Ask the Experts

Ask the Experts

• Amazon GuardDuty: How does this threat detection service work?

  At the 2017 re:Invent conference, Amazon announced their latest threat detection product: Amazon GuardDuty. Learn how this service works and what sets it apart from other products.  Continue Reading

• Secure cloud migration: What pitfalls should companies avoid?

  Enterprises can ensure a secure cloud migration by avoiding specific risks. Expert Judith Myerson outlines what to look for and what mistakes not to make when moving to the cloud.  Continue Reading

• How can a hypervisor deployment avoid security risks?

  A hypervisor deployment can put the security of an organization at risk, but there are ways to make it secure. Expert Judith Myerson outlines how to make the process safer.  Continue Reading

• What security risks does rapid elasticity bring to the cloud?

  Enterprises can benefit from cloud features such as rapid elasticity and measured services, but they bring new security risks with them. Expert Matthew Pascucci explains.  Continue Reading

• How can enterprises use SOC 2 reports to evaluate cloud providers?

  Enterprises can use SOC 2 reports to evaluate cloud service providers. Expert Matthew Pascucci discusses the effectiveness of doing so, and what else companies can use.  Continue Reading

• Google Cloud KMS: What are the security benefits?

  Google Cloud KMS is a new encryption key management service available for Google customers. Expert Matthew Pascucci discusses how this service works and its security benefits.  Continue Reading

• How does the Cisco CloudCenter Orchestrator vulnerability work?

  Cisco's CloudCenter Orchestrator was found to have a privilege escalation vulnerability. Expert Matthew Pascucci explains how it works and what enterprises need to know about it.  Continue Reading

• How can AWS Organizations help secure cloud accounts?

  A new tool called AWS Organizations aims to make cloud account management more secure. Expert Matthew Pascucci explains how the tool works and how it compares to AWS IAM.  Continue Reading

• What is the difference between web role and worker role in Azure?

  It's important to know the difference between the web role and the worker role when testing applications in Microsoft's Azure. Expert Matthew Pascucci explains what sets them apart.  Continue Reading

• Project Springfield: How does Microsoft's fuzzing as a service work?

  Microsoft's fuzzing as a service cloud initiative, called Project Springfield, can make a significant difference to software security. Expert Matthew Pascucci explains.  Continue Reading

• How should organizations vet a cloud collaboration app?

  A cloud collaboration app can be a useful tool for enterprises, but they should be thoroughly vetted before use. Expert Matthew Pascucci discusses what security features to review.  Continue Reading

• How does Docker's hardware signing work?

  Docker's recent upgrade introduced support for hardware signing and in the future, automated security analysis on Docker images. Expert Dan Sullivan goes over these new features.  Continue Reading

• Can Contiv automate policies for container platforms?

  Cisco's new project Contiv automates operational policies for containerized applications in the cloud. Expert Dan Sullivan explains the benefits of this open source tool.  Continue Reading

• OneOps: The value of cloud application lifecycle management

  The OneOps cloud application lifecycle management tool helps organizations regain control of cloud deployments and prevent vendor lock-in. Expert Rob Shapland explains how.  Continue Reading

• How are cloud threats abusing public cloud services?

  Dropbox API abused by attackers posing as legitimate users in a huge spear phishing campaign. Expert Dan Sullivan explains how to mitigate the risks of these cloud threats.  Continue Reading