Category: BI Security

September 27, 2022

As the Log4J crisis made clear, understanding what is in the software unpinning your applications is crucial to understanding your security posture. This is no less true of your network services. Enterprise-network infrastructure is still very much about hardware in […]

September 23, 2022

Currently, many IT departments are being challenged to make fundamental changes to their cybersecurity strategies. The changes required are necessary to meet their organization’s demands of digital transformation and the rapid growth of their work-from-anywhere (WFA) workforce. Because users from […]

September 23, 2022

The biggest factor impacting the evolution of application security is the speed at which technology changes. Much of this is due to widespread consumerisation – people expect new technologies and updates to become available rapidly because they expect a seamless […]

September 22, 2022

A data security analyst, also known as an information security analyst, is responsible for monitoring and analyzing network activity to identify potential threats or risks. Data security analysts primarily analyze data, conduct research, and use complex analytical tools to address […]

September 21, 2022

IT analyst firm GigaOm is quick to point out that primary data is the first point of impact for ransomware attacks. This fact puts primary storage in the spotlight for every CIO to see, and it highlights how important ransomware […]

September 21, 2022

Good cyber hygiene helps the security team reduce risk. So it’s not surprising that the line between IT operations and security is increasingly blurred. Let’s take a closer look. One of the core principles in IT operations is “you can’t […]

September 19, 2022

The engineer’s mindset is to understand a problem, build a solution, and then figure out how to deploy a robust and secure implementation into production environments. Unfortunately, it’s often more complicated and expensive to embed security best practices into a […]

August 30, 2022

I’ve written about cloud security many times, including this post from 2021. The report I referenced found that misconfigured cloud servers caused 19% of data breaches. Corroborative data is available from public cloud providers that fight this daily. Microsoft analyzed […]

August 26, 2022

Two major developments in the customer data privacy arena involving two major companies came to light this month. The first is Oracle, which is facing a privacy class action claim filed Friday as a 66-page complaint in the Northern District […]

August 25, 2022

As organizations shape the contours of a secure edge-to-cloud strategy, it’s important to align with partners that prioritize both cybersecurity and risk management, with clear boundaries of shared responsibility. The security-shared-responsibility model is essential when choosing as-a-service offerings, which make […]

August 9, 2022

Over the last year, a series of high-profile cyber attacks caught the attention of media, national governments, and the broader public. Spectacular data breaches like those that affected Colonial Pipeline, JBS, and SolarWinds can have dramatic consequences for the victims, […]

July 28, 2022

Every day, businesses create, collect, compile, store, and share exponentially growing amounts of data. When put to use effectively, sales teams can boost revenue, marketing can improve the customer experience, HR can keep employees happy, and so on. But we […]

July 25, 2022

According to IBM, the average cost of a breach was $1.76 million less at organizations with a mature zero trust approach than those without. It’s understandable why this verify-first, trust-later mentality has gained steam over the last few years. And […]

July 15, 2022

Understanding how IoT security affects data monetization is crucial for businesses to effectively trade intel without the risk of online threats. Today, almost every business shares important data, but not all businesses attempt to generate revenue from the shared information. […]

July 14, 2022

This year’s Privacy Awareness Week (May 2-8) may be over, but it served as a reminder to look beyond the usual access controls and think about how analytics could be used to support compliance. Data privacy is essential for any […]

June 30, 2022

What may appear to be a relatively straightforward concept has instead become an extremely complicated situation due to the numerous regulations defined, countless re-purposed terms used, and the variety of technology capabilities offered. This reality has an impact downstream in […]

June 22, 2022

At the 2022 Open Source Summit in Austin, Tx, The Linux Foundation, the leading open source, non-profit group with its partners, and Snyk, a leading developer security company, released their first joint research report, The State of Open Source Security, […]

June 20, 2022

Globally, organizations are churning out data in massive volumes for a plethora of reasons. Data enables organizations to speed up innovation, take business-critical decisions confidently, get deep consumer insights, and use all that information to stay ahead of their competitors. […]

June 9, 2022

Earlier this year multiple European governments and media agencies were given a stark reminder of the pervasive cybersecurity threats that exist in a world without traditional network perimeters. The Zimbra webmail zero-day attacks sent organizations scrambling to contain the damage […]

June 3, 2022

Companies face no shortage of data security threats. From malware to phishing, DOS attacks to ransomware, keeping your most important asset – your data – safe from malicious actors is no easy feat. Yet companies so often focus on protecting […]