Tips

Tips

• How to build a cloud security observability strategy

  Security observability in the cloud involves more than workload monitoring. Read up on the essential observability components and tools needed to reap the security benefits.  Continue Reading

• Container vs. VM security: Which is better?

  Security professionals often compare containers vs. VMs when determining whether virtualization or containerization is better for their company's security strategy.  Continue Reading

• How to use CIS benchmarks to improve public cloud security

  Safeguarding public cloud environments is a shared responsibility. Cloud customers should use CIS benchmarks to ensure cloud security at the account level.  Continue Reading

• How cloud monitoring dashboards improve security operations

  Cloud monitoring dashboards can help security teams achieve visibility in complex, sprawling environments. Learn about cloud-native, third-party and open source deployment options.  Continue Reading

• Unify on-premises and cloud access control with SDP

  One security framework available to organizations struggling with on-premises and cloud access control issues is a software-defined perimeter. Learn how SDP can help.  Continue Reading

• Get to know cloud-based identity governance capabilities

  As enterprise cloud adoption increases, the market for cloud identity governance is expected to expand. Learn more about the use cases, benefits and available product options.  Continue Reading

• 6 AIOps security use cases to safeguard the cloud

  Explore six AIOps security use cases in cloud environments, such as threat intelligence analysis and malware detection, as well as expert advice on implementation considerations.  Continue Reading

• Implement Kubernetes for multi-cloud architecture security

  Uncover how orchestration tools benefit multi-cloud environments, and get help selecting the right deployment model for Kubernetes in multi-cloud architectures.  Continue Reading

• The 8 best cloud security certifications for IT pros in 2021

  Certifications can help security pros prove their baseline knowledge of infosec topics. Consider adding these top cloud security certifications to your arsenal.  Continue Reading

• Top 11 cloud security challenges and how to combat them

  Before jumping feet-first into the cloud, understand the new and continuing top cloud security challenges your organization is likely to face -- and how to mitigate them.  Continue Reading

• 5 tips to better secure cloud data in 2021

  A move to cloud introduces new threats to data. Follow these tips to document, evaluate, test, monitor and harden the new environment.  Continue Reading

• 4 steps toward cloud security automation

  Automating security in the cloud can be invaluable for threat detection and mitigation. Explore the four key areas where security professionals should implement automation.  Continue Reading

• 5-step IaaS security checklist for cloud customers

  Get expert advice on patching, data encryption, and identity and access management responsibilities in this enterprise IaaS security checklist.  Continue Reading

• How to develop a cloud backup ransomware protection strategy

  Deploying cloud backups for ransomware protection has become a common security strategy. Here's how to properly vet cloud storage vendors to ensure backups stay secure.  Continue Reading

• Cloud computing forensics techniques for evidence acquisition

  With these tools and methodologies, security teams can provide analysts with the critical pieces required to complete a cloud computing forensics investigations puzzle.  Continue Reading

• 5 PaaS security best practices to safeguard the application layer

  Underlying APIs, language choice and cybersecurity features can vary widely across PaaS providers. But these five security best practices can help in almost any PaaS scenario.  Continue Reading

• Private vs. public cloud security: Benefits and drawbacks

  Uncover the differences between private vs. public cloud security -- as well as hybrid cloud security -- before deciding on an enterprise deployment model.  Continue Reading

• How to create a cloud security policy, step by step

  Read up on the components of a cloud security policy, what policies cover and why your organization needs them, and download a handy template to get the process started.  Continue Reading

• 6 SaaS security best practices to protect applications

  Use these SaaS security best practices to ensure your users' and organization's SaaS use stays as protected as the rest of your enterprise applications.  Continue Reading

• Review these 7 CASB vendors to best secure cloud access

  CASB technology offers threat protection, increased visibility and policy enforcement. Explore how these seven vendors stack up and protect access to cloud applications.  Continue Reading

• Organize a cloud IAM team to secure software-defined assets

  Building a cloud IAM team with the necessary technical expertise and soft skills is key to securely managing IAM in complex cloud environments.  Continue Reading

