Security Management Strategies for the CIOAccess "Securing SharePoint: SharePoint security best practices"
This article is part of the July/August 2012 issue of Establishing an effective internal security pen testing methodology
With a Google search and one minute of running one of his SharePoint hacking tools, it doesn’t take long for security researcher Fran Brown to find exposed SharePoint administrative interfaces for a state health and human services department. The exposure – which could allow an attacker to add users and change information -- is far from unusual. Brown, managing partner at security consulting firm Stach & Liu, finds this sort of stuff all the time. “I’m surprised at just how much SharePoint is out there and how much is vulnerable,” he says. Editor's note Microsoft’s SharePoint application has become a ubiquitous collaboration tool in the enterprise but securing it can be a tricky process. And all too often, companies fail to properly secure their SharePoint deployments, security experts say. In fact, a survey of SharePoint users released earlier this year by European security vendor Cryptzone showed that lax security practices were rampant among those polled. In this special report, we examine some of the issues surrounding SharePoint security and provide ... Access >>>
Access TechTarget
Premium Content for Free.
What's Inside
Features
-
-
How to pen test: Why you need an internal security pen testing program
by Dave Shackleford
Learn pen testing best practices and how to build an internal pen testing team.
-
Securing SharePoint: SharePoint security best practices
by Marcia Savage, Editor
SharePoint has become ubiquitous in the enterprise, but organizations can overlook security. Learn SharePoint security best practices in this article.
-
Talk of cyberwarfare threats heats up with Flame malware
by Robert Westervelt, News Director
Experts say malware toolkit isn’t unique, but warn of cyberweapons falling into the wrong hands.
-
How to pen test: Why you need an internal security pen testing program
by Dave Shackleford
-
-
Big data security analytics: Harnessing new tools for better security
by Scott Crawford, Contributor
New techniques are emerging to help organizations analyze security data and improve security defenses.
-
Three steps for securing SharePoint
by Brien M. Posey, Contributor
Restricting user permissions, server hardening and dedicated service accounts are critical.
-
Big data security analytics: Harnessing new tools for better security
by Scott Crawford, Contributor
-
Columns
-
Gary McGraw on mobile security: It’s all about mobile software security
by Gary McGraw, Contributor
Mobile systems have a lot of moving parts, but securing them is as simple as practicing software security.
-
Cyberspace protection requires government collaboration with industry
by Riley Repko, Contributor
Government and private sector collaboration is critical to surviving in cybespace.
-
LinkedIn password leak: Lessons to be learned from LinkedIn breach
by Marcia Savage, Editor
Breach at the professional networking site highlights password practices, storage procedures.
-
Gary McGraw on mobile security: It’s all about mobile software security
by Gary McGraw, Contributor
More Premium Content Accessible For Free
Next-generation firewalls play by new rules
E-Zine
Firewalls started their journey to the next generation at about the same time as the Star Trek TV series. While the products have advanced with ...
Developing your endpoint security management transition plan
E-Handbook
This TechGuide will help you develop your endpoint security management transition plan. Articles focus on overcoming the challenges of Web-based ...
Unlock new pathways to network security architecture
E-Zine
Network security architecture is showing its age at many organizations. With new technology, different data types, and use of multi-generations of ...