Blog, Data collection, Risk and Threat Detection

Report Finds Over 50% of Security Practitioners Are Unhappy With Current SIEM Vendor

CyberSecurity Insiders

SEPTEMBER 11, 2021

Security industry blogs, magazines, and websites frequently report that many security teams are frustrated by the limitations of their SIEM tool. Analysts find dealing with data collected from numerous hosts within an enterprise to be a daunting task. In that case, additional risk must be assumed by the organization.

Threat Detection

Threat Detection Data collection Software Engineering

Mapping Secure Network Analytics (and Cognitive) to NIST CSF Categories and Sub-Categories

Cisco Security

JUNE 30, 2021

Secure Network Analytics uses flow telemetry such as NetFlow, jFlow, sFlow, IPFIX, and packet-level data and helps in reducing the risk to an organisation. This helps in improving regulatory compliance, reducing operational risk, and reducing operating costs by improving operational efficiency. How much data was exchanged? [NB:

Threat Detection

Threat Detection Risk Data collection Internet

Preparing for IT/OT convergence: Best practices

CyberSecurity Insiders

SEPTEMBER 21, 2021

This blog was written by a colleague from Tenable. Many organizations have opted to converge their IT and OT environments, which can yield many benefits such as efficiency and more elegant architecture; at the same time, these decisions are not without risk. What is OT vs. IT? For organizations that have implemented an Industry 4.0

Energy and Utilities

Energy and Utilities Manufacturing Threat Detection Technology

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

6 Business functions that will benefit from cybersecurity automation

CyberSecurity Insiders

OCTOBER 28, 2021

This blog was written by an independent guest blogger. Cybersecurity automation gives organizations the ability to perform threat detection and incident response at scale. Many security professionals spend hours each day manually administering tools to protect enterprise data. Data privacy.

Cybersecurity

Cybersecurity Data privacy Small Business Threat Detection

How your business can benefit from Cybersecurity automation

CyberSecurity Insiders

NOVEMBER 24, 2021

This blog was written by an independent guest blogger. Cybersecurity automation gives organizations the ability to perform threat detection and incident response at scale. Many security professionals spend hours each day manually administering tools to protect enterprise data. Data privacy.

Cybersecurity

Cybersecurity Data privacy Small Business Threat Detection

SOCwise: A Security Operation Center (SOC) Resource to Bookmark

McAfee

NOVEMBER 12, 2020

Core to any organization is managing cyber risk with a security operations function whether it be in-house or outsourced. Introducing SOCwise a monthly series of blogs, podcasts and talks driven by two highly experienced and devoted security operations professionals. From Ismael Valenzuela , Senior Principal Engineer, McAfee.

Engineering

Engineering Risk Data collection Cyber Risk

More SRE Lessons for SOC: Simplicity Helps Security

Anton on Security

NOVEMBER 17, 2022

Phil’s 8 megatrends blog reminds us about this by calling one of his cloud megatrends “Simplicity: Cloud as an abstraction machine.” Think well-implemented zero trust , that helps users, simplifies IT and reduces risk. We can add: also for security and threat “detectability” and “investigability” (can we just say observability ?).

Engineering

Engineering Software Data collection Architecture

More SRE Lessons for SOC: Simplicity Helps Security

Security Boulevard

NOVEMBER 17, 2022

Phil’s 8 megatrends blog reminds us about this by calling one of his cloud megatrends “Simplicity: Cloud as an abstraction machine.” Think well-implemented zero trust , that helps users, simplifies IT and reduces risk. We can add: also for security and threat “detectability” and “investigability” (can we just say observability ?).

Engineering

Engineering Software Data collection Architecture

GUEST ESSAY: How SIEMS, UEBAs fall short in today’s turbulent threat landscape

The Last Watchdog

JULY 30, 2018

Each new cyber attack is more sophisticated than the last, leaving traditional security measures unable to spot the next threat. Security analysts need the ability to view attacks as they unfold by enriching data collected from across the business with contextual and behavioral insights. Active learning. Contextualization.

CISO

CISO Cyber Attacks Data collection Cybersecurity

Drawing the RedLine – Insider Threats in Cybersecurity

Security Boulevard

MARCH 31, 2022

What Is an Insider Threat? Insider threats are some of the most dangerous and effective threats, primarily because they cannot be eliminated as risks. A common misrepresentation of the insider threat is of a malicious user, such as a disgruntled employee. Data collection from FTP clients, IM clients.

Cybersecurity

Cybersecurity Social Engineering Passwords Malware

The Case for Multi-Vendor Security Integrations

Cisco Security

AUGUST 26, 2022

The AlienApp for Cisco Secure Endpoint enables you to automate threat detection and response activities between USM Anywhere and Cisco Secure Endpoint. In addition, it allows you to collect hourly events from Cisco Secure Endpoint through the USM Anywhere Job Scheduler. Read more here. Sumo Logic. Read more here. Read more here.

Firewall

Firewall Authentication Passwords Threat Detection

Cyber Adversary Infrastructure, Explained

Security Boulevard

MAY 24, 2023

HYAS builds correlations and combinations between all the data points in the graph database which drive intelligence and ultimately decisions that link what has happened to what is happening now and what will happen in the future. Data is power. HYAS gives our clients and partners visibility.

Cyber Attacks

Cyber Attacks Phishing Cyber threats Malware

SOC Technology Failures?—?Do They Matter?

Security Boulevard

DECEMBER 10, 2021

Hence this blog was born. Data collection failures still plague many SOCs. Now, again, one can also blame this on people and processes (especially, those people in IT who just didn’t give us the data). BTW, if somebody wakes me up at 3:00 a.m. I would name the loss of executive commitment. Yes, DIY SOC tools fail as well.

Technology

Technology CISO Data collection Threat Detection

Cyber Security Informer

Report Finds Over 50% of Security Practitioners Are Unhappy With Current SIEM Vendor

Mapping Secure Network Analytics (and Cognitive) to NIST CSF Categories and Sub-Categories

Webinars

Trending Sources

Preparing for IT/OT convergence: Best practices

Webinars

6 Business functions that will benefit from cybersecurity automation

How your business can benefit from Cybersecurity automation

SOCwise: A Security Operation Center (SOC) Resource to Bookmark

More SRE Lessons for SOC: Simplicity Helps Security

More SRE Lessons for SOC: Simplicity Helps Security

GUEST ESSAY: How SIEMS, UEBAs fall short in today’s turbulent threat landscape

Drawing the RedLine – Insider Threats in Cybersecurity

The Case for Multi-Vendor Security Integrations

Cyber Adversary Infrastructure, Explained

SOC Technology Failures?—?Do They Matter?

Stay Connected