Manage

Manage

Learn to apply best practices and optimize your operations.

• Identity of things? IAM system to change as IoT invades the workplace

  Companies in certain industries -- manufacturing, healthcare and critical infrastructure -- are already dealing with securing the internet of things; others will have to start. Continue Reading

• How can privileged access accounts be managed in large companies?

  Network administrators typically resist policies for separate accounts when performing different tasks. Expert Michael Cobb explains the risk of privileged access. Continue Reading

• Major password breaches: How can enterprises manage user risk?

  With the large number of password breaches happening, enterprises should look into new methods of protecting their resources. Expert Nick Lewis explains how to reduce user risk. Continue Reading

• Preparing for new DDoS techniques: Mitigating the inevitable attack

  Attackers are using DDoS techniques that focus on IoT and IPv6. Learn how to build a response plan, select mitigation solutions and recover from an attack. Continue Reading

• Risk & Repeat: MobileIron's James Plouffe on Mr. Robot, mobile threats

  In this Risk & Repeat podcast, SearchSecurity talks with James Plouffe, lead solutions architect at MobileIron and a technical advisor for the television series 'Mr. Robot.' Continue Reading

• Trusted? Certificate authority risks and how to manage them

  Trusted certificate authorities are essential in today's business climate, but that doesn't mean they are easy to come by. Certificate authority risks are many, certainly, but this three-part technical guide is designed to make plain the challenges ...Continue Reading

• Network security alerts: Managing and overcoming obstacles

  Network security alerts are high in number and low in accuracy. Expert Kevin Beaver explains strategies security professionals can develop to overcome these obstacles to improving security.Continue Reading

• Insider security threats: What CISOs can do to mitigate them

  Dealing with insider security threats requires a combination of tactics. Expert Mike O. Villegas discusses the various aspects of insider threat mitigation strategies.Continue Reading

• How is Windows AppLocker whitelisting bypassed by Regsvr32?

  Windows AppLocker whitelisting was discovered to be exploitable with command-line tool Regsvr32. Expert Nick Lewis explains how organizations can mitigate possible attacks.Continue Reading

• When to take a bug bounty program public -- and how to do it

  Bug-finding programs are valuable to enterprises, but they require a lot of planning and effort to be effective. Sean Martin looks at what goes into taking a bug bounty program public.Continue Reading

• Improving Android device security for enterprises with Android N

  Android device security is getting a boost with its newest version, Android N. Expert Michael Cobb explains the effects on enterprise users, and the changes in encryption.Continue Reading

• Planning for an IPv6 attack: DDoS, neighbor discovery threats and more

  An IPv6 DDoS attacks are imminent, and your network security tools may not be configured for it. Expert Michael Cobb explains how enterprises can prepare its defenses.Continue Reading

• Are security people born with unique talents? We ask Kevin Johnson

  The founder and CEO of Secure Ideas tells Marcus Ranum about his inner journey, from systems administrator at a friend's startup to ethical hacker for hire.Continue Reading

• CISOs face cloud GRC challenges as services take off

  Governance, risk management and compliance goals are tested by the proliferating use of cloud services -- and it's even worse than IT organizations think.Continue Reading

• Cloud governance model still behind services

  A lot of the cloud adoption in organizations has happened in an organic fashion with little to no IT involvement and even less policy oversight. In most cases, the security, policy and cloud governance model you implement will be somewhat ...Continue Reading

• How to handle a problematic cybersecurity expert on your team

  Sometimes hiring a cybersecurity expert to help your security team isn't all it's cracked up to be. Expert Mike O. Villegas explains what CISOs should do when this happens.Continue Reading

• Risk & Repeat: Shadow Brokers' dump shakes IT industry

  In part two of Risk & Repeat's podcast on the Equation Group, SearchSecurity editors discuss the zero-day vulnerabilities discovered in the Shadow Brokers' data dump.Continue Reading

• How does the Android Trojan Triada infect a device's core processes?

  The Android Trojan Triada has the ability to replace a device's system functions with its own. Expert Michael Cobb explains how to mitigate the effects of this serious threat.Continue Reading

• What CISOs need to incorporate into cloud service-level agreements

  CISOs may be unfamiliar with cloud service-level agreements, but they're still a necessary part of enterprise security. Expert Mike O. Villegas has some tips to build cloud SLAs.Continue Reading

• What's the best way to organize the CISO reporting structure?

