Tips

Tips

• Stopping distributed denial-of-service attacks in the cloud

  Distributed denial-of-service attacks are a top threat to cloud security. And while they're impossible to prevent completely, there are steps enterprises can take to increase safety.  Continue Reading

• How the cloud access security broker space is evolving

  The cloud access security broker space is accelerating at a fast clip, but expert Rob Shapland explains some obstacles for enterprises to consider before selecting a CASB platform.  Continue Reading

• How to manage system logs using the ELK stack tool

  Centrally managing system logs is an important practice for enterprise security. Expert Dejan Lukan explains how to set up cloud servers, such as ELK stack, for this purpose.  Continue Reading

• How to craft an enterprise cloud change management policy

  Though few enterprises have one, a cloud change management policy can be a lifesaver when confronted with transitions and security risks.  Continue Reading

• A look at Microsoft Azure security features for enterprises

  Boosted Microsoft Azure security could give it a competitive edge in the cloud market. Here are the security features enterprises can take advantage of.  Continue Reading

• Protect cloud file sharing from a man-in-the-cloud attack

  Man-in-the-cloud attacks on file sharing services can lead to confidential data leakage. Expert Rob Shapland explains how to mitigate the threat.  Continue Reading

• Create a cloud exit strategy to prepare for the unknown

  What happens if your service provider unexpectedly shuts down? Or drops mission-critical services? Expert Ed Moyle explains the benefits of cloud exit strategies and how to build one for your enterprise.  Continue Reading

• How to use the ELK stack log monitoring tool

  Open source log monitoring tools are a budget-friendly way for organizations to increase network visibility and improve incident response times.  Continue Reading

• How to perform a forensic acquisition of a virtual machine disk

  Virtualization expert Paul Henry provides a step-by-step guide to imaging a virtual machine disk (*flat.vmdk) in a forensically sound manner.  Continue Reading

• Who does what? Uncover the key to cloud security compliance

  SaaS vendors bear more of a compliance burden for cloud security. Enterprise responsibilities for services hosted in IaaS are little changed, however.  Continue Reading

• An introduction to cloud container security

  While the benefits of cloud containers are readily apparent, there aren't clear guidelines on how to secure the technology. Expert Rob Shapland offers pointers on how to stay safe.  Continue Reading

• Why the security industry needs a standardized framework for CASBs

  The growth of CASBs has prompted the CSA and CipherCloud to team up to form the Cloud Security Open API Working Group. Expert Dave Shackleford explains the purpose and benefits of the group.  Continue Reading

• How to securely manage public/private keys for cloud authentication

  Managing public/private keys is crucial for enterprises to ensure secure cloud authentication. Here are four tips to harden security of cloud keys.  Continue Reading

• How hard is it to implement SSO with Microsoft Azure AD?

  David Strom tells you how to use Azure Active Directory and Azure Multifactor Authentication for hybrid cloud management.  Continue Reading

• Three steps to secure cloud database services in the enterprise

  Database as a service may be easy to deploy and easy to manage, but it is not without its security challenges. Expert Ed Moyle outlines three major steps enterprises should take to secure cloud database services in the enterprise.  Continue Reading

• Authentication in the cloud: Are more open standards the answer?

  Using passwords to authenticate users has a long and troubled past. Expert Rob Shapland explains how open standards such as FIDO, SAML and OpenID can help solve the woes surrounding user authentication in the cloud.  Continue Reading

• Why financial organizations need a strong cloud security strategy

  A cloud security strategy is critical for financial organizations, but many in the industry are dragging their feet. Expert Dave Shackleford explains why.  Continue Reading

• How enterprises can protect against weak cloud passwords

  Weak passwords are a common threat to enterprises relying on cloud services. Expert Dejan Lukan reviews some password best practices.  Continue Reading

• Three steps to finding the ideal cloud data archiving services

  While cloud data archiving services can be highly beneficial, careful consideration must be taken to find the service that best suits an enterprise's needs. Expert Ed Moyle outlines three steps to find your ideal cloud data archiving service.  Continue Reading

• Lack of secure APIs can create IaaS risks

  IaaS data security risks are a persistent problem for enterprises moving to the cloud, but there are specific issues to keep an eye on.  Continue Reading

• Keep credentials safe despite insecure mobile cloud backup services

  A recent study revealed app developers that use mobile cloud backup services put user credentials at risk. Expert Rob Shapland explains how to defend against the threat.  Continue Reading

• The benefits of remote debugging techniques in the cloud

  Sharpening debugging techniques can help IT professionals who need to remotely debug a system and can be useful across many different areas of technology.  Continue Reading

• How does Google Cloud Platform affect merchant PCI compliance?

