All Blog Posts (1,139)

What to Look for in a Bug Tracking Tool

Issue tracking can often be a tedious and annoying task. With several bugs happening at the same time, it becomes important to use bug tracking tools for your teams. This has become even more important in today’s era when there is fierce competition for high-quality products. While developers are well-equipped to deal with bugs, there is no easy way to keep track of them. This is where bug tracking tools come in. The primary purpose of these tools is to manage…

Continue

Added by Ray Parker on December 10, 2019 at 4:19pm — No Comments

(Community Round Table) Shadow IT Risks And Controls : Managing The Unknown Unknowns In Deep & Dark Web

Progress Till Date : 

  • 300+ check-lists, frameworks & playbooks
  • Platform for comparing security products
  • Task force initiatives to solve specific industry problems
  • Kid’s cyber safety initiatives…

Continue

Added by pritha on December 9, 2019 at 2:52pm — No Comments

Dear Security Community, are we doing it right?

Compliance Vs Security:

Compliance does not always mean you are secure, totally agree. But does not mean Compliance, Standards and Processes are useless, it is not as glamorous, but it works silently in the background. Compliance covers all the areas equally while performing risk assessments and improves overall security baseline. E.g. periodic checks for access control and least privileges go a long way not only in…

Continue

Added by Santosh C on December 9, 2019 at 11:29am — No Comments

Key Program Metrics of Security Operations, Analysis and Reporting (SOAR)

Security Operations, Analysis and Reporting (SOAR) technologies support workflow management and automation by enabling the security operations teams to automate and prioritize activities for good business decision making.

Key Program Metrics:

1.Current Anti-Malware Coverage :

The goal of this metric is to provide an indicator of the…

Continue

Added by Denise on November 29, 2019 at 4:49pm — No Comments

Key Program Metrics Of Next Generation Firewall (NGFW)

A Next-Generation Firewall (NGFW) is an integrated network platform that combines a traditional firewall with application specific granular controls to help them detect application specific attacks. They help detect attacks through application specific protocols such as HTTP, HTTPS, SMTP and so on. It also incorporates various network device filtering functionalities such as an intrusion prevention system (IPS), Web filtering and Email security. They also features functionalities such…

Continue

Added by Denise on November 29, 2019 at 4:47pm — No Comments

Key Program Metrics of Network Advanced Threat Protection

Advanced Threat Protection (ATP) is used to protect against sophisticated, highly skilled, well funded and motivated threat actor . The solution uncovers advance threats across Endpoints, Network, Email and Cloud. These solutions are used to detect advanced persistent threats that existing controls are not able to detect or are simply not capable of doing it.

Advance threat protection is not about a single security solution, It is about a combination of security…

Continue

Added by Denise on November 29, 2019 at 4:36pm — No Comments

Key Program Metrics of Distributed denial-of-service (DDoS)

Distributed denial-of-service (DDoS) attack is one in which a multiple sources attack a single target causing denial of service for legitimate users of the targeted system. The flood of incoming traffic totally overwhelms the system, hence denying service to legitimate users.

Key Program Metrics:

Loss percentage :

number of…

Continue

Added by Denise on November 29, 2019 at 4:29pm — No Comments

Data Leakage Protection (DLP) via email gateway and Regulated Internet access

About Project

The scope of the project encompassing Business Units, Support Functions, 200+ Processes and 8500+ employees. The project was an outcome of the data pilferage risk envisaged in terms of sensitive customer information and financial data. The risk assessment took inputs from various avenues such as internal audits, external audits, risk event, control committees conducted with the Top Management, business requirement were driven by the…

Continue

Added by Denise on November 29, 2019 at 3:30pm — No Comments

Top 7 Vendors in Application Security Testing (AST) market at RSAC 2017

RSA conference is one of the leading security conference worldwide.  It creates tremendous opportunity for vendors, users and practitioners to innovate, educate and discuss around the current security landscape.

 

Application security testing are tools and services that helps you discover security vulnerabilities in all kinds of applications. Current application security practices/tools available broadly falls into following…

Continue

Added by Denise on November 29, 2019 at 3:30pm — No Comments

Top 5 Emerging Deception technology Vendors at RSA Conference 2017

RSA conference is one of the leading security conference worldwide. It creates a tremendous opportunity for vendors, users and practitioners to innovate, educate and discuss around the current security landscape.

Deception Technology market is rapidly evolving with more & more vendors coming up with their unique offerings. Deception technology basically plants number of decoys which are indistinguishable with the…

Continue

Added by Denise on November 29, 2019 at 3:30pm — No Comments

Top 5 User Behaviour Analytics (UBA) Vendors at RSAC 2017

RSA conference is one of the leading security conference worldwide.  It creates tremendous opportunity for vendors, users and practitioners to innovate, educate and discuss around the current security landscape.

