Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

What is SOC 2?

Wondering what SOC 2 is and why it’s important? In this short video, we break down the essentials of SOC 2 compliance and how it helps businesses protect customer data. SOC 2 (Service Organization Control 2) is a set of standards focused on data security, privacy, and integrity, designed for companies handling sensitive customer information. If your business provides tech, cloud services, or manages data for clients, SOC 2 compliance can help you establish trust and meet today’s high security expectations.

Balancing AI Innovation and Data Governance: Tines and AWS Share Strategies for Secure AI Adoption

Are you struggling to balance the productivity gains delivered by Generative AI with security, data privacy and compliance concerns? In this webinar, Tines and AWS share how you can develop effective strategies to mitigate these risks while providing models with enough contextual information to allow them to solve problems accurately and effectively. You’ll hear from industry leaders who created a secure-by-design approach to building AI features and will learn.

5 Things to Learn About COBIT

You can’t do large-scale business in 2024 without having a successful, well-run IT infrastructure. Arguably, it’s difficult to do any sort of business well (large or small) without tuning your IT capabilities to your business objectives. This allows them to work as one, not against each other. COBIT is a framework created by ISACA (International Systems Audit and Control Association) to do this very task.

Why Security Configuration Management (SCM) Matters

Security configuration management (SCM) is all about making sure your security systems do what you think they’re doing. In tennis, there is something called an unforced error. This is when a player loses points for a mistake they made themselves, not due to the skill of the other opponent. In a big way, security misconfigurations are those unforced errors on the security side or instances in which we give attackers a free win. Let/node/29512/’s stop that.

Introduction to Privileged Access Management (PAM): Device Authority and CyberArk's Integration

Privileged Access Management (PAM) is a comprehensive methodology for managing and securing privileged accounts—those that possess elevated permissions to perform critical functions within an organisation’s IT infrastructure. These accounts enable access to sensitive data and systems, making them highly attractive to cybercriminals. The core objective of PAM is to ensure that only authorised personnel have access to these accounts, under strict monitoring and control.

New Discovery Service Boosts Security and Efficiency for IT Admins in the CyberArk Identity Security Platform

The new discovery service, delivered by the CyberArk Identity Security Platform, introduces new capabilities and streamlines the scanning of environments containing *nix, Windows and MacOS target machines. The new service offers SaaS-based flexible scans, local accounts discovery based on endpoint agents, data collection and enhanced automation using Discovery rules.

The Wait Is Over...The Final CMMC Rule Explained

The publication of the final program rule for the Cybersecurity Maturity Model Certification (CMMC) Program, 32 CFR Part 170, in the Federal Register on October 15, 2024, was an important milestone toward ensuring the confidentiality of sensitive defense information and stemming the theft of that information by foreign adversaries. The rule becomes effective and the CMMC Program comes into existence on December 16, 2024.

Threat Context Monthly: Executive intelligence briefing for October 2024

Welcome to the Threat Context Monthly blog series where we provide a comprehensive roundup of the most relevant cybersecurity news and threat information from KrakenLabs, Outpost24’s cyber threat intelligence team. Here’s what you need to know from October.

The Work Doesn't End After Cybersecurity Awareness Month

Each October, the cybersecurity industry recognizes Cybersecurity Awareness Month, an international initiative first launched by the National Cybersecurity Alliance in 2004 to provide education about online safety and empower individuals and businesses to protect their data from cybercrime. This October, Keeper Security took this important commemorative month one step further. We decided that it’s time to move from knowing digital risks to taking decisive action to prevent damaging cyber attacks.