Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
Drive Fast, Drive Safe... Creating the Halo Effect in your Security Programme
In 2018, as followers of Formula One (F1) will know, the fastest racing cars in the world got a controversial redesign. A new device was added to the cars; a curved bar or Halo, which was designed to protect the drivers’ heads in the event of a crash.
Zapier Storage Exposes Sensitive Customer Data Due to Poor User Choices
Zenity research team has recently discovered a potential customer data leakage in Storage by Zapier, a service used for simple environment and state storage for Zap workflows. With only a few simple steps and no authentication, we were able to access sensitive customer data. Given the nature of this flaw, it would be easy for bad actors to recreate our approach and access the same sensitive data without significant expertise.
Cloud Configuration Drift: What Is It and How to Mitigate it
More organizations than ever run on Infrastructure-as-Code cloud environments. While migration brings unparalleled scale and flexibility advantages, there are also unique security and ops issues many don’t foresee. So what are the major IaC ops and security vulnerabilities? Configuration drift. Cloud config drift isn’t a niche concern. Both global blue-chips and local SMEs have harnessed Coded Infrastructure.
How Zero Trust Strengthens Password Security
Password security is crucial to preventing cyberattacks. It is important to find a password manager that enables the zero-trust security model to mitigate the risks of data breaches from compromised user accounts. The U.S. government released a memorandum earlier this year, detailing the requirement for federal agencies to achieve zero trust by the end of Fiscal Year 2024 in an effort to strengthen their cyberdefenses.
Cyber Security Professionals Shortage, Burnout & How To Protect Against It | Razorwire Podcast
Welcome to another episode of Razorwire Podcast! In this episode, our guests are Oliver Rochford of Techcron, who you've met in earlier episodes, and Stefania Chaplain, a solutions architect, discussing the skills shortage, burnout in cyber careers, and remote working. Cybersecurity offers both rewards and challenges simultaneously. Security providers in their early careers struggle to find work, while recruiters struggle to find the proper role and qualification for their security needs as cybersecurity is a multifaceted field.
The Evolution Of Cyber Security & Trends To Watch For | Razorwire Podcast
Welcome to another episode of Razorwire Podcast! There is no doubt that the world has gone through massive changes over the past few years. We have faced pandemics, lockdowns, wars, supply chain issues and economic crises. As the whole world moves online, large scale innovations have been boosted. To infosec enthusiasts, this raises an interesting question: what is in store for the industry?
The Future Of Security For Working From Home - Razorwire Podcast
One legacy from Covid 19 that’s here to stay is working from home. Staff love it as it gives them flexibility, and organisations save on infrastructure costs. Still, the transition into the digital world is not smooth and comes with many vulnerabilities and risks.
Where a CISO Should Sit Within an Organisation - Razorwire Podcast
Welcome to Razor Wire Podcast! In this episode, we’re joined by Claire Davies of Arriva and Keith Christie-Smith of Claroty to discuss where a CISO fits best within an organisation, a bit of the history behind it, where trends have been in recent years, and where we think it’ll going to be in future. The role of CISO has traditionally been a part of IT and they often report to the CIO. This trend has been steadily changing over recent years, but the question remains: where should the CISO sit within an organisation? With security events increasing in cost and complexity, is it time that the CISO should sit on the board? Claire, Keith and cyber security consultancy MD James Rees - your host - share their opinions on the subject from the perspective of a CISO currently in the role and with insights from an Accounts Director who deals with CISOs from multiple companies across a wide range of different sectors. The format of our show is a group of us sitting here talking like we are down the pub talking about what we do for a living. So I am inviting you to join us in this episode to learn about CISO. Listen to this episode on your favourite podcasting platform.
Kintent Trust Cloud Supports CMMC Level 1
Achieving CMMC compliance is no easy feat. CMMC requirements are stricter than most, and focus heavily on documentation. This certification is also still relatively new, so it’s constantly undergoing changes.
Clearing the air over the new CERT-In rules
Authorities that lay down compliance regulations often update them in order to keep them relevant. However, for organizations that fall under the purview of these regulations, it can be a challenge to keep up with the updates and ensure that they stay compliant.