Tips

Tips

• SASE identity policies enhance security and access control

  Will the Secure Access Service Edge model be the next big thing in network security? Learn how SASE's expanded definition of identity is fundamental to this emerging access model.  Continue Reading

• Comparing SASE vs. traditional network security architectures

  Today's dispersed environments need stronger networking and security architectures. Enter cloud-based Secure Access Service Edge -- a new model for secure network access.  Continue Reading

• Get to know the elements of Secure Access Service Edge

  Cloud services use cases continue to expand, but implementation challenges remain. Discover Secure Access Service Edge, or SASE, offerings and how they can simplify connectivity.  Continue Reading

• Boost security with a multi-cloud workload placement process

  IT must incorporate a multi-cloud workload placement process into its multi-cloud strategy in order to maintain or improve cloud security and cloud operations.  Continue Reading

• Tackle identity management in the cloud with AaaS or IDaaS

  Has your organization considered outsourcing cloud identity management? Learn more about the benefits of AaaS, aka IDaaS, and what to consider before settling on a particular service.  Continue Reading

• Benefits of cloud data discovery tools and services multiply

  With multi-cloud and privacy regulations becoming the new normal, infosec teams need data discovery tools and services to keep up. Learn more about available cloud options.  Continue Reading

• Lyft's open source asset tracking tool simplifies security

  Security teams need information and context about data in order to keep it safe. Learn how Cartography, Lyft's open source asset tracking tool, creates highly comprehensive maps.  Continue Reading

• 5 steps to a secure cloud control plane

  A locked-down cloud control plane is integral to maintaining cloud security, especially in multi-cloud environments. Here are five steps to a secure cloud control plane.  Continue Reading

• 3 steps to prepare IT operations for multi-cloud

  Organizations must ready their IT operations for multi-cloud and the unique security challenges ahead. Equip your IT ops team with the right people and processes to adapt smoothly.  Continue Reading

• Learn some key cloud workload protection best practices

  Learn key practices to protect cloud workloads whether using VMs, endpoints or containers. And don't forget to consider the best means for building a fruitful feedback loop.  Continue Reading

• What cloud workload security tools and controls work best?

  Read on to learn how to build a cloud security model that allows your team to embed controls and monitor deployment without getting in the way of business processes.  Continue Reading

• How to implement zero-trust cloud security

  The nature of cloud environments and workloads is changing. Security team approaches must evolve in response. Learn how to implement zero-trust cloud security from expert Dave Shackleford.  Continue Reading

• How to evaluate CASB tools for multi-cloud deployments

  When it comes to evaluating CASB tools, it's essential to be an informed customer. Identify your organization's usage and security goals to get the context you need before you buy.  Continue Reading

• How container adoption affects container security

  Scalability and efficiency make container adoption an attractive option for enterprises today. Learn how containerization has evolved and grown since the release of Docker 1.0 five years ago.  Continue Reading

• Risks of container escape vulnerabilities and how to counter them

  Container escape vulnerabilities create new challenges for security and risk management teams. Learn more about container escapes and how to prevent exploitation.  Continue Reading

• 5 cloud storage privacy questions to ask potential providers

  Data confidentiality in cloud computing is a major enterprise concern, yet providers are often lacking in their details. Here are the questions to ask before adopting a service.  Continue Reading

• Defining and evaluating SOC as a service

  As cloud use increases, many enterprises outsource some security operations center functions. Evaluate if SOCaaS is the best model for your enterprise.  Continue Reading

• How to beef up S3 bucket security to prevent a breach

  Security teams have plenty of tools at their disposal to help their organizations achieve and maintain S3 bucket security. Learn about the threats and best practices to stay safe.  Continue Reading

• How to build and maintain a multi-cloud security strategy

  When using multiple cloud service providers, it's critical to consider your enterprise's cloud scope and the specifics of each cloud service to maintain security.  Continue Reading

• Why CASB tools are crucial to your cloud security

  CASB tools have gained traction as cloud security becomes more important. Among other features, a cloud security access broker helps companies pinpoint shadow IT.  Continue Reading

• Complexity requires new cloud-based patch management strategies

  Patch management for cloud creates new challenges than traditional in-house programs. Expert Dave Shackleford presents patch management best practices for providers and consumers alike.  Continue Reading

