Security vs. Resilience: Know the Difference

TechBeacon | May 5, 2017

By Ray Rothrock, RedSeal Chief Executive Officer

If you really want to know the difference between security and resilience, pour yourself a cup of strong coffee and dig into the all-but-impenetrable PPD-21, Presidential Policy Directive—Critical Infrastructure Security and Resilience. Or just go to the U.S. Department of Homeland Security (DHS) website, which cuts to the chase with a few good examples of each…

Scan these two lists, and you come to an inescapable conclusion: Security and resilience are not synonyms or even second cousins. In fact, security and resilience have remarkably little to do with one another. The measures under the “security” list are about locking up. Those under “resilience” are about standing up. Security is about hunkering down. Resilience is about doing business.

7 Habits of a Resilient Business

Computer Business Review | May 4, 2017

By Ray Rothrock, RedSeal Chief Executive Officer

Here’s the reality: Bad things will happen, and your precautions and defenses will not stop every bad thing. However, this doesn’t mean there’s no hope. It’s quite the opposite, because you have a choice: you can either wish for the best, or decide to be – what the industry is calling: digitally resilient. There is no third alternative. If you choose to face reality and pursue resilience, you need to acquire, cultivate, and hone the seven habits that follow.

Better Cybersecurity Audits Would Mean Better Network Protection

ThirdCertainty | April 25, 2017

By RedSeal customer Paul Beaudry, Assistant VP of Information Management Systems, Richardson International

Pick up a newspaper on any given day in 2017 and you’re likely to read the latest chapter in a long-running story: security professionals versus the hackers. Recent revelations around Russian state-sponsored involvement in the 2013 Yahoo hack, and the WikiLeaks-managed exposure of a trove of CIA-developed exploits, means those hackers could even be government employees.

This is a story without an end – a battle which is just getting started. That’s bad news for IT leaders already stretched to the limit by a lack of human resources in their security departments.

Don’t Let Complex Networks Ground Your Operations

Forbes | April 25, 2017

By Dr. Mike Lloyd, RedSeal CTO

The Wall Street Journal recently wrote (paywall) about the fragile nature of airline IT infrastructure. They highlighted the way that a single point of failure, such as a failed router, can ripple out to impact global operations. This can happen to any of us when we can’t track which objectives depend on particular technology pieces in our complex environments.

While the WSJ article pinpointed the problem in one specific industry and characterized it as an issue with “aging” technology, the problem is both more widespread and subtle than that. Working at RedSeal, I get to see inside the networks of many different types of organizations — civilian, military, global, tiny. One thing they all share: complexity.

RedSeal CEO Ray Rothrock to Lead Cybersecurity Panel at Milken Institute Global Conference

Rothrock and Cybersecurity Experts to Discuss the Value of a Digital Resilience Strategy to Combat Cyber Attacks

WHAT:  The 20th Annual Milken Institute Global Conference convenes more than 4,000 influential leaders from 50 countries, to tackle the world’s most stubborn challenges, including cybercrime. Recent breaches have ranged from corporate theft to hacks allegedly carried out to influence the outcome of elections. A recent study from Cybersecurity Ventures predicts the global cost of cybercrime will grow from $3 trillion in 2015 to $6 trillion by 2021.

In this panel, titled “My Organization Has Been Hacked! Now What?”, cybersecurity experts will explore the value of a digital resilience strategy, and how it plays an important role for companies before and after they encounter a cyber attack. The panelists will address how the private and public sectors can be more effective in combatting hackers across national borders, as well as what companies can do to minimize the damage when a breach does take place.

WHO: The panel will be moderated by Ray Rothrock, Chairman and CEO of RedSeal, who recently discussed the C-Suite’s trouble assessing cyber risk with Jim Cramer on CNBC’s Mad Money. A thought leader in cybersecurity, Rothrock participated in the White House CyberSecurity Summit held at Stanford University in February 2015.