• Why it's SASE and zero trust, not SASE vs. zero trust

  SASE and zero trust are hot infosec topics. But, when it comes to adoption, it's not a question of either/or, but using SASE to establish and enable zero-trust network access.  Continue Reading

• Tackle multi-cloud key management challenges with KMaaS

  Cloud providers' tools for secrets management are not equipped to solve unique multi-cloud key management challenges. Learn how key management-as-a-service tools can fill the gaps.  Continue Reading

• How cloud-based SIEM tools benefit SOC teams

  It's time for SIEM to enter the cloud age. Learn about the cloud-based SIEM features that can help SOC teams gain a holistic view of their organization's cloud infrastructure.  Continue Reading

• Choosing between proxy vs. API CASB deployment modes

  Curious how to choose the right CASB deployment mode for your organization? Before you buy, compare how proxy vs. API CASB architectures work to secure SaaS applications.  Continue Reading

• How to use the Mitre ATT&CK framework for cloud security

  Learn how to use the Mitre ATT&CK security framework to keep your enterprise cloud environment -- whether AWS, GCP, Azure, Azure AD or Microsoft 365 -- secure.  Continue Reading

• How to build a cloud security operations center

  To better protect workloads and data in the cloud, security operations centers collaborate with various IT teams. Learn how to cloud-enable your organization's SOC.  Continue Reading

• How to prepare for a zero-trust model in the cloud

  Zero-trust security in the cloud is different than it is on premises. Learn the concepts and policies to effectively achieve a zero-trust model in the cloud.  Continue Reading

• How enterprise cloud VPN protects complex IT environments

  Do you know how enterprise cloud VPN differs from a traditional VPN? Explore how cloud VPN works and whether it's the right option for your hybrid IT environment.  Continue Reading

• Prevent cloud account hijacking with 3 key strategies

  The ability to identify the various methods of cloud account hijacking is key to prevention. Explore three ways to limit potential consequences of cloud credential compromise.  Continue Reading

• How cloud security posture management protects multi-cloud

  Improve control plane security at your organization by integrating a cloud security posture management tool into your existing multi-cloud strategy.  Continue Reading

• Infrastructure as code's security risks and rewards

  Infrastructure as code can yield some exciting security benefits for enterprises, but they each come with drawbacks. Learn more about the most critical IaC security impacts.  Continue Reading

• Cloud workload protection platform security benefits, features

  VMs and cloud environments make the task of protecting workloads more difficult than ever. Can a cloud workload protection platform help your organization solve the problem?  Continue Reading

• Follow 3 key steps to improve multi-cloud monitoring

  Successful multi-cloud monitoring anticipates security vulnerabilities unique to operating across several environments. Follow these steps to improve multi-cloud security.  Continue Reading

• 3 steps to ensure data sovereignty in cloud computing

  Data sovereignty regulations combined with a tsunami of data growth and increased cloud usage have created a perfect storm for enterprises. Follow these steps to ensure compliance.  Continue Reading

• Enhance your cloud threat protection with 5 tools, and more

  Explore the best tools and tactics; you'll need the most effective arsenal available to counteract the attackers gunning for your cloud-based workloads and apps.  Continue Reading

• Privacy-preserving machine learning assuages infosec fears

  Implementing privacy-preserving machine learning controls, such as federated learning and homomorphic encryption, can address top cloud security and privacy concerns. Learn how.  Continue Reading

• Multi-cloud security strategies rely on visibility, uniformity

  More companies are instituting a multi-cloud strategy that creates unforeseen security challenges. In this tip, get answers to the top multi-cloud security strategy questions.  Continue Reading

• Istio service mesh security benefits microservices, developers

  Learn more about Istio service mesh security features and how the open source technology can enable developers to better run, control and secure a distributed microservices architecture.  Continue Reading

• Benefits of open source container vulnerability scanning

  Containers have revolutionized app development but pose many security challenges. Uncover how container vulnerability scanning can help and why to consider open source tools.  Continue Reading

