Government and Whitepaper - Cyber Security Informer

Whitepaper: The Intersection of Technical Debt and Cybersecurity

Approachable Cyber Threats

MAY 23, 2022

The term “technical debt” has come to encompass a number of issues in the industry: bugs, legacy code, missing documentation, “silver bullet” tooling, poor system visibility, old hardware assets, weak governance, and more.

Cybersecurity

Cybersecurity Risk Government

Key takeaways from CSA’s SaaS Governance Best Practices guide

CSO Magazine

JUNE 30, 2022

SaaS governance and security is gaining attention among IT and security leaders. That’s why the Cloud Security Alliance (CSA) created the SaaS Governance Best Practices for Cloud Customers whitepaper, for which I was honored to serve as its co-lead. To read this article in full, please click here

Government

Government Software

Secure by Design: Google’s Perspective on Memory Safety

Google Security

MARCH 4, 2024

In this post, we share our perspective on memory safety in a comprehensive whitepaper. We'll also highlight our commitments towards implementing several of the solutions outlined in the whitepaper, most recently with a $1,000,000 grant to the Rust Foundation , thereby advancing the development of a robust memory-safe ecosystem.

Software

Software Engineering Technology Risk

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

NDR unveiled as essential when complying with the Executive Order

Cisco Security

NOVEMBER 18, 2021

In a recent whitepaper, “ NDR as the Cornerstone for Visibility and Threat Detection to Support the Executive Order on Cybersecurity ,” the Enterprise Strategy Group (ESG) took a look at the order and noted a common theme – the need for network detection and response (NDR). Detection of stealthy and unknown threats.

Threat Detection

Threat Detection Encryption Government Technology

MY TAKE: What if Big Data and AI could be intensively focused on health and wellbeing?

The Last Watchdog

JANUARY 11, 2022

Towards this end it has begun sharing videos, whitepapers and reports designed to rally decision makers from all quarters to a common cause. Fixing data governance. All too many providers still have not gotten around to embracing robust data governance practices, for instance.

Big data

Big data Healthcare Technology Government

Analysts “strongly believe” the Russian state colludes with ransomware gangs

Malwarebytes

AUGUST 17, 2021

This ZeuS variant, which is a modified GameOver ZeuS (GOZ), was designed specifically for espionage, and it was aimed at governments and intelligence agencies connected with Ukraine, Turkey, and Georgia. ” DiMaggio concluded.

Ransomware

Ransomware Banking Government Malware

The Role of Culture in Compliance

CyberSecurity Insiders

JULY 22, 2021

In our latest blog, read about how the CISSP credential can equip you to promote a security culture to help your organization comply with the regulations that govern your industry. To discover more about CISSP read our whitepaper, 9 Traits You Need to Succeed as a Cybersecurity Leader. Read the Article. Want to Learn More About CISSP?

InfoSec

InfoSec Cybersecurity Government Education

Anton’s Security Blog Quarterly Q2 2023

Anton on Security

MAY 15, 2023

“A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” “Stop Trying to Take Humans Out of SOC … Except … Wait… Wait… Wait…” Data security: “How autonomic data security can help define cloud’s future” [GCP blog] “New whitepaper: Designing and deploying a data security strategy with Google Cloud” [GCP Blog] “The cloud trust (..)

Threat Detection

Threat Detection Cloud Migration Encryption CISO

Anton’s Security Blog Quarterly Q1 2022

Anton on Security

MARCH 3, 2022

“A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” “Achieving Autonomic Security Operations: Reducing toil” [GCP Blog] “Stop Trying to Take Humans Out of SOC … Except … Wait… Wait… Wait…” “Top 10 SIEM Log Sources in Real Life?” Today, You Really Want a SaaS SIEM!”

Threat Detection

Threat Detection Cloud Migration Encryption Engineering

Anton’s Security Blog Quarterly Q3 2023

Anton on Security

AUGUST 9, 2023

“A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” “Stop Trying to Take Humans Out of SOC … Except … Wait… Wait… Wait…” “Debating SIEM in 2023, Part 1” “Debating SIEM in 2023, Part 2” “SIEM Content, False Positives and Engineering (Or Not) Security” Data security: “How autonomic data security can help define cloud’s (..)