  Google announced its Google Cloud Platform is PCI-compliant -- but what does this mean for merchants? Expert Ed Moyle explains.  Continue Reading

• Addressing the VENOM cloud vulnerability with cloud patch management

  The VENOM cloud vulnerability was called the next Heartbleed, but how bad is it? Expert Rob Shapland explains the affect it should have on your enterprise.  Continue Reading

• Why enterprises need data encryption in the cloud

  There are many risks associated with data sharing across devices and services, which is why using data encryption in the cloud is so important.  Continue Reading

• Security considerations for putting e-commerce in the cloud

  As enterprises shift and put e-commerce in the cloud, security becomes an even more important consideration. Here's what you need to know before making the move.  Continue Reading

• Using a VMware firewall as part of a defense-in-depth strategy

  While it is not the Holy Grail of network security, VMware firewall technologies are critical components of protecting a virtual data center. Expert Paul Henry explains why.  Continue Reading

• Which cloud malware analysis tools suit you best?

  Deciding on cloud malware analysis tools can be a confusing process for organizations. Here's how to know which one is right for your business.  Continue Reading

• Secure data in the cloud with AWS identity and access management

  The right security policies and technology can make or break an enterprise's identity and access management process. Learn why AWS IAM is crucial when protecting corporate data.  Continue Reading

• Comparing third-party vs. cloud providers' Web security scanners

  Google Cloud Platform has its own Web application security scanner, but are in-house scanners better than third-party scanners? Expert Dave Shackleford examines.  Continue Reading

• The benefits of cloud-based automated malware analysis tools

  Cloud-based automated malware analysis tools are growing in importance to enterprises. Here is a look at the different types of tools and their benefits.  Continue Reading

• Key steps to reducing the shadow cloud threat

  Though shadow cloud threatens enterprise security, there are ways to lessen the risks and protect organizations' systems and applications.  Continue Reading

• AWS penetration testing secrets for success

  AWS penetration testing must be done in both cloud and on-premises infrastructures. Cloud security expert Rob Shapland offers pointers for conducting a successful AWS pen test.  Continue Reading

• Private cloud sprawl: How cloud consolidation can improve security

  Vast private cloud infrastructure can be detrimental to an organization. Expert Ed Moyle looks at how and when to consider cloud consolidation to reduce cloud creep.  Continue Reading

• Neglected cloud app security is among major SaaS security issues

  A report from Adallom highlights the lack of SaaS security in enterprises, but expert Dave Shackleford has ways to take back the cloud and lessen the risks, such as enhanced cloud app security.  Continue Reading

• How to mitigate VPN security issues in the cloud

  VPN security issues in the cloud aren't uncommon, but they can be easily avoided with a few simple measures. Expert Dejan Lukan explains how.  Continue Reading

• Using NIST 800-125-A to understand hypervisor security threats

  Expert Paul Henry discusses how the draft NIST Special Publication 800-125-A can help enterprises better understand the threat landscape in a virtual realm.  Continue Reading

• Negotiating SLA requirements to ensure cloud regulatory compliance

  Outlining your enterprise regulatory compliance reporting needs and establishing these needs with cloud providers during SLA negotiations is critical. Ed Moyle outlines steps to help organizations get started.  Continue Reading

• How AWS Key Management Service bolsters cloud security

  The AWS Key Management Service is a good tool for cloud encryption key management. Expert Dave Shackleford examines AWS KMS and its benefits to enterprises.  Continue Reading