  The importance of the CISO reporting structure continues to grow as the importance of the CISO grows. Expert Mike O. Villegas discusses who the CISO should report to.Continue Reading

• SIEM analysis interfaces for security professionals

  SIEM systems aren't infallible, so it's essential to effective SIEM analysis that it has an interface that eases security professionals' assessment and interpretation tasks.Continue Reading

• Basic SIEM analytics steps to know

  Even basic SIEM analytics can get complicated. Learn three fundamental steps to take that will help you get the most out of your security information and event management tool.Continue Reading

• Cyberextortion: How should CISOs handle it?

  Organizations need to be aware of the threat of cyberextortion attacks and defend against them. Mike O. Villegas discusses the CISO's role in setting up the defense.Continue Reading

• What's New in IAM Security and Strategy

  Most of the pivotal changes in identity and access management, or IAM, were discussed and developed at least ten years ago. Deployment of advanced IAM security technology has been glacial in comparison to most other security technologies because of ...Continue Reading

• Putting IPv6 vulnerabilities under the microscope

  Examining IPv6 vulnerabilities prior to deployment is crucial for enterprises. Expert Judith Myerson explains the risks of older gear, unpatched IPv6 ND flaws and other issues.Continue Reading

• Resolve web security issues with advice from industry experts

  Web security issues begin at the web app development stage, but there are ways security pros and developers can collaborate to boost security without sacrificing app performance.Continue Reading

• Want to avoid data breach lawsuits? Get legal on your side

  The CISO's role as the protector of an organization's data intersects with responsibilities of corporate counsel. Here's how to keep the communications flowing in sticky situations.Continue Reading

• Why are both symmetric and asymmetric encryption used in OpenPGP?

  OpenPGP uses asymmetric encryption and symmetric encryption for different parts of its process. Expert Michael Cobb explains the purpose of hybrid encryption in message security.Continue Reading

• Becoming a Global Chief Security Executive Officer

  In this excerpt of Becoming a Global Chief Security Executive Officer: A How to Guide for Next Generation Security Leaders, author Roland Cloutier discusses the primary role of the chief security officer.Continue Reading

• How can a vendor risk assessment help enterprise security?

  Third-party vendors are necessary for organizations, but with them come more security risks. Expert Mike O. Villegas discusses how vendor risk assessments can help.Continue Reading

• What are the pros and cons of hiring an ex-hacker?

  Hiring an ex-hacker to join an enterprise security team is a risky move. Expert Mike O. Villegas discusses the potential benefits and drawbacks of this nontraditional hiring move.Continue Reading

• How to start building an enterprise application security program

  Building an effective application security program can be daunting. Sean Martin talks with experts about the best first steps enterprises should take.Continue Reading

• Are cyberwar games beneficial to test enterprise security?

  Traditional security testing is always recommended, but what about cyberwar games? Expert Mike O. Villegas discusses the best ways to test a security program.Continue Reading

• Government cybersecurity problems can teach enterprises what to do

  The U.S. government's cybersecurity problems are in the spotlight, so enterprises should learn from them. Expert Mike Chapple looks at the lessons organizations can learn.Continue Reading

• Internet of things challenges are many, but security tops the list

  Organizations that choose to tackle the long list of internet of things challenges know that security-related issues must be at the top of that list: A plunge into the world of smart, connected devices inevitably comes with a whole set of security ...Continue Reading

• How does the EMET 5.0 vulnerability allow attackers to turn it off?

  A vulnerability has been discovered in EMET 5.0 that can be used to turn EMET off. Expert Nick Lewis explains the flaw, and what enterprises can do to maintain security.Continue Reading

• How to mitigate bit flipping flaw caused by Rowhammer exploits

  A Rowhammer attack on DRAM can induce bit flipping, putting data security at risk. Expert Michael Cobb explains the flaw and what preventive actions enterprises can take.Continue Reading

• Are Amazon devices running on the latest Fire OS 5 secure?