• How to conduct proper AWS vulnerability scanning in 3 steps

  Cloud vulnerability management can be complicated. Learn how to perform AWS vulnerability scans under the shared responsibility model.  Continue Reading

• 4 necessary steps to evaluate public cloud security

  The Capital One hack raised questions about public cloud security. Take these four steps to ensure your data is protected.  Continue Reading

• How to limit the cloud security blast radius of credential attacks

  Explore how the security blast radius concept, which has admins evaluating how to assess and limit the damage of a threat, can be applied to cloud identity and access management.  Continue Reading

• CASB market dynamics, from a customer perspective

  The CASB market is changing. Learn how the fluctuating threat landscape has led to a use case evolution and operational changes for the CASB in the enterprise.  Continue Reading

• Top 4 strategies for cloud security automation

  Automating security in the cloud can be invaluable for threat detection and mitigation. These are the key focal areas where security professionals should implement automation.  Continue Reading

• The CISO's guide to Kubernetes security and deployment

  Container orchestration platform Kubernetes provides tools needed to deploy scalable applications with efficiency. Learn what steps CISOs must take to secure a Kubernetes environment.  Continue Reading

• 6 best cloud security certifications for IT professionals

  There are a few options for infosec professionals looking for the best cloud security certifications. Expert Frank Siemons outlines the top choices available with a cloud focus.  Continue Reading

• VMs vs. containers: Which is better for security?

  Security professionals make technology decisions every day. Learn about the important security properties of VMs vs. containers and how they affect an organization's security posture.  Continue Reading

• 3 reasons privilege escalation in the cloud works

  Statistics show that many cloud attacks are linked to credential and privilege misuse. Learn three ways threat actors are able to launch privilege escalation attacks in the cloud.  Continue Reading

• 3 best practices for cloud security monitoring

  Cloud security monitoring can be laborious to set up, but organizations can make it easier. Learn about three best practices for cloud security monitoring and the available tools.  Continue Reading

• Why centralization in a multi-cloud security strategy is key

  When moving to a multi-cloud infrastructure, there are a few strategies to keep in mind. Learn how centralization will limit the challenges of fragmented security access and monitor controls.  Continue Reading

• How infrastructure as code tools improve visibility

  Visibility into cloud infrastructures and applications is important for data security. Learn how to maintain that visibility while using infrastructure as code tools.  Continue Reading

• Three steps to secure function as a service

  Securely setting up function as a service, or serverless computing, is complicated. Learn how to secure function-as-a-service cloud environments with three standard principles.  Continue Reading

• How to build a strong cloud network security strategy

  Building a secure network in the cloud is different from securing a traditional network. Learn what the main differences are and how to establish cloud networking security.  Continue Reading

• The security benefits of using infrastructure as code

  Infrastructure as code bolsters security and ensures security best practices are built into software development. Learn more about the use of infrastructure-as-code models.  Continue Reading

• What you need to know for effective zero trust in the cloud

  A zero-trust security strategy means something completely different in cloud environments than it does on premises. Learn how to achieve true zero trust in the cloud.  Continue Reading

• Protect your enterprise against shadow IT in the cloud

  More technologies than ever are available to people now that the cloud is so pervasive, and, as a result, shadow IT has become a problem. Expert Michael Cobb explains what to do.  Continue Reading

• Container security awareness, planning required as threats persist

  As container security vulnerabilities continue to emerge, companies should plan ahead and have strategies ready to defend against looming segmentation failures.  Continue Reading

• The problems with cloud-based email security

  Cloud-based email security can be challenging for enterprises to achieve. Learn what makes it a challenge and how to secure email in the cloud from expert Dave Shackleford.  Continue Reading

• How to deploy deep packet inspection in the cloud

  Despite privacy concerns about deep packet inspection, it can help improve cloud network security for enterprises. Expert Frank Siemons explains how to avoid potential pitfalls.  Continue Reading

• The security implications of serverless cloud computing

  Cloudflare Workers is new for serverless cloud computing and introduces benefits and drawbacks for security professionals. Expert Ed Moyle discusses the security side of serverless.  Continue Reading

