%term

CrowdStrike Cloud Infrastructure Entitlement Management (CIEM)

Nov 16, 2022 By CrowdStrike In CrowdStrike

Identity theft and overly permissive accounts are major challenges faced by organizations in public and hybrid cloud environments. Learn how CrowdStrike Cloud Infrastructure Entitlement Management (CIEM) can increase the security of your cloud infrastructure while simplifying management across clouds.

View Video

CrowdStrike

Read more about CrowdStrike Cloud Infrastructure Entitlement Management (CIEM)

Bridging the DevSecOps Application Connectivity Disconnect via IaC

Nov 15, 2022 By Anat Kleinmann, Sr. Product Manager In AlgoSec

Anat Kleinmann, AlgoSec's Sr. Product Manager and IaC expert, discusses how incorporating Infrastructure-as-Code into DevSecOps can allow teams to take a preventive approach to secure application connectivity.

Read Post

AlgoSec

Read more about Bridging the DevSecOps Application Connectivity Disconnect via IaC

How Sysdig is Using the ThreatQ Platform to Enhance Cloud Threat Detection and Response

Nov 15, 2022 By Mike Clark In ThreatQuotient

It is always interesting to learn about real-world examples of technologies at work. So, when ThreatQuotient invited me to share how we at Sysdig are using the ThreatQ Platform to enhance our cloud detection and response solutions, I was happy to participate.

Read Post

ThreatQuotient

Read more about How Sysdig is Using the ThreatQ Platform to Enhance Cloud Threat Detection and Response

5 best practices for building modern access control for cloud applications

Nov 15, 2022 By Brian Clark In Snyk

Recently, I met with Or Weis — a Snyk Ambassador — to discuss access control in the cloud. Or is an entrepreneur, based in Tel Aviv, where he founded Permit.io, a solution that empowers developers to bake in permissions and access control into any product in minutes and takes away the pain of constantly rebuilding them.

Read Post

Snyk

Read more about 5 best practices for building modern access control for cloud applications

Netskope: Cloud Services Vendor Of The Year

Nov 15, 2022 By Michael Herman In Netskope

Last week Netskope was awarded the “Cloud Services Vendor Of The Year” trophy at the UK’s CRN Awards. It is the second award we have won for our efforts in the UK channel this year – earlier in the summer we took home CRN’s “Technology Innovation” gong as well.

Read Post

Netskope

Read more about Netskope: Cloud Services Vendor Of The Year

How CrowdStrike Detects Cloud Storage Misconfigurations to Protect Valuable Data

Nov 14, 2022 By Ciaran OBrien - Matt Johnston In CrowdStrike

Cloud storage misconfigurations continue to become more prevalent and problematic for organizations as they expand their cloud infrastructure, driving the importance of technologies such as cloud security posture management (CSPM) as crucial tools for protectors everywhere. Consider the recently reported public exposure of data associated with some Microsoft customers and prospects.

Read Post

CrowdStrike

Read more about How CrowdStrike Detects Cloud Storage Misconfigurations to Protect Valuable Data

How to Set Up an Azure Point-to-Site VPN Tunnel

Nov 14, 2022 By Sujith Kumar In Netwrix

This post walks you through the steps of setting up a point-to-site VPN connection from a Windows server running Netwrix StealthAUDIT, so you can discover and monitor all your Azure SQL databases.

Read Post

Netwrix

Read more about How to Set Up an Azure Point-to-Site VPN Tunnel

Cloud security fundamentals part 5: measure what matters

Nov 11, 2022 By Drew Wright In Snyk

Many security engineers have woken up to dozens of Slack messages and emails telling them the day they dreaded is here: a vulnerability has been deployed, and now it must be fixed. Meetings and plans are abandoned while security engineers rush to fix the problem. It’s often a process failure that has led to the now-urgent issue. And these emergency issues can appear across a spectrum that includes all types of remediation efforts.

Read Post

Snyk

Read more about Cloud security fundamentals part 5: measure what matters

Securing AWS S3 Buckets with OPA and Object Lambda

Nov 10, 2022 By Adam Sandor In Styra

TL;DR: AWS Object Lamba can authorize requests to S3. We can create an Object Lambda that calls Open Policy Agent (OPA) to get a policy decision. This delegation allows us to implement policies using Rego and manage them in Styra Declarative Authorization Service (DAS).

Read Post

Styra

Read more about Securing AWS S3 Buckets with OPA and Object Lambda

Does Data Loss Prevention (DLP) produce too many false positives?

Nov 10, 2022 By Netskope In Netskope

Yes, legacy DLP produces too many false positives and can be very disruptive and impact productivity because it is unaware of risks and user behavior. Can modern DLP be aware of risks and context? In this Ask SME Anything we find out.

View Video