  Amazon disabled native encryption capabilities in the latest Fire OS version. Expert Michael Cobb explains what this means for security, and if encryption can be reinstated.Continue Reading

• Information security culture: How enterprises can build and improve it

  Creating and fostering an information security culture isn't easy. Guest contributor Lance Hayden explains how to do it and how to identify signs of improvement.Continue Reading

• How tabletop exercises can help uncover hidden security risks

  A regular tabletop exercise could help to identify security risks in scenarios relevant to your organization. Expert Bob Wood explains the steps in the process.Continue Reading

• How can the AirDroid app phone hijacking be prevented?

  A vulnerability in the AirDroid device manager app left users at risk of phone hijacking. Expert Michael Cobb explains how the exploit works, and what can be done to prevent it.Continue Reading

• Can a tablet security policy help protect enterprise users?

  BYOD isn't a new trend, but tablet security policy is increasingly important as users choose them over laptops for work. Expert Mike O. Villegas discusses tablet security policies.Continue Reading

• CISO challenges: Addressing cybersecurity blind spots

  Every enterprise has cybersecurity blind spots that it fails to recognize and address. Sean Martin explains what they are and how they create more CISO challenges.Continue Reading

• How do chief data officers affect the role of the CISO?

  Chief data officers are becoming more common in enterprises, but how does the presence of this c-level affect the CISO's role? Expert Mike O. Villegas discusses.Continue Reading

• Recent SSL attacks: How to protect your organization

  SSL attacks such as Heartbleed, POODLE and Shellshock have placed countless enterprises at risk. Learn how these different attacks work, and how they can be prevented or mitigated.Continue Reading

• How does the Trochilus RAT evade detection and sandboxing?

  The new Trochilus RAT can avoid detection in cyberespionage attacks. Expert Nick Lewis explains how it works, and if enterprises need to adapt their security programs.Continue Reading

• What new Asacub Trojan features should enterprises watch out for?

  The Asacub Trojan has new banking malware features. Expert Nick Lewis explains how it made this transition and what enterprises should be watching out for.Continue Reading

• Android security policies all enterprises should adopt

  Securing Android devices in the enterprise can seem like an uphill task. Applying these Android security policies might reduce the struggle security professionals face.Continue Reading

• Five ways to prevent a ransomware infection through network security

  Stronger network security could be the key to preventing a ransomware infection. Expert Kevin Beaver has five ways organizations can improve their networks to stop this threat.Continue Reading

• Cyberextortion reaches new heights with bug poaching

  In this Risk & Repeat podcast, SearchSecurity editors discuss how a cyberextortion campaign is targeting enterprises that don't have official bug bounty programs.Continue Reading

• Session cookies: When should they be protected by a salted hash?

  Is cookie encryption enough to protect sensitive information? Expert Michael Cobb explains how salted hashes can prevent attacks, and the secure way to use cookies.Continue Reading

• Cyberinsurance policies: Getting coverage and avoiding limitations

  The cyberinsurance market is maturing rapidly, but there are still gray areas to navigate. Sean Martin explains what enterprises should know about policies.Continue Reading

• Mobile security strategy matures with BYOD

  The basic level of mobile security is to protect data and access to a network, but understanding the needs of mobile users and their devices is the key to maturing that strategy.Continue Reading

• Mobile risk management falls short in Global 2000

  The majority of companies lack mobile policies around access and storage of corporate data, according to one study. Is your organization one of them?Continue Reading

• Enterprise mobile strategy: Step up security

  CISOs are tasked with developing an effective enterprise mobile strategy that offers different levels of mobile security, from device management to application-layer controls. Some companies are moving beyond device management and containerization ...Continue Reading

• Cyberinsurance: Assessing risks and defining policies

  Cyberinsurance is sparking interest from enterprises, but how are security risks assessed for policies? Sean Martin takes a closer look at the process.Continue Reading

• Strong authentication methods: Are you behind the curve?

  Not sure who's really behind that username and password? Google, Facebook and others may finally give multifactor authentication technology the 'push' it needs.Continue Reading

• Defense-in-depth strategy: Growing cyberthreat intelligence

  Cybersecurity defense in depth needs to learn from the military strategy it originated from. Expert Peter Sullivan explains where cybersecurity should not deviate.Continue Reading

• Symantec vulnerability raises big questions for antivirus industry

  SearchSecurity's Risk & Repeat podcast discusses the Symantec vulnerability disclosed by Google Project Zero and what the bug means for the antivirus industry.Continue Reading

• Throwing money at the cybersecurity problem?

