Daniel Thomas

The public cloud can be secured. So why do organizations keep dropping the ball? SC’s latest eBook takes a closer look.

Organizations need to input extra steps of authentication to ensure users are who they say they are. Here’s what that looks like.

Deploying a CNAPP makes a lot of sense from a security perspective. Here are some steps that organizations can take to make the most of it.

Here’s a checklist of things a security team must do to meet myriad compliance mandates specific to cloud security.

This article unpacks the common cloud security requirements of various regulations and industry standards and provides guidance for how to implement and manage key controls.

This article explores what orchestration is and how it can accelerate the push to passwordless authentication. We’ll also explore the challenges and how to overcome them, including legacy apps that don't support passwordless, and educating those who cling to passwords as the path to least resistance.

Security experts have repeatedly recommended system hardening to reduce vulnerabilities in the cloud. But what does that entail? This article explains while offering additional guidance to better monitor the integrity of cloud configurations.

As the threat landscape continues to change, hunting techniques must also adapt. Here’s how organizations can get started.

Microsoft, Google and Apple are doubling down on passkeys to support the Fast Identity Online (FIDO) Alliance’s goal of eliminating passwords from the equation. This article explores what passkeys are, how they work and what companies like Ping Identity are doing to make their use more widespread.

Automation is key to reducing the mean time to remediate (MTTR) vulnerabilities in the cloud. This article explores what the options are for security teams looking to automate updates and how to proceed effectively (i.e. without breaking anything during those security updates).