Cybersecurity Executive Insight, opinions and analysis l SC Media Executive Insight

Executive Insight

As threats dramatically increase, critical infrastructure cybersecurity training must evolve

The North American Electric Reliability Corporation (NERC) recently posted a document confirming a cyber event that occurred on a western U.S. electrical grid in spring 2019, marking the first cyberattack on an American grid and, more importantly, striking a chord among operators. The case, which is ironically labeled a “lesson” by NERC, is a glaring…

Cloud Infrastructure IAM Lessons from the Capital One Breach

Cloud infrastructure is the foundation of more companies than ever. As with any foundation, any crack can lead to significant damage to the infrastructure. One potential crack is a trusted identity with unnecessary and excessive privileges. A “trusted identity” is invariably associated with people — employees, contractors or other insiders. But identity in the cloud…

Accelerate your business without compromising security – API security best practices

APIs are a strategic necessity to give your business the agility, innovation and speed needed to succeed in today’s business environment. However, the financial incentive associated with this agility is often tempered with the fear of undue exposure of the valuable information that these APIs expose. With the rise of APIs also comes the potential…

Risk and compliance challenges in the swift moving lead-generation market

Recently, Andrew Smith, Director of the FTC’s Bureau of Consumer Protection stated that one of its priorities would be to “combat bad practices in the lead generation market.” 33 Antitrust ABA 75, 76 (Spring 2019). Smith suggested the FTC was concerned about the entire ecosystem’s bad practices. He echoed his remarks during Comply 2019, an…

How to prepare for the U.S. Census to move online

History will be made on April 1, 2020. For the first time, the United States Census will offer a full internet response option, in addition to traditional paper responses. The digitization of the census is meant to address the challenges of counting an increasingly large and diverse population, while also complying with strict cost constraints…

Get ahead of the cybersecurity curve

Experienced cybersecurity leaders are beginning to call for a move from reactive detection to proactive prevention. It’s clear that the need to get ahead of the cybersecurity curve is real. Over the past decade, experts talked about the number of days that malware is in your system, and now the discussion is fast becoming how…

Using security orchestration to simplify IoT defense in depth

Even as the technology industry continues to scramble to protect personal computers, datacenters and other traditional IT systems from increasingly sophisticated cyberattacks, a new attack target has emerged – the Internet of Things (IoT). To protect their IoT applications from attack, organizations are working to adopt for the IoT the same cybersecurity strategy which has…

How to deliver cybersecurity awareness training that works

Employee cybersecurity awareness can play a critical role in the prevention of data leaks and malware infiltrations — but organizations have to improve the training they provide. One study found that more than three-quarters of executives believe that employees have accidentally put company data at risk in the past year, but 92% of employees said…

Why network segmentation is ready for an overhaul

The past five years have seen the overhaul of some of cybersecurity’s biggest technology categories. Palo Alto Networks and the next-generation firewall market upended the network security market, companies like Splunk turned SIEM on its head, and next-generation endpoint technology from companies like Crowdstrike and Cylance changed the game for endpoint security. As these transformations…

Next post in Executive Insight