• Top 6 cloud security analytics use cases

  Security analytics use cases vary from fraud detection to threat intelligence analysis. Learn how deploying this technology in the cloud can improve enterprise infosec programs.  Continue Reading

• Comparing single cloud vs. multi-cloud security challenges

  A multi-cloud environment is not inherently more secure than a single cloud. Learn how to choose between single cloud vs. multi-cloud for your organization from a security perspective.  Continue Reading

• How to address and mitigate serverless security issues

  There are two major security implications of serverless cloud infrastructure: secure coding and identity and access management. Uncover best practices to mitigate these risks.  Continue Reading

• SASE identity policies enhance security and access control

  Will the Secure Access Service Edge model be the next big thing in network security? Learn how SASE's expanded definition of identity is fundamental to this emerging access model.  Continue Reading

• Comparing SASE vs. traditional network security architectures

  Today's dispersed environments need stronger networking and security architectures. Enter cloud-based Secure Access Service Edge -- a new model for secure network access.  Continue Reading

• Get to know the elements of Secure Access Service Edge

  Cloud services use cases continue to expand, but implementation challenges remain. Discover Secure Access Service Edge, or SASE, offerings and how they can simplify connectivity.  Continue Reading

• Boost security with a multi-cloud workload placement process

  IT must incorporate a multi-cloud workload placement process into its multi-cloud strategy in order to maintain or improve cloud security and cloud operations.  Continue Reading

• Tackle identity management in the cloud with AaaS or IDaaS

  Has your organization considered outsourcing cloud identity management? Learn more about the benefits of AaaS, aka IDaaS, and what to consider before settling on a particular service.  Continue Reading

• Benefits of cloud data discovery tools and services multiply

  With multi-cloud and privacy regulations becoming the new normal, infosec teams need data discovery tools and services to keep up. Learn more about available cloud options.  Continue Reading

• Lyft's open source asset tracking tool simplifies security

  Security teams need information and context about data in order to keep it safe. Learn how Cartography, Lyft's open source asset tracking tool, creates highly comprehensive maps.  Continue Reading

• 5 steps to a secure cloud control plane

  A locked-down cloud control plane is integral to maintaining cloud security, especially in multi-cloud environments. Here are five steps to a secure cloud control plane.  Continue Reading

• 3 steps to prepare IT operations for multi-cloud

  Organizations must ready their IT operations for multi-cloud and the unique security challenges ahead. Equip your IT ops team with the right people and processes to adapt smoothly.  Continue Reading

• Learn some key cloud workload protection best practices

  Learn key practices to protect cloud workloads whether using VMs, endpoints or containers. And don't forget to consider the best means for building a fruitful feedback loop.  Continue Reading

• What cloud workload security tools and controls work best?

  Read on to learn how to build a cloud security model that allows your team to embed controls and monitor deployment without getting in the way of business processes.  Continue Reading

• How to implement zero-trust cloud security

  The nature of cloud environments and workloads is changing. Security team approaches must evolve in response. Learn how to implement zero-trust cloud security from expert Dave Shackleford.  Continue Reading

• How to evaluate CASB tools for multi-cloud deployments

  When it comes to evaluating CASB tools, it's essential to be an informed customer. Identify your organization's usage and security goals to get the context you need before you buy.  Continue Reading

• How container adoption affects container security

  Scalability and efficiency make container adoption an attractive option for enterprises today. Learn how containerization has evolved and grown since the release of Docker 1.0 five years ago.  Continue Reading

• Risks of container escape vulnerabilities and how to counter them

  Container escape vulnerabilities create new challenges for security and risk management teams. Learn more about container escapes and how to prevent exploitation.  Continue Reading

• 5 cloud storage privacy questions to ask potential providers

  Data confidentiality in cloud computing is a major enterprise concern, yet providers are often lacking in their details. Here are the questions to ask before adopting a service.  Continue Reading

• Defining and evaluating SOC as a service

  As cloud use increases, many enterprises outsource some security operations center functions. Evaluate if SOCaaS is the best model for your enterprise.  Continue Reading