Threat Detection

Threat Detection Cloud Migration Encryption CISO

Anton’s Security Blog Quarterly Q1 2021

Anton on Security

MARCH 29, 2021

“Revisiting the Visibility Triad for 2020” “New Paper: “Future of the SOC: Forces shaping modern security operations”” “Top 10 SIEM Log Sources in Real Life?”

Cloud Migration

Cloud Migration CISO Encryption Threat Detection

Anton’s Security Blog Quarterly Q3 2022

Anton on Security

AUGUST 19, 2022

“A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” ”Top 10 SIEM Log Sources in Real Life?”

Threat Detection

Threat Detection Cloud Migration Encryption CISO

News Alert: Utimaco finds regional disparities in consumers’ level of trust in digital security

The Last Watchdog

JULY 10, 2023

The 2023 edition of the ‘Circles of Trust’ is released in the same year that Utimaco is celebrating its 40th year pioneering trusted cybersecurity and compliance solutions and services to its enterprise and government customers across the globe.

Identity Theft

Identity Theft IoT Banking Internet

Anton’s Security Blog Quarterly Q2 2021

Anton on Security

JUNE 21, 2021

“A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” “Today, You Really Want a SaaS SIEM!” “Top Top 10 SIEM Log Sources in Real Life?”

Cloud Migration

Cloud Migration Threat Detection Encryption Government

Anton’s Security Blog Quarterly Q2 2021

Security Boulevard

JUNE 21, 2021

Data security: “New whitepaper: Designing and deploying a data security strategy with Google Cloud” [GCP Blog]. Improving security, compliance, and governance with cloud-based DLP data discovery” [GCP Blog]. “A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next”. Today, You Really Want a SaaS SIEM!”.

Cloud Migration

Cloud Migration Threat Detection Encryption Government

Small and medium businesses need their own federal cyber policy, say advocates

SC Magazine

MAY 7, 2021

It should not be much of a surprise then, that SMB cybersecurity advocates are lobbying the Biden administration for small business-specific cybersecurity federal policies to complement an approach often focused on big players and government entities. Several issues exist solely due to scale. “I

Small Business

Small Business Government Cybersecurity InfoSec

Anton’s Security Blog Quarterly Q1 2021

Security Boulevard

MARCH 29, 2021

Data security: “New whitepaper: Designing and deploying a data security strategy with Google Cloud” [GCP Blog]. Improving security, compliance, and governance with cloud-based DLP data discovery” [GCP Blog]. “Revisiting the Visibility Triad for 2020”. New Paper: “Future of the SOC: Forces shaping modern security operations””.

Cloud Migration

Cloud Migration Encryption CISO Threat Detection

Anton’s Security Blog Quarterly Q1 2023

Anton on Security

FEBRUARY 10, 2023

“A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” ”Top 10 SIEM Log Sources in Real Life?”

Threat Detection

Threat Detection Cloud Migration Encryption CISO

Anton’s Security Blog Quarterly Q2 2022

Anton on Security

MAY 25, 2022

—?Part 3 of 3” “Achieving Autonomic Security Operations: Reducing toil” [GCP Blog] “Stop Trying to Take Humans Out of SOC … Except … Wait… Wait… Wait…” Data security: “New whitepaper: Designing and deploying a data security strategy with Google Cloud” [GCP Blog] “The cloud trust paradox: To trust cloud computing more, you need the ability to trust (..)

Threat Detection

Threat Detection Cloud Migration Encryption Engineering

Anton’s Security Blog Quarterly Q1 2022

Security Boulevard

MARCH 3, 2022

Data security: “New whitepaper: Designing and deploying a data security strategy with Google Cloud” [GCP Blog]. Improving security, compliance, and governance with cloud-based DLP data discovery” [GCP Blog]. “Achieving Autonomic Security Operations: Reducing toil” [GCP Blog]. Top 10 SIEM Log Sources in Real Life?”.