 

User behavior analytics technology is in a way similar to SIEM technology but with certain subtle differences:

  • Most standalone UBA tools utilize both basic and advance analytics approach ranging from rules-based models to…
Continue

Added by Denise on November 29, 2019 at 3:30pm — No Comments

Top 6 Emerging Endpoint Detection & Response (EDR) Vendors at RSAC 2017

RSA conference is one of the leading security conference worldwide.  It creates tremendous opportunity for vendors, users and practitioners to innovate, educate and discuss around the current security landscape.

 

The EDR market has emerged to satisfy the need for faster detection and response to Advance malwares attacks that bypass perimeter and other traditional security controls. An EDR tool has the capability to detect security incidents, either via…

Continue

Added by Denise on November 29, 2019 at 3:30pm — No Comments

Top 5 Security Information and Event management (SIEM) Vendors at RSAC 2017

RSA conference is one of the leading security conference worldwide.  It creates tremendous opportunity for vendors, users and practitioners to innovate, educate and discuss around the current security landscape.

 

A SIEM tool enables an organization to aggregate structured (logs from hosts, devices, applications, network etc.)  and unstructured (News feed, Threat intelligence, articles etc)  data and apply advance analytics onto it to detect security…

Continue

Added by Denise on November 29, 2019 at 3:00pm — No Comments

Top 5 Emerging Cloud Access Security Brokers (CASB) Vendors at RSAC 2017

RSA conference is one of the leading security conference worldwide.  It creates a tremendous opportunity for vendors, users, and practitioners to innovate, educate and discuss around the current security landscape. Cloud Access Security Brokers (CASB) market has seen tremendous growth over past couple of years.  Significant number of CASB vendors are already acquired by large security organizations and the trend will likely continue in future.

 

CASB is now a…

Continue

Added by Denise on November 29, 2019 at 3:00pm — No Comments

Top 5 Vendors in Data Loss prevention (DLP) technology at RSAC 2017

RSA conference is one of the leading security conference worldwide.  It creates tremendous opportunity for vendors, users and practitioners to innovate, educate and discuss around the current security landscape. The following blog enlists the top DLP vendors at RSAC 2017.

 

DLP is a set of security controls that helps organization protect their sensitive data, throughout its life cycle, across all platforms, from getting disclosed to unauthorized…

Continue

Added by Denise on November 29, 2019 at 3:00pm — No Comments

Top 6 Vendors in Next-generation Firewall market at RSAC 2017

RSA conference is one of the leading security conference worldwide.  It creates tremendous opportunity for firewall vendors, users and practitioners to innovate, educate and discuss around the current security landscape.



A Next-Generation Firewall (NGFW) is an integrated network platform that combines a traditional firewall with application specific granular controls to help them detect application specific attacks. They help detect attacks through application…

Continue

Added by Denise on November 29, 2019 at 2:30pm — No Comments

Webinar-Under The Hood Of Deception Technologies

What will you learn:

  • How is deception technology different from honeypots ?
  • Deception v/s EDR, UEBA and NTA
  • A hacker’s view of deception across the kill-chain
  • Key technology capabilities or key components of deception technology

 

About Speaker:…

sahir-hidayatullah-ceo-smokescreen-.original

Continue

Added by CISO Platform on November 29, 2019 at 2:30pm — No Comments

Equifax Breach Postmortem: Top Mistakes Enterprises Should Avoid

Equifax Breach Postmortem: Top Mistakes Enterprises Should Avoid

  • Equifax hack needs no introduction. One third of American lost their social security number due to this single breach. Here’s some of the top mistakes/learning from Equifax breach from my perspective. I would invite all of you to also add your comments and thoughts.

 

1. Patch on time (Yawn ..)

  • Most of the breaches happen not because…
Continue

Added by CISO Platform on November 29, 2019 at 2:27pm — No Comments

India Security Buying Priority Report (2017) & FireCompass Top Products & Popular Comparisons



India Security Buying Priority Report (2017) & FireCompass Top Viewed Products, Popular Comparisons https://www.firecompass.com/wp-content/uploads/2017/10/StateOfSecurityTechnologyBuyingInEnterprises2.jpg 750w" sizes="(max-width: 777px) 100vw, 777px" />

 

  • We are happy to announce the results of the annual survey of Security Buying Priority in which 350+ Companies have participated in the enterprise segment. This is a study of the key findings on the buying of…
Continue

Added by CISO Platform on November 29, 2019 at 2:23pm — No Comments

Understanding Surface Web, Dark Web, Deep Web and Darknet

  • Well if you are a tech enthusiast, you must have come across these words just like I have a lot of times! But I had never looked so deeply into finding out the differences as I thought deep web and darknet are the same, but it’s not. So, let’s understand the difference between Surface Web, Deep Web, Dark Web and Darknet. Also understand what darknet browsers are needed to enter darkweb and darknet.

 

What is Surface Web?

  • Let me tell…
Continue

Added by CISO Platform on November 29, 2019 at 2:20pm — No Comments

Monthly Archives

2019

2018

2017

2016

2015

2014

2013

2012

1999

© 2019   Created by CISO Platform.   Powered by

Badges  |  Report an Issue  |  Privacy Policy  |  Terms of Service