Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
Teleport: Securing RDS with Teleport
The Amazon Relational Database Service (RDS) is one of the most popular AWS services, making it simple to set up, operate, and scale databases in the cloud. As these databases often hold sensitive data, implementing secure access is often one of the first security challenges cloud engineering teams must solve. In this session, we will explore how Teleport can be used to achieve the following.
Kroll: Agile Penetration Testing: Scaling Application Assessments
In recent years, organizations have adopted a "shift-left" approach to identify and remediate security vulnerabilities earlier in their software development lifecycle (SDLC). However, they often need to be augmented with assessment models that are more in tune with release schedules, especially in agile development environments.
Understanding Staff Augmentation and Its Value
Onboarding new personnel is a costly and time-consuming endeavor. For instance, adding a new software engineer to your team can cost you an average of $4,700 and might take up to 58 days. But what if there was an efficient alternative? Enter staff augmentation.
How AI is Helping Cybercriminals and What You Can Do for Your Protection
Artificial intelligence is an all-encompassing tool that leverages computer systems to mimic intelligent actions like solving problems and learning. Due to its general nature, AI can aid almost any endeavor. Sadly, this includes leveraging it for malicious purposes. How do cybercrooks use AI to aid their activities? Can you do anything about it? We explore answers to both!
Future forward cyber
For organizations of all sizes, cyber consistently earns a place on the agenda, becoming a focal point for business-critical initiatives and investments. Today, cyber means business, and it isn't challenging to overstate the importance of cyber as a foundational and integral business imperative.
Deciphering alphabet soup: IoCs and IoAs
Security Operations teams are the cornerstone of the fight against last-mile cybercrime in any organization. This is why they need the most advanced technologies possible.But the fight against cybercriminals isn’t simply a question of technology. Having a proactive attitude against possible cyberattacks is also key. This is where we see two essential concepts for all Security Operations teams: IoCs (indicators of compromise) and IoAs (indicators of attack). What is the difference?
What is Network Security? How to Stay Safe Against Data Breaches
According to IBM’s 2022 Data Breach Report, at least 42 million records were exposed due to data breaches between March 2021 and February 2022. Network security is a set of processes that protects a business from security incidents such as unauthorized access, data breaches, and any other malicious activities. With the world’s increasing dependency on interconnected devices, ensuring that our devices and information are safe is vital.
Achieving Superior Security with Continuous Compliance
In a digital-first world, safeguarding sensitive data and ensuring compliance with industry regulations are paramount. Enter "Continuous Compliance" – a dynamic approach reshaping the cybersecurity paradigm. As a key part of an effective compliance strategy, continuous compliance is pivotal in fortifying security measures. This modern strategy empowers organizations to stay one step ahead of cyber criminals by fostering real-time monitoring and rapid response to potential threats.
2023 Cost of a Data Breach: Key Takeaways
2023 Cost of a Data Breach: Key Takeaways It’s that time of year - IBM has released its “Cost of a Data Breach Report.” This year’s report is jam-packed with some new research and findings that highlight how organizations are implementing security and risk mitigation techniques to help identify and contain data breaches.
BAS and MITRE ATT&CK - Basics and Beyond
In 2013, MITRE created the ATT&CK framework to give security practitioners a shared language for the tactics, techniques, and procedures (TTPs) employed by advanced persistent threat (APT) groups. The result is a knowledge source that provides valuable threat information, allowing teams to take a proactive approach in identifying and mitigating potential cybersecurity threats. Though the framework is widely used, most organizations struggle to effectively utilize it.