Threat Detection

Threat Detection Cloud Migration Encryption Engineering

LRQA Nettitude’s Approach to Artificial Intelligence

LRQA Nettitude Labs

JULY 5, 2023

Guidance : Guidance will be required on governance mechanisms including, potentially, activities in scope of appropriate risk management and governance processes (including reporting duties). Just recently, the UK government has been setting out its strategic vision to make the UK at the forefront of AI technology.

Artificial Intelligence

Artificial Intelligence Data privacy Social Engineering Risk

How Can Security Training Harden Your DevOps Process?

IT Security Guru

APRIL 6, 2021

Here’s how Ampcus Cyber describes this new paradigm in its whitepaper: DevSecOps is technology agnostic and organisations can use a combination of technologies, policies, and procedures to secure the DevOps pipeline. Organisations need to invest more in security if they are to make the most of their transition to DevOps.

Education

Education Technology Government Software

Introducing Our 8th Annual State of the Software Supply Chain Report

Security Boulevard

OCTOBER 18, 2022

The software supply chain has definitely been in all corners of the news this year, including finance , government , and technology. Although the focus is on security concerns, better supply chain management has benefits beyond preventing downtime and data breaches.

Software

Software Data breaches Government Technology

How can document readers help us fight COVID-19?

CyberSecurity Insiders

JUNE 6, 2021

Throughout the COVID-19 pandemic, hotels offering quarantine have been indispensable tools for governments across the world. Read our recent document readers whitepaper and follow @ ThalesDigiSec for more Thales content. Interested and looking to learn more? The post How can document readers help us fight COVID-19?

Risk

Risk Government Cybersecurity

Protecting Medical Data Against a Cyber-Attack Pandemic

Thales Cloud Protection & Licensing

AUGUST 3, 2021

Going beyond privacy regulation, governments are now making explicit cybersecurity recommendations. This directive is targeted at government agencies, but it explicitly mentions that it provides “the private sector with a template for its response efforts,” as well. Centralize data security governance. Adopt a zero-trust policy.

Cyber Attacks

Cyber Attacks Healthcare IoT Encryption

TIA CEO: Supply chain standard shows feds ‘they don’t have to be heavy handed’

SC Magazine

MARCH 17, 2021

The world recently came face-to-face with supply chain risk when nation-state hackers breached government and business alike through SolarWinds servers and other attack vectors. In the first quarter of 2020, we put out our first whitepaper on this subject saying a standard was needed. It was kind of a call to action for the industry.

Telecommunications

Telecommunications Wireless Risk Government

Cloud Security Alliance Announces CxO Trust Initiative to Elevate Cloud and Cybersecurity Knowledge Among Executives

CyberSecurity Insiders

MAY 18, 2021

The leaders will also work together to develop practical privacy and governance models, training and certificate programs, mentorship and hiring best practices, wider regulatory/legislative programs, and product and services development. A preliminary list of priorities has been developed and is available for download here.

Cybersecurity

Cybersecurity CISO Education Government

Anton’s Security Blog Quarterly Q3 2021

Security Boulevard

SEPTEMBER 16, 2021

Data security: “New whitepaper: Designing and deploying a data security strategy with Google Cloud” [GCP Blog]. Improving security, compliance, and governance with cloud-based DLP data discovery” [GCP Blog]. “Top 10 SIEM Log Sources in Real Life?”. “A A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next”.

Threat Detection

Threat Detection Cloud Migration Encryption Engineering

Protecting Medical Data Against a Cyber-Attack Pandemic

Thales Cloud Protection & Licensing

AUGUST 3, 2021

Going beyond privacy regulation, governments are now making explicit cybersecurity recommendations. This directive is targeted at government agencies, but it explicitly mentions that it provides “the private sector with a template for its response efforts,” as well. Centralize data security governance. Adopt a zero-trust policy.

Cyber Attacks

Cyber Attacks Healthcare IoT Encryption

Anton’s Security Blog Quarterly Q4 2021

Security Boulevard

DECEMBER 20, 2021

Data security: “New whitepaper: Designing and deploying a data security strategy with Google Cloud” [GCP Blog]. Improving security, compliance, and governance with cloud-based DLP data discovery” [GCP Blog]. “Top 10 SIEM Log Sources in Real Life?”. “A A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next”.