• How to beef up S3 bucket security to prevent a breach

  Security teams have plenty of tools at their disposal to help their organizations achieve and maintain S3 bucket security. Learn about the threats and best practices to stay safe.  Continue Reading

• How to build and maintain a multi-cloud security strategy

  When using multiple cloud service providers, it's critical to consider your enterprise's cloud scope and the specifics of each cloud service to maintain security.  Continue Reading

• Why CASB tools are crucial to your cloud security

  CASB tools have gained traction as cloud security becomes more important. Among other features, a cloud security access broker helps companies pinpoint shadow IT.  Continue Reading

• Complexity requires new cloud-based patch management strategies

  Patch management for cloud creates new challenges than traditional in-house programs. Expert Dave Shackleford presents patch management best practices for providers and consumers alike.  Continue Reading

• How to conduct proper AWS vulnerability scanning in 3 steps

  Cloud vulnerability management can be complicated. Learn how to perform AWS vulnerability scans under the shared responsibility model.  Continue Reading

• 4 necessary steps to evaluate public cloud security

  The Capital One hack raised questions about public cloud security. Take these four steps to ensure your data is protected.  Continue Reading

• How to limit the cloud security blast radius of credential attacks

  Explore how the security blast radius concept, which has admins evaluating how to assess and limit the damage of a threat, can be applied to cloud identity and access management.  Continue Reading

• CASB market dynamics, from a customer perspective

  The CASB market is changing. Learn how the fluctuating threat landscape has led to a use case evolution and operational changes for the CASB in the enterprise.  Continue Reading

• The CISO's guide to Kubernetes security and deployment

  Container orchestration platform Kubernetes provides tools needed to deploy scalable applications with efficiency. Learn what steps CISOs must take to secure a Kubernetes environment.  Continue Reading

• 3 reasons privilege escalation in the cloud works

  Statistics show that many cloud attacks are linked to credential and privilege misuse. Learn three ways threat actors are able to launch privilege escalation attacks in the cloud.  Continue Reading

• 3 best practices for cloud security monitoring

  Cloud security monitoring can be laborious to set up, but organizations can make it easier. Learn about three best practices for cloud security monitoring and the available tools.  Continue Reading

• Why centralization in a multi-cloud security strategy is key

  When moving to a multi-cloud infrastructure, there are a few strategies to keep in mind. Learn how centralization will limit the challenges of fragmented security access and monitor controls.  Continue Reading

• How infrastructure as code tools improve visibility

  Visibility into cloud infrastructures and applications is important for data security. Learn how to maintain that visibility while using infrastructure as code tools.  Continue Reading

• Three steps to secure function as a service

  Securely setting up function as a service, or serverless computing, is complicated. Learn how to secure function-as-a-service cloud environments with three standard principles.  Continue Reading

• How to build a strong cloud network security strategy

  Building a secure network in the cloud is different from securing a traditional network. Learn what the main differences are and how to establish cloud networking security.  Continue Reading

• The security benefits of using infrastructure as code

  Infrastructure as code bolsters security and ensures security best practices are built into software development. Learn more about the use of infrastructure-as-code models.  Continue Reading

• Protect your enterprise against shadow IT in the cloud

  More technologies than ever are available to people now that the cloud is so pervasive, and, as a result, shadow IT has become a problem. Expert Michael Cobb explains what to do.  Continue Reading

• Container security awareness, planning required as threats persist

  As container security vulnerabilities continue to emerge, companies should plan ahead and have strategies ready to defend against looming segmentation failures.  Continue Reading

• The problems with cloud-based email security

  Cloud-based email security can be challenging for enterprises to achieve. Learn what makes it a challenge and how to secure email in the cloud from expert Dave Shackleford.  Continue Reading

• How to deploy deep packet inspection in the cloud

  Despite privacy concerns about deep packet inspection, it can help improve cloud network security for enterprises. Expert Frank Siemons explains how to avoid potential pitfalls.  Continue Reading

• The security implications of serverless cloud computing

  Cloudflare Workers is new for serverless cloud computing and introduces benefits and drawbacks for security professionals. Expert Ed Moyle discusses the security side of serverless.  Continue Reading