• How to use AWS to meet compliance standards' requirements

  Looking to make compliance an easier task? Expert Steven Weil explains how to use AWS to help meet compliance standards' requirements.  Continue Reading

• Using a software-defined perimeter to create an air-gapped network

  The Cloud Security Alliance's software-defined perimeter protocol can help enterprises achieve dynamic air-gapped networks. Expert Ed Moyle discusses how SDP works and the benefits it can provide.  Continue Reading

• How to strengthen SSH security in the cloud

  SSH security can be threatened by many kinds of attacks, but there are also several steps enterprises can take to protect against them. Expert Dejan Lukan explains.  Continue Reading

• How AWS PCI compliance affects enterprise PCI compliance

  Before deploying an AWS infrastructure, it is critical to understand how it will affect enterprise PCI compliance. Expert Rob Shapland discusses key factors to consider.  Continue Reading

• How to achieve better cloud security for your enterprise

  Better security in the cloud is possible. Learn what national standards and the CSA can do, what they cannot and how to plug the security gap.  Continue Reading

• Cloud security certifications: How important are they?

  More and more certifications are being created around cloud security. Expert Sean Martin looks at some of the more prominent certifications and examines their value.  Continue Reading

• Cloud discovery: Finding shadow cloud use in the enterprise

  Securing approved cloud applications is hard enough, but what about the apps it can't see? Expert Ed Moyle discusses three strategies for finding enterprise shadow cloud usage.  Continue Reading

• The importance of public cloud encryption for enterprise data storage

  Cloud storage providers have beefed up their encryption offerings, but are they enough? Expert Dave Shackleford explains the importance of public cloud encryption.  Continue Reading

• Secure cloud data storage services considerations for SMBs

  Secure cloud data storage services can help small businesses cost-effectively safeguard data. But before choosing a provider, read expert Joe Malec's five top considerations to keep in mind.  Continue Reading

• Implementing VMware border router ingress and egress filtering

  Implementing ingress and egress filtering at the border router can help greatly improve security in a VMware-based virtual data center. Expert Paul Henry explains how.  Continue Reading

• How to run a secure WordPress installation in an IaaS VM

  In the cloud, a secure WordPress installation is important to the safety of enterprises. Expert Dejan Lukan provides detailed advice on this process.  Continue Reading

• Understanding the cloud security threat modeling process

  The threat modeling process for cloud security is multifaceted. Expert Ravila Helen White breaks it down into a few key aspects.  Continue Reading

• Is iCloud authentication secure enough for enterprises?

  ICloud authentication was called into question after the hack of celebrity photos, so is it secure enough for enterprises? Expert Dave Shackleford explains.  Continue Reading

• An introduction to Docker and its effect on enterprise cloud security

  Docker provides improvements for application virtualization, but what does it mean for security? Expert Ed Moyle offers an intro to Docker and what it will mean for enterprise and cloud security.  Continue Reading

• The risks of cloud data loss prevention

  Cloud data loss prevention offers many advantages to enterprises today, but it is not without challenges. Expert Rob Shapland discusses the issues to be aware of.  Continue Reading

• Understanding VMware ESXi hypervisor security features

  The VMware ESXi hypervisor, particularly its kernel, offer several security features vital to a secure VMware cloud environment. Virtualization expert Paul Henry reviews the different levels of ESXi security.  Continue Reading

• Addressing the most critical cloud security threats

  There are many security threats in cloud computing, but it's important for enterprises to understand at least the top risks. Expert Dejan Lukan reviews what to be aware of before migrating to the cloud.  Continue Reading

• Desktop as a service: Enterprise security risks and rewards

  While the interest in desktop as a service has grown, there are a number of security concerns enterprises should also be aware of. Expert Ed Moyle discusses the risks and rewards of desktop as a service.  Continue Reading

• Determining data value to reduce cloud storage risks

  Do enterprises know which data is being stored in the cloud, and where? Expert Char Sample offers some housecleaning tips to lower cloud storage risks.  Continue Reading

• The benefits of encryption key rotation for cloud users

  Encryption key rotation is suggested for enterprises working in the cloud. Expert Dave Shackleford discusses the benefits of key rotation, key management options and some best practices.  Continue Reading