Threat Detection

Threat Detection Cloud Migration Encryption Engineering

How can document readers help us fight COVID-19?

CyberSecurity Insiders

MAY 20, 2021

Throughout the COVID-19 pandemic, hotels offering quarantine have been indispensable tools for governments across the world. Read our recent document readers whitepaper and follow @ ThalesDigiSec for more Thales content. Interested and looking to learn more? The post How can document readers help us fight COVID-19?

Risk

Risk Government Cybersecurity

Anton’s Security Blog Quarterly Q1 2023

Security Boulevard

FEBRUARY 10, 2023

“A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” ”Top 10 SIEM Log Sources in Real Life?”

Threat Detection

Threat Detection Cloud Migration Encryption CISO

Anton’s Security Blog Quarterly Q3 2022

Security Boulevard

AUGUST 19, 2022

New whitepaper: Designing and deploying a data security strategy with Google Cloud” [GCP Blog]. Improving security, compliance, and governance with cloud-based DLP data discovery” [GCP Blog]. “A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next”. Top 10 SIEM Log Sources in Real Life?”.

Threat Detection

Threat Detection Cloud Migration Encryption CISO

MITRE introduces D3FEND framework

Malwarebytes

JUNE 23, 2021

It’s used as a foundation for the development of specific threat models and methodologies in the private sector, in government, and in the cybersecurity product and service community. The MITRE Corporation has also released a technical whitepaper (PDF) describing the basic principles and the design of this new framework.

Cyber threats

Cyber threats Cybersecurity Engineering Phishing

Middle Brothers

Javvad Malik

NOVEMBER 25, 2020

When we talk about privacy and surveillance, discussions usually involve talk of Governments keep the population under manners. But unlike the good old days of the eighteenth century, Governments aren’t the only ones with skin in the population monitoring, control, and profiteering business.

Surveillance

Surveillance Marketing Internet Internet

Top 5 Industries Most Vulnerable to Data Breaches in 2023

Security Boulevard

JUNE 26, 2023

Data breaches caused by weak security measures and procedures result in severe monetary losses, erosion of clients’ trust, and irreversible reputation damage to organizations in the healthcare, financial services, technology, and retail industries, as well as government and public sector entities.

Data breaches

Data breaches Healthcare Telecommunications Financial Services

Five Hot Security and Privacy Topics You Need To Understand in 2022

Thales Cloud Protection & Licensing

JANUARY 26, 2022

Multinational organizations face difficult and unique compliance challenges to successfully meet the ongoing waves of government regulations for data privacy and security. You can watch this insightful webinar on-demand and learn more with a wide range of whitepapers from Thales and Quantum Xchange.

Encryption

Encryption Marketing Data privacy Engineering

From a tech explosion to accidental cyberattacks, researchers offer a glimpse into 2030

SC Magazine

MAY 17, 2021

The researchers presented Monday afternoon at the RSA Conference, to tease a soon-to-be-released whitepaper of their work. “While we deliberately leave a question mark hanging over the precise date of quantum decryption, we highlight some of the key considerations for governments as that event,” said Baines.

Manufacturing

Manufacturing IoT Artificial Intelligence Technology

Anton’s Security Blog Quarterly Q4 2021

Anton on Security

DECEMBER 20, 2021

“Achieving Autonomic Security Operations: Reducing toil” [GCP Blog] “Stop Trying to Take Humans Out of SOC … Except … Wait… Wait… Wait…” “2021 Threat Intelligence Use Cases” “Top 10 SIEM Log Sources in Real Life?” “A A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” “Today, You Really Want a SaaS SIEM!”

Threat Detection

Threat Detection Cloud Migration Encryption Engineering

MITRE ATT&CK: The Magic of Segmentation

Cisco Security

JANUARY 22, 2021

They abused its update system to disguise and deliver malicious code, impacting thousands of customers including high-value US government agencies. Check out our detailed whitepaper that maps all of our solutions to ATT&CK Enterprise, posted to our Cyber Frameworks page. Not new, but easily overlooked. And the best part?