  According to market forecasts, more companies are investing in cybersecurity and that spending is likely to increase dramatically in the next few years. MarketsandMarkets has forecast cybersecurity ...Continue Reading

• Learn about user authentication methods, from passwords to biometrics

  The password is not dead yet: Most enterprise personnel use a password to log into a site or a device every day. This three-part technical guide looks at how passwords can be better employed, while they are still around.

  The opening chapter ...Continue Reading

• Why signature-based detection isn't enough for enterprises

  Signature-based detection and machine learning algorithms identify malicious code and threats. Expert Michael Cobb explains how both techniques defend networks and endpoints.Continue Reading

• A safe password system? Here's how

  News of the death of the password system is premature, despite the security vulnerabilities of this authentication method. Learn how to create a safe password system.Continue Reading

• Removing malware: What are the best methods?

  When removing malware for client devices, how can security teams decide if the infection is truly gone? Expert Nick Lewis explains the cleanup process and the best practices.Continue Reading

• Protect your security perimeter with bellwether technologies

  Protecting your security perimeter is getting harder, as the threats get more sophisticated and the perimeter harder to identify. But these eight bellwether technologies can help.Continue Reading

• Insider Edition: Beyond 'next gen': Putting a 21st century security strategy in place

  When it comes to having a 21st century security strategy, new thinking is critical. The network perimeter is essentially dead, but there are still plenty of firewalls guarding enterprise IT at crucial points. But it's time to stop hiding behind the ...Continue Reading

• Open source Web apps: Spotting security flaws

  Don't assume that your open source Web apps are secure. Expert Kevin Beaver explains the common vulnerabilities and how to include these systems in your security testing.Continue Reading

• Enterprise encryption: Do the plusses outweigh the 'minuses'?

  Encryption is a powerful tool, but its implementation presents its own set of perils. CISOs weigh in on data privacy and key management strategies.Continue Reading

• Proper network segments may prevent the next breach

  Companies still fail to implement secure network segmentation and role-based access. Here's how to protect your sensitive data and stay out of the headlines.Continue Reading

• Network security infrastructure isn't only for hackers

  Rapidly changing environments, from sprawl to consolidation, increase the challenges of network risk analysis, proper segmentation, and policy and change management.Continue Reading

• A network segment strategy protects data by design

  Flat networks, and those lacking proper network segment design, allow attackers to turn a beachhead into a wider compromise, changing a minor problem into a really bad day for security managers. Target and other companies had breaches that were ...Continue Reading

• The merger and acquisition process: How can organizations stay secure?

  Organizations dealing with the complicated merger and acquisition process can't forget about security. Unfortunately, security presents a whole new set of obstacles.Continue Reading

• Software-defined network security: A 'no-touch' approach

  One way to achieve software-defined network security is to implement a no-touch approach to networking administration. Learn how it can be done, and what needs to change before it’s possible.Continue Reading

• Find the security advantage in SDN

  The implications of software-defined networking (SDN) are still being sorted out. Still, there is little doubt that this approach brings sweeping changes throughout the IT infrastructure and the way it is managed.

  Decoupling network ...Continue Reading

• RSA Conference 2016 draws big crowds, strong encryption

  RSA Conference 2016 was a densely-packed affair, with discussions ranging from strong encryption to skills shortage in the industry. Expert Nick Lewis gives a recap.Continue Reading

• Branching out with pen tester: Jayson E. Street

  The renowned hacker dishes on his early beginnings, paranoid tendencies and welcome progression from physical security to penetration testing of financial services.Continue Reading

• Status quo: Data compromise holds steady in 2016

  Data breaches can point to issues with security tools and their implementation. Some companies that are putting personally identifiable information at risk may surprise you.Continue Reading

• Securing VoIP: Keeping Your VoIP Networks Safe

  In this excerpt of Securing VoIP: Keeping your VoIP Network Safe, author Regis (Bud) Bates outlines different approaches to VoIP security and offers best practices to ensure infrastructure security is intact.Continue Reading

• Evil maid attacks: How can they be stopped?

  What is an 'evil maid' attack and how can enterprises prevent it? Expert Nick Lewis explains the threat and the precautions employees should take when traveling.Continue Reading

• Are self-encrypting drives the right choice for enterprises?