• The cloud security threat-modeling process: Laying the groundwork

  The cloud threat-modeling process begins with a fundamental understanding of threat management. Expert Ravila Helen White details these best practices for enterprises.  Continue Reading

• Server configuration management on IaaS clouds

  IaaS clouds need baseline server configuration, but real security requires enterprises to go beyond that. Expert Dave Shackleford reviews some IaaS security best practices.  Continue Reading

• Crafting a secure data backup strategy on a private cloud

  Planning a data backup strategy on a private cloud requires certain factors to assure security. Expert Dejan Lukan gives some advice on what to take into consideration.  Continue Reading

• Best practices for cloud-based identity and access management

  While using the cloud for identity and access management can simplify the task, it is critical to consider a number of factors when implementing cloud IAM products and services. Expert Dave Shackleford explains.  Continue Reading

• Data security in cloud computing: Data encryption controls

  Implementing data encryption controls in a cloud environment can be quite challenging for organizations using those services. Ed Moyle discusses the first two steps to implementing data security in the cloud.  Continue Reading

• Cloud security considerations for Docker hosting

  Docker hosting in the cloud is growing in popularity. Expert Dave Shackleford explains how Docker works and what security troubles enterprises should watch out for.  Continue Reading

• An introduction to iSCSI security for the cloud

  Expert Dejan Lukan looks at iSCSI security, the possible attacks on networks using iSCSI and CHAP security.  Continue Reading

• How calculating cloud resiliency cuts cloud downtime

  Calculating and monitoring cloud resiliency is critical to preventing cloud downtime or lessening its effects. Expert Ed Moyle discusses the two main steps to start reducing cloud concerns.  Continue Reading

• Amazon Elastic Block Storage encryption explained

  Amazon EBS encryption is now offered by AWS. Expert Dave Shackleford explains how it works, why companies might struggle with it and whether it brings the industry one step closer to default cloud data encryption.  Continue Reading

• Virtual DMZ security in the cloud

  Virtual DMZ cloud configurations require specific security tactics. Expert Dejan Lukan looks at the different types of virtual DMZs and how they differ from physical DMZs.  Continue Reading

• Secure enterprise file sharing with EFSS

  Employees are using consumer-based file sharing whether your enterprise allows it or not. An enterprise file sync and storage, or EFSS, service can provide a more secure alternative.  Continue Reading

• Understanding the risks of cloud computing

  Understanding the risks of cloud computing is key to protecting a cloud-centric enterprise. Ravila Helen White explains the three must-know dimensions of cloud risk.  Continue Reading

• Assessing cloud security controls key in repelling cloud attacks

  With cloud attacks rising, enterprises must evaluate their cloud security controls well in advance. Dave Shackleford provides some best defense practices.  Continue Reading

• Develop a secure API design in a cloud environment

  Developing a secure API design in a cloud environment can be challenging. Expert Dejan Lukan explains what enterprises need to remember when building a secure API.  Continue Reading

• An introduction to Microsoft Office 365 security

  The Microsoft Office 365 security features are robust, but may not offer the granularity some enterprises need. Expert Dave Shackleford reviews the security pros and cons of Microsoft's cloud-based productivity suite.  Continue Reading

• Cloud service brokers: Exploring information security pros and cons

  Cloud service brokers can simplify management and reduce costs, but do they hinder security? Learn the cloud broker benefits and challenges.  Continue Reading

• Amazon CloudTrail: How it could change cloud logging

  The new Amazon CloudTrail cloud logging service could make event management much simpler for security teams. Expert Dave Shackleford explains how.  Continue Reading

• The security pros and cons of a cloud email service

  Moving enterprise email to the cloud has its benefits but also its risks. Here's how to weigh the two so your migration succeeds.  Continue Reading

• How to limit security risks during cloud computing virtualization

  Expert Dejan Lukan takes a look at some of the potential threats to cloud virtualization, and reviews the best security controls to prevent them.  Continue Reading

