Information security policies, procedures and guidelines news, help and research

Information security policies, procedures and guidelines News

January 19, 2021 19 Jan'21
FBI warns against vishing attacks targeting enterprises

Though the FBI vishing warning references attacks that began in December 2019, the alert is reminiscent of the Twitter social engineering attacks that took place last July.
November 18, 2020 18 Nov'20
President Trump fires CISA director Christopher Krebs

President Trump fired Krebs as director of CISA after the agency pushed back on unfounded accusations about widespread voter fraud and voting system hacks during the election.
October 21, 2020 21 Oct'20
NSA issues advisory against Chinese state-sponsored hackers

Among the 25 vulnerabilities listed in the NSA advisory, numerous were critical and carried a CVSS score either at or close to 10, the highest possible.
August 25, 2020 25 Aug'20
'Meow' attacks top 25,000 exposed databases, services

One month after the notorious 'meow' attacks were first detected, the threat to misconfigured databases exposed on the internet shows little sign of slowing down.

Bring yourself up to speed with our introductory content

How to create a cloud security policy, step by step

Read up on the components of a cloud security policy, what policies cover and why your organization needs them, and download a handy template to get the process started. Continue Reading
Top 10 cybersecurity interview questions and answers

Interviewing for a job in cybersecurity? Memorizing 100-plus security definitions won't cut it. Here are the 10 interview questions you should be ready for -- and how to answer them. Continue Reading
Endpoint security quiz: Test your knowledge

Test your knowledge of SASE, split tunneling, and device discovery tool capabilities and best practices in this endpoint security quiz for IT professionals. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

10 cybersecurity best practices and tips for businesses

Looking to improve your business's security program? Our top-10 list of cybersecurity advice breaks out best practices and tips for security professionals and for employees. Continue Reading
Cyber insurance explained, from selection to post-purchase

Before you sign on the dotted line, make sure you understand what cyber insurance can and can't do -- and what type of policy will do the most for you. Continue Reading
Weighing the future of firewalls in a zero-trust world

Cybersecurity pros have been predicting the firewall's demise for years, yet the device is still with us. But does it have a place in zero-trust networks? One analyst says yes. Continue Reading

Learn to apply best practices and optimize your operations.

5 tips for building a cybersecurity culture at your company

As a company's cyber risks evolve, so must its culture. Here are five tips for creating a cybersecurity culture that protects the business and is meaningful for employees. Continue Reading
The human firewall's role in a cybersecurity strategy

The human firewall is a crucial element of a long-term, holistic security initiative. Explore how human firewalls can protect your enterprise against attacks. Continue Reading
15 benefits of outsourcing your cybersecurity operations

For companies battling increasing security breaches and cyber attacks, MSSPs can offer reliability, continuity, nonstop coverage, broader experience and better access to talent. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

Top 3 challenges of a zero-trust security model

There are three main zero-trust security challenges, but because the model is highly beneficial, it's important for organizations to learn how to overcome them. Continue Reading
Enterprise cybersecurity hygiene checklist for 2020

Cybersecurity hygiene in the enterprise must be a shared responsibility between employees and employers. Follow these steps to get the job done by both. Continue Reading
Build shadow IT policy to reduce security risks

Security risks have increased during the pandemic as remote workers try to get things done. Find out how CISOs can better manage by creating a shadow IT policy. Continue Reading