• How to build a cloud security strategy after migration

  Enterprises can face an array of issues when they migrate to the cloud. Learn about three of the main challenges and how to effectively create a cloud security strategy.  Continue Reading

• How to defend against malicious IP addresses in the cloud

  Cybercriminals have found a way to use the cloud to mask their locations. Expert Rob Shapland looks at the options organizations have to deal with malicious IP addresses.  Continue Reading

• How unsecured Firebase databases put critical data at risk

  Unsecured Google Firebase databases are similar to misconfigured AWS S3 buckets, but there are key differences. Expert Rob Shapland discusses the risks of unsecured cloud databases.  Continue Reading

• How to block public access for AWS S3 bucket security

  AWS S3 buckets leaked millions of files, including sensitive data, by enabling public access. Learn how to block public access with expert David Shackleford.  Continue Reading

• The pros and cons of proxy-based security in the cloud

  Is proxy-based security in the cloud right for you? Expert Ed Moyle looks at the benefits and drawbacks of using proxies for Office 365 and other cloud platforms.  Continue Reading

• How to apply cloud security controls in the network

  Implementing cloud security controls in the network requires a careful balance between protecting points of connectivity while still making it easy for users to access services.  Continue Reading

• The benefits of using a cloud honeypot for threat intelligence

  A cloud honeypot can help enterprises gather threat intelligence. Expert Frank Siemons explains why a cloud-based honeypot deployment is preferable to a traditional one.  Continue Reading

• How hackers use Docker APIs for cryptojacking

  Remote access puts Docker APIs in a vulnerable position. Expert Dave Shackleford explains how hackers abuse Docker APIs to carry out cryptojacking attacks.  Continue Reading

• What's different about Google Asylo for confidential computing?

  The Google Asylo framework is an open source alternative for confidential computing. Expert Rob Shapland explains how it works and how it's different from other offerings.  Continue Reading

• How Google's cloud data deletion process can influence security policies

  Understanding the process behind Google's cloud data deletion can help influence stronger enterprise security policies. Expert Ed Moyle explains the process and how to use it.  Continue Reading

• How to configure a vTAP for cloud networks

  A vTAP can give enterprises better visibility into their cloud networks. Expert Frank Siemons of InfoSec Institute explains how virtual network TAPs work and the available options.  Continue Reading

• How the Microsoft Authenticator app integrates with Azure AD

  Microsoft expanded the Microsoft Authenticator app to integrate with tens of thousands of Azure AD apps. Expert Dave Shackleford explains how this tool is improving security.  Continue Reading

• What Microsoft's InPrivate Desktop feature could mean for enterprises

  Microsoft's secretive, potential new feature InPrivate Desktop could give security teams access to disposable sandboxes. Expert Ed Moyle explains how the feature could work.  Continue Reading

• How do SLAs factor into cloud risk management?

  While you may not have much control over the infrastructure used by cloud service providers, you’re not completely at their mercy when it comes to cloud risk management.  Continue Reading

• Cloud browsers: The security benefits of anonymity in the cloud

  Cloud browsers can provide a level of security for users seeking anonymity in the cloud. Expert Frank Siemons of the Infosec Institute explains the benefits of cloud browsers.  Continue Reading

• How to monitor AWS credentials with the new Trailblazer tool

  A security researcher introduced a tool called Trailblazer, which aims to simplify monitoring AWS credentials. Expert Dave Shackleford explains how it can bolster cloud security.  Continue Reading

• The time to consider SIEM as a service has arrived

  Now even your SIEM comes in the as-a-service model. Assess whether it's time to consider outsourcing this fundamental tool in your defense lineup.  Continue Reading

• How the NetSpectre vulnerability affects the cloud

  The NetSpectre vulnerability performs side-channel attacks to read data across networks. Learn how to use threat modeling to stop speculative execution from expert Ed Moyle.  Continue Reading

• How to collect open source threat intelligence in the cloud

  Threat intelligence analysis can be challenging and expensive for enterprises. Expert Frank Siemons explains how open source threat intelligence can simplify the process.  Continue Reading

