Technologies & Solutions
Technologies & Solutions RSS Feed RSS

SEC0320-cyber-feat-slide1_900px.jpg

We are all Jeff Bezos

Mike Fong updated
Mike Fong
August 7, 2020
As much of the world continues to hunker down at home in response to COVID-19, threat actors continue to find ways of exploiting the crisis to gather sensitive and valuable information from individuals. But while we’re busy making sure that our primary computers and cloud-based accounts are locked down, it’s often the devices we least suspect – our smartphones – that provide the opening that hackers need. The 2018 hacking of Jeff Bezos’s iPhone X, perhaps the most famous example of smartphone hacking, provides an important reminder that these most personal of devices should be used with appropriate caution, especially in this time of upheaval.
Read More
MobileSecurity2

NSA releases guidance on limiting location data exposure

August 7, 2020
The National Security Agency released a Limiting Location Data Exposure Cybersecurity Information Sheet (CSI) to guide National Security System (NSS) and Department of Defense (DoD) mobile device users on how they might reduce risk associated with sharing sensitive location data.
Read More
SEC1219-cybergap-Feat-slide1_900px

CISA releases new cybersecurity career pathways tool

August 7, 2020
The Cybersecurity and Infrastructure Security Agency (CISA) released the Cyber Career Pathways Tool, an interactive approach for current and future cybersecurity professionals to envision their career and navigate next steps within the NICE Cybersecurity Workforce Framework. 
Read More
Revised NIST Cyber Security Framework - Security Magazine

How to lead an economical and efficient infosec program

Vinay Sridhara
Vinay Sridhara
August 7, 2020

Today's challenging reality presents an opportunity for CISO’s to reevaluate the economics and efficiencies of their current infosec program. To do so, CISO’s must narrow their focus on maximizing their return on investments and shift to a risk-based prioritization strategy. No matter the situation, CISO’s are always expected to meet goals and drive results. Even though security professionals cannot reduce risk to zero, they can reduce risk significantly by first eliminating the most impactful risks facing their organization.  Below, I discuss the four critical steps of leading an economical and efficient information security program while following a risk-based approach.


Read More
Outsourcing Data: Don't Take a Fairytale Approach

The good, the bad and the ugly: Standard contractual clauses after Schrems II

mike slipsky
Mike Slipsky
saad gul
Saad Gul
August 7, 2020
Countless businesses export data from the European Union to the United States. Does your human resources office have information on European employees? The sales department information on European clients? That is personal data. The question is if data exports can continue in the wake of the Court of Justice of the European Union’s (CJEU) ruling in the “Schrems II” case.
Read More
cloud-cyber

Authentication vs. authorization | Why we need authorization standards and what it means for enterprise cybersecurity

I witnessed the transition from bespoke authentication to standards-based authentication. It’s time to do the same for authorization.
Bill Mann
August 6, 2020
Twenty years ago, almost everything in the IT world was on-premises: hardware and software, including the tools you used to verify who your users were and what they could do in your systems. In today’s cloud-native world, almost nothing is on-prem, and because of the explosion of apps, remote users and devices, it has become a considerably more complicated task, by orders of magnitude, to verify the identity of a user — or a service — and determine policies that say what they are and aren’t allowed to do.
Read More

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!