of micro-perimeters around data so only users with clearance to access certain data points can get to them.

Read Post

Veriato

Read more about Why Zero Trust Is Not As Bad As It Sounds

AlienVault® USM vs. OSSIM

Feb 28, 2018 By LevelBlue In LevelBlue

At AlienVault®, we regularly get questions about the differences between our open-source security project, OSSIM, and our commercial offering, AlienVault® USM. In this video, we explain the differences, as well as the similarities between the two.

View Video

LevelBlue

Read more about AlienVault® USM vs. OSSIM

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

20 CIS Controls: Control 20 - Penetration Tests and Red Team Exercises

7 Steps to GDPR Compliance

EventSentry SysAdmin Tools: Digital Signature Verification with checksum.exe

5 employee cyber security training questions you need to ask

Netskope Demo - Continuous security assessment for AWS

SIEM Implementation Strategies

Breaches Are Costing Companies Much More Than Money

How Machine Learning Techniques Impact File Analysis

Why Zero Trust Is Not As Bad As It Sounds

AlienVault® USM vs. OSSIM

Monthly Archive

Follow Us