Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

This month we begin by examining the 2023 National Risk Register, a public version of the National Security Risk Assessment, which assesses the most serious risks to lives, health, society, critical infrastructure, economy and sovereignty. Cyber-attacks on infrastructure are listed as moderate impact – Our panel discusses how businesses can use the information within the report to prepare for attacks and keep our critical infrastructure as secure as possible.

GitGuardian is making it easier and safer than ever to gather feedback about secret leakage incidents. We have added a feedback form directly to the GitGuardian dashboard incident detail view, allowing your team to provide more info about the incident, including confirming if it's an actual secret, if it gives access to any sensitive info, if it has been revoked, as well as any other relevant details.

The suppliers are the weak point in the security organization, 62% of attacks were through suppliers..... Existing tactics such as periodic pen testing, questionaires etc. don't cut it! Find out who your suppliers are, how healthy their protection is, how targeted they are AND be notified when an issue happens.

Up until 2023 third party risk management has been flawed. 2023 brings big changes and Cyberint is leading the way. We had fun acting out some of the benefits.....

Jonathan Edwards explains why Microsoft 365 leaves gaps that a password manager like Keeper Security will fill.

1Password Business policies are now (literally) all on the same page. Manage app usage, firewall, authentication, and Unlock with SSO policies in one place to give your workforce the guardrails they need to work securely.

Learn how One Identity with continuous governance helps protect your people, applications and data in six key areas and provides the foundation for Identity Governance and Administration.

Hear what One Identity partner, Narayan Sharma of Tata Consultancy Services (TCS) has to say about Zero Trust, changes in the IT security landscape and three priorities that should be on every CISO’s to-do list.

AD management can be tough for colleges/universities with sensitive data to protect and compliance regulations to meet. See why Barry University trusts Active Roles to monitor user/group identity lifecycles.

Composability has rapidly accelerated the pace of software development by allowing engineers to reuse openly shared libraries and packages. But the widespread adoption of these components also makes them an enticing avenue of attack for malicious actors. In this fireside session, André Arko (Head of Open Source, Ruby Central) and Dustin Ingram (Director, Python Software Foundation) will join Emilio Escobar (CISO, Datadog) for a discussion about securing your software supply chain.