• Doing it right: Cloud encryption key management best practices

  Expert Dave Shackleford takes a look at what cloud encryption key management is like today and what to know about cloud security providers' processes.  Continue Reading

• Introduction to cloud email security: Business case, key features

  Cloud-based email security is a top SaaS initiative for many firms, but is it really better than traditional email security? Ed Moyle offers a primer.  Continue Reading

• Hybrid IT services in the cloud age: What CISOs should do now

  To keep enterprise IT secure, chief information security officers must fit cloud services into risk-management and governance frameworks. Here's how.  Continue Reading

• How to develop a business strategy for cloud security

  Expert R.H. White walks through how to develop a business strategy that provides information security on the cloud.  Continue Reading

• Applying zero-knowledge to data storage security in cloud computing

  Expert Dejan Lukan offers examples of why enterprises need cryptographically secure cloud applications based on the zero-knowledge principle.  Continue Reading

• Cloud and BYOD: A combo that can improve enterprise security

  Can the combination of the cloud and BYOD lessen the headaches of security admins? Ed Moyle explains how a mix of the two can ease security woes.  Continue Reading

• Cloud tokenization: Why it might replace cloud encryption

  Expert Dave Shackleford says cloud tokenization technology is becoming an attractive alternative to cloud encryption, but problems persist.  Continue Reading

• Response planning for a data breach involving a cloud service provider

  A cloud service provider experiencing a data breach is not an impossible scenario. Discover how enterprises should plan for the worst.  Continue Reading

• Cloud-based application security: Preventing security breaches

  Cloud-based application security is becoming an increasingly prevalent concern. Uncover three key best practices for preventing security breaches.  Continue Reading

• Crafting cloud security controls amid a changing sphere of influence

  Organizations need to implement a wide range of cloud security controls to address a shifting sphere of influence, expert Ravila Helen White explains.  Continue Reading

• Enterprise considerations for cloud firewall management and automation

  Expert Dave Shackleford explains how new cloud firewall management and automation tools can be harnessed to better monitor systems and enact rules.  Continue Reading

• Use cases for self-managed cloud data security in the enterprise

  Relying solely on providers' security offerings can leave cloud data security lacking. Ed Moyle explains when self-managed data security makes sense.  Continue Reading

• How cloud security visualization improves end-to-end cloud protection

  Expert Ravila Helen White explains how to use visualization to understand what elements form the cloud and how to provide end-to-end cloud protection.  Continue Reading

• How to implement, evaluate cloud storage access control measures

  Expert Dave Shackleford details cloud storage access control measures that should be in place internally and at storage provider environments.  Continue Reading

• Cloud forensics: An intro to cloud network forensic data collection

  This introduction to cloud forensics explores the challenges of collecting cloud network forensic data and finding a provider to support the process.  Continue Reading

• A legal analysis of the updated EU General Data Protection Regulation

  The updated EU General Data Protection Regulation raises breach penalties for enterprises operating in the EU. Attorney Francois Gilbert explains.  Continue Reading

• PCI DSS 3.0: Three key requirements to maintain cloud compliance

  Ed Moyle details the three most important PCI DSS 3.0 requirements that enterprises must abide by to ensure PCI compliance in the cloud.  Continue Reading

• The definition of cloud computing: Why it matters to IT security

  So, what is cloud computing anyway? The definition isn't always clear. Ravila Helen White helps enterprise security professionals figure it out.  Continue Reading

• CSA STAR analysis: Processes for cloud provider security evaluation

  Security expert Ed Moyle explains the CSA STAR certification program and how enterprises can use it to improve cloud provider security evaluations.  Continue Reading

• Multifactor authentication in the cloud: Assessing provider services

  Expert Dave Shackleford discusses authentication in the cloud, including details on the multifactor authentication services of major cloud providers.  Continue Reading

• Five cloud computing security concerns and the products tackling them

  Expert Ed Moyle analyzes five key cloud computing security concerns vexing enterprises and the emerging products that are attempting to address them.  Continue Reading

• Managing virtualization machine security for in-house IaaS deployments

  Dave Shackleford outlines critical security best practices for virtual machine instances created for an in-house IaaS deployment.  Continue Reading