• How to build a cloud security strategy after migration

  Enterprises can face an array of issues when they migrate to the cloud. Learn about three of the main challenges and how to effectively create a cloud security strategy.  Continue Reading

• How to defend against malicious IP addresses in the cloud

  Cybercriminals have found a way to use the cloud to mask their locations. Expert Rob Shapland looks at the options organizations have to deal with malicious IP addresses.  Continue Reading

• How unsecured Firebase databases put critical data at risk

  Unsecured Google Firebase databases are similar to misconfigured AWS S3 buckets, but there are key differences. Expert Rob Shapland discusses the risks of unsecured cloud databases.  Continue Reading

• How to block public access for AWS S3 bucket security

  AWS S3 buckets leaked millions of files, including sensitive data, by enabling public access. Learn how to block public access with expert David Shackleford.  Continue Reading

• The pros and cons of proxy-based security in the cloud

  Is proxy-based security in the cloud right for you? Expert Ed Moyle looks at the benefits and drawbacks of using proxies for Office 365 and other cloud platforms.  Continue Reading

• How to apply cloud security controls in the network

  Implementing cloud security controls in the network requires a careful balance between protecting points of connectivity while still making it easy for users to access services.  Continue Reading

• The benefits of using a cloud honeypot for threat intelligence

  A cloud honeypot can help enterprises gather threat intelligence. Expert Frank Siemons explains why a cloud-based honeypot deployment is preferable to a traditional one.  Continue Reading

• How hackers use Docker APIs for cryptojacking

  Remote access puts Docker APIs in a vulnerable position. Expert Dave Shackleford explains how hackers abuse Docker APIs to carry out cryptojacking attacks.  Continue Reading

• What's different about Google Asylo for confidential computing?

  The Google Asylo framework is an open source alternative for confidential computing. Expert Rob Shapland explains how it works and how it's different from other offerings.  Continue Reading

• How Google's cloud data deletion process can influence security policies

  Understanding the process behind Google's cloud data deletion can help influence stronger enterprise security policies. Expert Ed Moyle explains the process and how to use it.  Continue Reading

• How to configure a vTAP for cloud networks

  A vTAP can give enterprises better visibility into their cloud networks. Expert Frank Siemons of InfoSec Institute explains how virtual network TAPs work and the available options.  Continue Reading

• How the Microsoft Authenticator app integrates with Azure AD

  Microsoft expanded the Microsoft Authenticator app to integrate with tens of thousands of Azure AD apps. Expert Dave Shackleford explains how this tool is improving security.  Continue Reading

• What Microsoft's InPrivate Desktop feature could mean for enterprises

  Microsoft's secretive, potential new feature InPrivate Desktop could give security teams access to disposable sandboxes. Expert Ed Moyle explains how the feature could work.  Continue Reading

• How do SLAs factor into cloud risk management?

  While you may not have much control over the infrastructure used by cloud service providers, you’re not completely at their mercy when it comes to cloud risk management.  Continue Reading

• Cloud browsers: The security benefits of anonymity in the cloud

  Cloud browsers can provide a level of security for users seeking anonymity in the cloud. Expert Frank Siemons of the Infosec Institute explains the benefits of cloud browsers.  Continue Reading

• How to monitor AWS credentials with the new Trailblazer tool

  A security researcher introduced a tool called Trailblazer, which aims to simplify monitoring AWS credentials. Expert Dave Shackleford explains how it can bolster cloud security.  Continue Reading

• The time to consider SIEM as a service has arrived

  Now even your SIEM comes in the as-a-service model. Assess whether it's time to consider outsourcing this fundamental tool in your defense lineup.  Continue Reading

• How the NetSpectre vulnerability affects the cloud

  The NetSpectre vulnerability performs side-channel attacks to read data across networks. Learn how to use threat modeling to stop speculative execution from expert Ed Moyle.  Continue Reading

• How to collect open source threat intelligence in the cloud

  Threat intelligence analysis can be challenging and expensive for enterprises. Expert Frank Siemons explains how open source threat intelligence can simplify the process.  Continue Reading