Accountability

Accountability Firewall Software Risk

Know Your Guest: Why secure identity verification needs to be a top priority for hotels

CyberSecurity Insiders

JUNE 4, 2021

This is not only important for supporting contract tracing efforts governments have put in place, but also for protecting travellers from becoming a victim of crime or even terrorism. If you’re interested in finding out more on how to protect travellers and manage risk, download our whitepaper here.

Technology

Technology Identity Theft Risk Media

Anton’s Security Blog Quarterly Q3 2021

Anton on Security

SEPTEMBER 16, 2021

“Top 10 SIEM Log Sources in Real Life?” “A A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” “Today, You Really Want a SaaS SIEM!”

Threat Detection

Threat Detection Cloud Migration Encryption Engineering

Know Your Guest: Why secure identity verification needs to be a top priority for hotels

CyberSecurity Insiders

JUNE 6, 2021

This is not only important for supporting contract tracing efforts governments have put in place, but also for protecting travellers from becoming a victim of crime or even terrorism. If you’re interested in finding out more on how to protect travellers and manage risk, download our whitepaper here.

Technology

Technology Identity Theft Risk Media

What is Digital Identity, and why is it important?

CyberSecurity Insiders

JUNE 18, 2021

Without trust in their customers and citizens, organisations and governments won’t be able to pursue the digital transformations that they need to level up the services they provide. We have also published a whitepaper on the topic which you can download for free here. Why is Digital Identity so important?

Mobile

Mobile IoT Digital transformation Banking

Whitepaper: The Intersection of Technical Debt and Cybersecurity

Key takeaways from CSA’s SaaS Governance Best Practices guide

Webinars

Trending Sources

Secure by Design: Google’s Perspective on Memory Safety

Webinars

NDR unveiled as essential when complying with the Executive Order

MY TAKE: What if Big Data and AI could be intensively focused on health and wellbeing?

Analysts “strongly believe” the Russian state colludes with ransomware gangs

The Role of Culture in Compliance

Anton’s Security Blog Quarterly Q2 2023

Anton’s Security Blog Quarterly Q1 2022

Anton’s Security Blog Quarterly Q3 2023

Anton’s Security Blog Quarterly Q1 2021

Anton’s Security Blog Quarterly Q3 2022

News Alert: Utimaco finds regional disparities in consumers’ level of trust in digital security

Anton’s Security Blog Quarterly Q2 2021

Anton’s Security Blog Quarterly Q2 2021

Small and medium businesses need their own federal cyber policy, say advocates

Anton’s Security Blog Quarterly Q1 2021

Anton’s Security Blog Quarterly Q1 2023

Anton’s Security Blog Quarterly Q2 2022

Anton’s Security Blog Quarterly Q1 2022

LRQA Nettitude’s Approach to Artificial Intelligence

How Can Security Training Harden Your DevOps Process?

Introducing Our 8th Annual State of the Software Supply Chain Report

How can document readers help us fight COVID-19?

Protecting Medical Data Against a Cyber-Attack Pandemic

TIA CEO: Supply chain standard shows feds ‘they don’t have to be heavy handed’

Cloud Security Alliance Announces CxO Trust Initiative to Elevate Cloud and Cybersecurity Knowledge Among Executives

Anton’s Security Blog Quarterly Q3 2021

Protecting Medical Data Against a Cyber-Attack Pandemic

Anton’s Security Blog Quarterly Q4 2021

How can document readers help us fight COVID-19?

Anton’s Security Blog Quarterly Q1 2023

Anton’s Security Blog Quarterly Q3 2022

MITRE introduces D3FEND framework

Middle Brothers

Top 5 Industries Most Vulnerable to Data Breaches in 2023

Five Hot Security and Privacy Topics You Need To Understand in 2022

From a tech explosion to accidental cyberattacks, researchers offer a glimpse into 2030

Anton’s Security Blog Quarterly Q4 2021

MITRE ATT&CK: The Magic of Segmentation

Know Your Guest: Why secure identity verification needs to be a top priority for hotels

Anton’s Security Blog Quarterly Q3 2021

Know Your Guest: Why secure identity verification needs to be a top priority for hotels

What is Digital Identity, and why is it important?

Stay Connected