Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

A Chief Information Security Officer is a person who is always in a tough spot. Not only is a CISO responsible for the day-to-day safety of their organization, but they must be able to explain to the C-Suite what is going on from a cybersecurity perspective and do so in language that the other executives understand. After all, what a CISO has to say is all about protecting the business from threats to its computer system and reducing risk, items that need to be on every corporate management agenda.

Why should organizations fund zero-trust architectures? The business benefits of zero-trust are significant. By adopting the "never trust, always verify" mindset, organizations shift to a more centralized security management approach, which can result in cost-effectiveness and a stronger layer of protection for resources such as identities, data, and applications.

Incidents are an inevitable part of security, no matter how airtight your processes and systems are or how small your company is. Organizations saw a 125% increase in incidents from 2020 to 2021. Despite the tremendous amount of investments in security by major companies such as Uber, Okta, Microsoft, FireEye, and even the US Government over the past half-decade or so – they have all been successfully targeted by cyber attackers.

Yum!, a massive worldwide food brand, operates over 55,000 restaurants in a total of 155 countries. The brand has more than 36,000 employees and owns restaurants like KFC, Taco Bell, and Pizza Hut, among others. The brand was recently hit by a data breach that may have exposed some of its employees as well as some customers. This is a real issue that should have people a bit concerned.

Through my career, I have been “fortunate” to work on some of the greatest national security challenges, ranging from weapons of mass destruction proliferation to terrorism to cyber insecurity. AI represents our newest challenge but will most comprehensively impact society.

In our first blog in the Splunk RBA series, we introduced Risk-Based Alerting (RBA) and covered the basic principles of RBA. In the rest of this series, we explain how you can plan and then implement RBA within your organization. Are your security teams drowning in data and overwhelmed with alerts? Are you thinking that there must be a better way, some esoteric or forbidden knowledge, to produce higher-fidelity alerts and keep your team from burning out?

This is the first post in a series on the pillars outlined in the new US National Cybersecurity Strategy. I review each pillar in turn, and then discuss how services such as Devo can help address the challenges outlined in that pillar.

Organizations are rapidly adopting SaaS and cloud infrastructure with 72% of orgs saying they’re defaulting to cloud-based services when adopting new tech according to Foundry (formerly IDG communications). For early adopters of cloud technology, their SaaS count may be north of 1,000 apps according to McAfee. Organizations who have no plan for their data when migrating to cloud are in for—forgive the pun—cloudy skies. We’re not afraid to use this analogy because.

What does secure by design vulnerability mean? Is this an oxymoron?

The impact of artificial intelligence (AI) on cybersecurity is quickly becoming a major topic as organizations across the world begin the race to adopt AI technology into their products, business models, or security programs. AI is quickly emerging as a field that has the potential to revolutionize the field of cybersecurity. However, the use of AI in cybersecurity brings on new challenges and risks just as much as it provides new and innovative solutions.