 Panelists:

  • Heather Adkins, Director, Information Security and Policy at Google
  • Dmitri Alperovitch, Co-Founder and CTO, CrowdStrike Inc.
  • Daniel Ennis, CEO, DRE Consulting; Exec. Director, Global Cyber Security Initiative, Univ. of Maryland, Former NSA Director, Cyber Threat Operations Center
  • Siobhan MacDermott, SVP Executive, Global Cyber Public Policy, Bank of America; Global Fellow, Geneva Center for Security Policy

WHEN: Monday, May 1, 2017, 10:45 AM-11:45 AM

WHERE: The Beverly Hilton, 9876 Wilshire Boulevard, Beverly Hills, CA 90210

Security Automation: Game Changer to Boost IT Productivity and Network Resilience

INFORMATION AGE | April 19, 2017

By Dr. Mike Lloyd, RedSeal CTO

Pick up a newspaper on any given day in 2017 and you’re likely to read the latest chapter in a long-running story: security professionals versus the hackers. Recent revelations around Russian state-sponsored involvement in the 2013 Yahoo hack, and the WikiLeaks-managed exposure of a trove of CIA-developed exploits, means those hackers could even be government employees.

This is a story without an end – a battle which is just getting started. That’s bad news for IT leaders already stretched to the limit by a lack of human resources in their security departments.

RedSeal Recognized as 2017 Bay Area Best Place To Work

SUNNYVALE, Calif. — April 19, 2017 — RedSeal (redseal.net), the leader in network modeling and cyber risk scoring, has been recognized as a winner of the 2017 Bay Area Best Places To Work, an awards program presented by the San Francisco Business Times and the Silicon Valley Business Journal.

Select employers from the Bay Area were named winners of the awards program, held on April 18, 2017. These winning organizations were honored for having created exceptional workplaces that their employees value highly.

Award applicants were evaluated and ranked across five categories according to the number of Bay Area employees.  The ranking found companies in the region whose employees rate them as the highest on such values as fun, collaborative culture, solid compensation and benefits offerings and other amenities as well as management practices.  The rankings were unveiled on April 18, 2017 at the awards program.

“It’s an incredible honor to be named a best place to work in the San Francisco Bay Area, especially because this distinction results directly from employee feedback,” said Ray Rothrock, chairman and CEO at RedSeal. “We strive to create the best possible work environment so our team members can flourish and continue to advance our industry-leading network modeling and risk scoring platform.”

RedSeal is hiring! Visit our Careers page for current opportunities.

Can a Non-Tech Manager Effectively Oversee Tech Pros?

DICE | April 14, 2017

Featuring Kurt Van Etten, RedSeal VP of Product Management

A manager is a worker with ambition who seized greater responsibility. But as the old saying goes, many manage to rise above their abilities, and attract reputations for uncertain guidance, indecision, and de-motivation.

It doesn’t have to be this way.

Putting the right person in the right job is the most important task that many companies screw up. A bad hire is bad enough, but the problem compounds when that bad hire is a manager—and the problem may scale up exponentially when you have an IT-oriented unit answering to a non-tech manager.

Banks Must Focus More on Cyber-Risk

DARK READING | April 5, 2017

By Dr. Mike Lloyd, RedSeal CTO

In late 2016, just after the distributed denial-of-service attack on the DNS infrastructure, I sat in my hotel room staring at a cryptic URL error on my laptop after attempting to buy a train ticket, wondering what it meant. Was my credit card compromised? Did I have a ticket? Should I do anything to protect my identity and financial security?

Every day, millions of Americans conduct billions of digital financial transactions with the corner grocery store, online retailers, and banks. We buy things and pay for them; we pay rent, credit card, and utility bills; and we scan smartphone screens at payment readers. Online financial interactions are continuous, intertwined, and essential to everyday life. They are also under ever-more threats from cyberattack. What can be done to defend against the constant barrage of successful exploits?

Security At Its Boiling Point

Channel Post | March 27, 2017

Cyber-crime is not a new phenomenon and it has gained momentum in recent years leading to more cyber-attacks on businesses, government establishments and other entities, leaving a trail of destruction in its wake. Over the last few years, the evolving threat climate has led to an increase in security spending. Enterprises are also transforming their security spending strategy in 2017, moving away from prevention-only approaches to focus more on detection and response. According to Gartner, spending on enhancing detection and response capabilities is expected to be a key priority for security buyers through 2020.