• Securing remote access for cloud-based systems

  Don't believe the hype: Access control in the cloud is not a lost cause. Read these tips to learn how you can better secure remote access to your cloud-based systems.  Continue Reading

• A look at the new Google cloud security tools and features

  Google cloud security has been bolstered by new GCP tools and capabilities. Learn more about Google's improved cloud security features from expert Dave Shackleford.  Continue Reading

• SaaS platform security: The challenges of cloud network security

  Organizations have the necessary tools to protect data stored and processed in IaaS platforms. Learn why SaaS platform security remains a challenge from expert Rob Shapland.  Continue Reading

• How Azure AD uses cloud access control to protect credentials

  Features such as Microsoft Azure AD Smart Lockout and Password Protection add security via trusted authentication. Learn more about cloud access control from expert Ed Moyle.  Continue Reading

• How to monitor and detect a cloud API vulnerability

  A REST API vulnerability in Salesforce's Marketing Cloud service put users at risk of data disclosure. Learn how to detect cloud API vulnerabilities from expert Rob Shapland.  Continue Reading

• Why container orchestration platforms risk data exposure

  Container orchestration platforms expose interfaces and create the risk of data exposure and unauthorized access. Expert Dave Shackleford explains why these risks exist in enterprises.  Continue Reading

• How online malware collection aids threat intelligence

  Threat intelligence can facilitate cloud-based malware collection, which has value for enterprise cybersecurity. Expert Frank Siemons discusses collecting and analyzing malware.  Continue Reading

• How to identify and manage cloud security misconfigurations

  Identifying cloud security misconfigurations and decreasing the potential impact doesn't have to be complicated. Expert Ed Moyle outlines the tools and resources needed.  Continue Reading

• Anonymity tools: Why the cloud might be the best option

  The cloud might be the best of the available anonymity tools. Expert Frank Siemons explains the other options for anonymity for security and why the cloud is the best for privacy.  Continue Reading

• The risks of container image repositories compared to GitHub

  As container use rises, so does the use of container image repositories. Expert Dave Shackleford discusses the risks associated with them and how they compare to other registries.  Continue Reading

• Harden cloud apps with a secure software development lifecycle

  Wouldn't it be nice if every application were 100% cloud-ready? Unfortunately, that's often not the case, which can lead to security risks down the line if not properly addressed.  Continue Reading

• The threat of shadow admins in the cloud to enterprises

  Having shadow admins in the cloud means unauthorized users can access everything a legitimate administrator can. Expert Ed Moyle explains how this works and how to stop it.  Continue Reading

• How to use Packetbeat to monitor Docker container traffic

  Docker containers can help secure cloud applications, but malicious traffic can still move to and from those containers on a network. Dejan Lukan explains how to use Packetbeat to monitor such threats.  Continue Reading

• Is Docker's Kubernetes implementation good for security?

  Docker's Kubernetes implementation provides enterprises with container orchestration options. Expert Rob Shapland discusses what this move means for cloud security.  Continue Reading

• How to secure cloud buckets for safer storage

  Cloud buckets that enterprises use for storage can provide security benefits, but they also come with some risks. Expert Frank Siemons discusses the risks and how to mitigate them.  Continue Reading

• Active cyber deception: Can it improve cloud security?

  Fidelis Cybersecurity introduced a cloud security platform with active cyber deception features. Expert Dave Shackleford discusses how active deception techniques can work in the cloud.  Continue Reading

• Cloud risk management explained: Just how secure are you?

  There is no shortage of vulnerabilities in the cloud, but the same is true of any outsourcing arrangement. Practicing cloud risk management is essential to staying secure.  Continue Reading

• Container orchestration: What security professionals need to know

  Container orchestration is a service enterprises can implement to better manage cloud application security. Expert Ed Moyle reviews what security professionals should know about it.  Continue Reading

• Cloud endpoint security: Balance the risks with the rewards

  While cloud endpoint security products, such as antivirus software, provide users with many benefits, the cloud connection also introduces risks. Expert Frank Siemons explains.  Continue Reading

• Are AWS certificate authority services trustworthy?

