Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

In the first part of this blog series, I took a look at how an understanding of digital strategy and digital risk is key to starting a security transformation journey. And in the second, I dug further into how a secure access service edge (SASE) architecture with security service edge (SSE) capabilities and zero trust principles can help mitigate the types of digital risk. In this final part, I will outline a few key use cases to show all of these elements in action.

Most developers aren’t security experts. This isn’t because we don’t care about security, it’s just that there are only so many hours in the day and features come first. Fortunately, developers don’t need to be security experts to build secure apps — they just need the right tools.

Many business customers have migrated from LastPass to Keeper over the past several years. As a result of recent news surrounding LastPass’ data breach, customers are asking what they should do to ensure passwords migrated from LastPass to Keeper are updated, in case backup files from LastPass that may remain on LastPass’ infrastructure, have been accessed by the attackers.

Let's get our hands dirty with policy as code and write our first OPA policies for a Kubernetes environment.

Application Programming Interfaces (APIs) are the building blocks of modern-day applications. This software-to-software interface enables seamless collaboration and communication between applications and consumers. APIs power SaaS and cloud apps, mobile apps, micro-services, serverless functions, IoTs and even no-code frameworks.

In today’s society, social media has become a prevalent method of communication and sharing the highlights of our daily lives has become the norm. Unfortunately, there are many risks associated with oversharing in the digital world. Oversharing can be especially dangerous because of the tendency to expose sensitive information which jeopardizes your privacy and security.

He sees you when you're sleeping, and he knows when you're awake, and we're just supposed to be ok with that? He's making a list and checking it twice, but what kind of information is on that list? Does the big man in red store all the massive amounts of data he collects securely, or can all the elves peruse it at their leisure? Let's face it, Santa Claus is a huge security risk and a privacy nightmare. How does he get away with these massive breaches of your right to privacy year after year?

The holidays are here, and it’s the time of year when we all want to be on the “Nice List” While this is an enjoyable time of year for gift giving and gift receiving, it’s essential to do everything possible to stay on your CSO’s nice list. No one wants a cybersecurity lump of coal! Ensuring you’re on the nice list and not the naughty list can come down to a few simple tasks that keep your security in a safe space.

When talking about big influences on cybersecurity, we tend to think about sweeping trends like digital transformation and the hybrid work revolution. And that makes sense. Cloud adoption, for example, has created complex corporate infrastructures. This is forcing the security industry to rethink how they protect data.

As organizations are increasingly prioritizing application security continues to become a top priority for organizations, application security risk assessments is atop many bucket lists. Every application is unique and carries threats factors. It's critical to implement processes and tools to identify and remediate security issues before shipping.