  Self-encrypting drives can provide added security for enterprises, but they aren't without vulnerabilities. Expert Michael Cobb explains what you need to know.Continue Reading

• Jeeves programming language: Can it improve security?

  A new research programming language looks to make it easier to enforce security and privacy policies in applications. Expert Michael Cobb explains how it works.Continue Reading

• How to use an incident response policy to better collaborate

  Several different teams come together to follow an incident response policy after a security breach occurs in an enterprise. Here's how CISOs should manage the process.Continue Reading

• Incident response procedures speed discovery-response time

  Many companies become aware of a security event but take hours or days to perform triage and finally remediate it. Incident response procedures can vary based on the organization, and the type of security incident, which could involve DDoS attacks, ...Continue Reading

• Addressing NFV security issues in the enterprise

  Network functions virtualization can complement SDN and benefit enterprises, but there are NFV security considerations that must be addressed. Expert Judith Myerson explains.Continue Reading

• Bug bounty programs narrow the crowd

  Data shows that more companies are moving away from crowdsourcing and adopting invitation-only awards programs. Do higher-quality submissions result?Continue Reading

• The incident response process is on the clock

  No time to prepare for incident handling? Security tools aim to automate the incident response process and help organizations lessen the time between threat detection and response.Continue Reading

• How can enterprises mitigate IVR security risks?

  Interactive voice response systems can be used by attackers to hack into enterprises. Expert Nick Lewis explains the security risks of IVR systems and how to mitigate them.Continue Reading

• Cybersecurity products: When is it time to change them?

  Enterprises should assess their cybersecurity products to make sure they're as effective as possible. Expert Mike O. Villegas discusses how to evaluate cybersecurity tools.Continue Reading

• Identifying the warning signs of network intrusions

  Detecting network intrusions requires a plethora of information. Expert Kevin Beaver explains why security teams need to take a big picture view of the network.Continue Reading

• How can the KeyRaider iOS malware be mitigated?

  A new type of iOS malware can hijack jailbroken iOS devices. Expert Nick Lewis explains how KeyRaider works and how to defend against the threat.Continue Reading

• Is mobile payment security regulated enough by PCI DSS?

  PCI DSS is pretty specific about security, but does it do enough for mobile payment security? Expert Mike Chapple explains why he says yes.Continue Reading

• Adjusting a continuous monitoring strategy to a hybrid era

  Your monitoring strategy is vital to keeping networks and data secure. Learn the latest on how to factor the hybrid cloud variable into the security equation.Continue Reading

• Lessons and next steps in continuous security monitoring

  Network visibility is both crucial for enterprise security and difficult to achieve. Organizations have implemented various technologies to allow for continuous security monitoring (CSM), and the U.S. government has also, in recent years, launched ...Continue Reading

• Security attack? 2016 defenses focus on damage control

  What methods are attackers using to find vulnerabilities in corporate networks? Are these security attacks really advancing? We look at the latest hacking techniques and find out from top security researchers how malware and advanced cyberthreats ...Continue Reading

• Deconstructing the emergency incident response process

  Professional incident response providers can quickly bring the additional resources and the expertise that companies often need to handle a rapidly unfolding threat.Continue Reading

• Security attack? New defenses in 2016 escape compromise

  Worried that attackers may know your infrastructure better than you do? Cyberthreats are learning fast from defenses that detect them. New strategies focus on what happens next.Continue Reading

• Coping with new Windows 10 patch security issues

  Microsoft's new approach to mandatory Windows 10 patching raises new security issues for businesses. Expert Paul DeGroot explains what the problems are and how to deal with them.Continue Reading

• How to limit privileged accounts and boost security

  Too many privileged accounts can result in access abuse in enterprises. Expert Mike O. Villegas discusses which account privileges should be limited to reduce security incidents.Continue Reading

• Three ways to build an open source security toolkit

  Enterprises should have a diverse set of open source security tools in their arsenal. Here are three factors that can help guide them in building the right security toolkit.Continue Reading

• Adapting an infosec program for emerging threats

  An enterprise's information security program must be adaptable to new threats and risks. Expert Nick Lewis explains how to update and evolve these programs.Continue Reading