  AWS now operates as its own CA. What are the potential risks of the new AWS certificate authority services? Expert Dave Shackleford outlines the pros and cons of this new setup.  Continue Reading

• How to prevent cloud cryptojacking attacks on your enterprise

  As the value of bitcoin has risen over the last year, so has the prevalence of cloud cryptojacking attacks. Expert Rob Shapland explains how enterprises can prevent these attacks.  Continue Reading

• Developing a robust data protection procedure for the cloud

  How should the use of cloud services affect your data retention, deletion and archiving practices? Find out what guidelines enterprises should be following to protect cloud data.  Continue Reading

• How a cloud backdoor poses a threat to the enterprise

  Cloud backdoors pose a rising threat to enterprises, according to new research. Expert Ed Moyle explains what a cloud backdoor is and what mitigation options are available.  Continue Reading

• Cloud DDoS attacks: How to protect your enterprise

  Protecting an organization against cloud DDoS attacks doesn't have to be expensive. Expert Frank Siemons discusses the options for cost-effective DDoS protection.  Continue Reading

• Considering cloud threat intelligence and detection services

  Cloud threat intelligence and detection services can provide better security for enterprises. Expert Dave Shackleford discusses some offerings from the major cloud providers.  Continue Reading

• How enterprises should handle GDPR compliance in the cloud

  GDPR compliance in the cloud can be an intimidating concept for some enterprises, but it doesn't have to be. Rob Shapland explains why it's not so different from on premises.  Continue Reading

• How TLS mutual authentication for cloud APIs bolsters security

  Secure access to cloud APIs is necessary but challenging. One viable option to combat that is TLS mutual authentication, according to expert Ed Moyle.  Continue Reading

• Nine cloud security threats you don't want to ignore

  While cloud computing has introduced remarkable efficiencies, cloud security threats continue to pose challenges. Learn where cloud vulnerabilities lie and how to mitigate them.  Continue Reading

• How EMC and VMware security vulnerabilities affect the cloud

  Some EMC and VMware security vulnerabilities could be bad news for the cloud. Expert Dave Shackleford explains the flaws and their potential effect on cloud services.  Continue Reading

• The security concerns of cloud cryptomining services

  Cloud cryptomining as a service is a security risk to users. Expert Frank Siemons discusses cloud mining service providers and what to look out for if you use one.  Continue Reading

• How Amazon GuardDuty could bolster enterprise cloud security

  The new Amazon GuardDuty aims to secure enterprise AWS accounts and workloads, but does it? Expert Ed Moyle takes a closer look at the tool and whether it's effective.  Continue Reading

• What the Azure AD Connect vulnerability can teach enterprises

  Enterprises should learn from a Microsoft Azure AD Connect vulnerability that security requires a hands-on approach. Expert Rob Shapland takes a closer look at the permissions flaw.  Continue Reading

• How the Meltdown vulnerability affects cloud services

  The Meltdown vulnerability has far-reaching implications, including with cloud providers. Expert Dave Shackleford looks at the Meltdown CPU flaw and what it means for the cloud.  Continue Reading

• How cloud access security brokers have evolved

  Cloud access security brokers keep being acquired by bigger security companies. Expert Rob Shapland looks at how these acquisitions have changed the CASB industry.  Continue Reading

• How to prevent SQL injection attacks in your enterprise

  SQL injection attacks threaten enterprise database security, but the use of cloud services can reduce the risk. Here's a look at some alternative SQL injection protection methods.  Continue Reading

• Cloud security lessons to learn from the Uber data breach

  Any organization that uses cloud services can learn something from the 2016 Uber data breach. Expert Ed Moyle explains the main takeaways from the massive breach.  Continue Reading

• What cloud storage security looks like for small businesses

  Cloud storage security and compliance can be a challenge for smaller businesses. Expert Dave Shackleford outlines the most important parts of cloud security for SMBs.  Continue Reading

• Top five cloud security applications for infosec pros

  The top five cloud security applications for infosec pros cover a wide range of security issues. Expert Frank Siemons outlines the security reasons to use cloud services.  Continue Reading

• TLS 1.3: What it means for enterprise cloud use

  The latest draft version of TLS 1.3 is out, and it will likely affect enterprises that use cloud services. Expert Ed Moyle explains the impact on users and their monitoring controls.  Continue Reading