Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

upguard

How to Resolve SSL Configuration Risks

Oct 30, 2023 By Caitlin Postal In UpGuard
Transport Layer Security (TLS) provides security for internet communications. TLS is the successor to the now-deprecated Secure Sockets Layer (SSL), but it is common for TLS and SSL to be used as synonyms for the current cryptographic protocols that encrypt digital communications through public key infrastructure (PKI).
Read Post
bitsight

Top 3 Vendor Cybersecurity IT Risk Assessment Templates

Oct 30, 2023 By Brian Thomas In BitSight
If you’re developing a vendor risk management (VRM) plan from scratch or looking to scale your existing program, a cybersecurity IT risk assessment template can help you get started. Fortunately, you have options. In this blog, we’ve listed several templates, frameworks, and checklists that can help you create a personalized vendor cybersecurity IT risk assessment questionnaire.
Read Post
bitsight

SEC's Cybersecurity Regulations, Part III: The Relationship Between the CISO & The Board

Oct 30, 2023 By Jake Olcott & Nicole Matusek In BitSight
Cybersecurity is a top risk for corporate directors to understand and navigate. The implications of cyber events for a company are many and growing: instantly damaged reputations that erode years of credibility and trust with customers and investors, impaired profitability from customer attrition and increased operating costs, lost intellectual property, fines and litigation, and harm to a company’s people and culture.
Read Post
splunk

SOARing High for M-21-31

Oct 30, 2023 By Derrick Lawson In Splunk
As most folks who work in the US Federal Civilian space are aware, we are now past the August 2023 date to meet Enterprise Logging Level 3 (EL3) in support of the M-21-31 OMB Mandate. As part of the Advanced Requirements in EL3, Logging Orchestration, Automation, & Response enters Finalizing Implementation, meaning agencies should be completing and rolling out automated incident response playbooks.
Read Post
tripwire

A Scary Story of Group Policy Gone Wrong: Accidental Misconfigurations

Oct 30, 2023 By Chris Hudson In Tripwire

In the world of cybersecurity, insider threats remain a potent and often underestimated danger. These threats can emanate not only from malicious actors within an organization but also from well-intentioned employees who inadvertently compromise security with a mis-click or other unwitting action.

Read Post
indusface

DDoS Traffic Analysis Techniques for SOC Teams

Oct 30, 2023 By Phani Deepak Akella In Indusface
A 60-minute DDoS attack could be launched with just $5 as per pricing on the Dark Web, and this was reduced from $15 in 2021. Unlike advanced attacks such as bot or zero-day attacks, these could be launched by hiring bandwidth on any of the ‘DDoS as a service’ websites. No wonder even Gartner calls out DDoS as one of the biggest threat vectors for security teams worldwide.
Read Post
veracode

Top 6 DevOps Web Application Security Best Practices

Oct 30, 2023 By Cody Bertram In Veracode

In today’s world, the importance of incorporating web application security best practices cannot be overstated. Recent studies show that web applications are the top attack vector in nearly 80% of incidents. The good news is DevOps processes lend themselves to integrated security practices. Here are the top six best practices for seamlessly weaving web application security into DevOps.

Read Post

Arctic Wolf Always Ahead: Gartner Peer Insights Customers' Choice in Managed Detection & Response

Oct 30, 2023 By Arctic Wolf In Arctic Wolf
Arctic Wolf was named as the Customers’ Choice for North America in the July 2023 Gartner® Peer Insights™ ‘ Voice of the Customer: Managed Detection and Response Services’ . Our Chief Product Officer Dan Schiappa explains how we continue to differentiate our approach to MDR with a full-service cloud-native platform that is praised by organizations worldwide for its efficacy, efficiency, and scale as attack vectors widen and existing endpoint solutions alone fail to protect organizations.
View Video

Arctic Wolf Always Ahead: Managed Security Awareness

Oct 30, 2023 By Arctic Wolf In Arctic Wolf
Our Chief Product Officer Dan Schiappa explains the differentiated approach Arctic Wolf takes to Managed Security Awareness®, making security education as simple and effective as possible for our customers. With Hollywood-quality production and entertaining material, Arctic Wolf's approach to micro-learning is both fast and fun.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.