Data security strategies and governance news, help and research

Data security strategies and governance News

September 08, 2021 08 Sep'21
IBM's first Power10 server tailored for hybrid clouds

IBM has moved closer to achieving a frictionless hybrid cloud model with its first Power10 server. The new system comes loaded with a variety of security technologies.
August 31, 2021 31 Aug'21
SEC sanctions financial firms for cybersecurity failures

Three financial services firms were charged with failing to implement proper cybersecurity policies after cyber attacks led to the exposure of customer data.
August 16, 2021 16 Aug'21
FBI watchlist exposed by misconfigured Elasticsearch cluster

A terrorist watchlist was found in an exposed database, and security researcher Bob Diachenko says there is no way of knowing just how long it was open to the public.
June 01, 2021 01 Jun'21
Risk & Repeat: Security startups and trends from RSAC 2021

Analyst Carla Roncato of Enterprise Strategy Group weighs in on RSA Conference and the security startups featured during the show's Innovation Sandbox competition.

Bring yourself up to speed with our introductory content

security policy

A security policy is a document that states in writing how a company plans to protect its physical and information technology (IT) assets. Continue Reading
How to use the NIST framework for cloud security

Aligning the NIST Cybersecurity Framework with cloud services such as AWS, Azure and Google Cloud can improve cloud security. Read how to best use the framework for the cloud. Continue Reading
hardware security module (HSM)

A hardware security module (HSM) is a physical device that provides extra security for sensitive data. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

Should companies pay ransomware, and is it illegal to?

It's not a question of whether a company will fall prey to ransomware, but when. Executives should focus on deciding to pay or not pay the ransom and on any legal fallout. Continue Reading
10 ways blockchain can improve IAM

DLT has the potential to revolutionize the identity management space. From boosting privacy to improving visibility, here are 10 use cases of blockchain in IAM. Continue Reading
Risk-based vulnerability management tools in the cloud

As enterprises increasingly rely on cloud services, a risk-based vulnerability management approach can provide the best protection against cybersecurity threats. Continue Reading

Learn to apply best practices and optimize your operations.

4 healthcare risk management tips for secure cloud migration

From improving the security posture and updating threat modeling to securing cloud data, learn about four risk management tips for healthcare organizations migrating to cloud. Continue Reading
5 steps to secure the hybrid workforce as offices reopen

Companies must now face the security challenges of overseeing a hybrid workforce as employees return to the office. Continue Reading
How to handle social engineering penetration testing results

In the wake of conducting social engineering penetration testing, companies need to have a plan ready to prevent or minimize phishing, vishing and other attacks. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

Top 3 ransomware attack vectors and how to avoid them

Adversaries use three common entryways to infect systems with ransomware. Learn how to prevent your organization from falling victim to an attack. Continue Reading
Is bitcoin safe? How to secure your bitcoin wallet

As bitcoin use increases, so too have the number of cyber attacks on cryptocurrency exchanges and wallets. Learn how to keep bitcoin use secure. Continue Reading
How to defend against TCP port 445 and other SMB exploits

Keeping TCP port 445 and other SMB ports open is necessary for resource sharing, yet this can create an easy target for attackers without the proper protections in place. Continue Reading