Agencies that have built network infrastructure over decades may not be doing enough to manage basic cyber-hygiene practices and stay ahead of modern threats, cautions a new report.
When out-of-date configuration rules lurk on networks, attackers essentially have a back door to walk into government systems. However, modern network modeling platforms, capable of integrating into existing infrastructure, can help agency IT departments identify and manage cyber risks and accelerate essential hygiene practices.
We live in a world of rapid technological change. Consumers have adopted smart home devices at amazing (some might say alarming) speeds. Businesses have rushed to the cloud, to digitalization and to the latest artificial intelligence approaches. Each of these changes is driven by big benefits but also comes with a great deal of risk.
Mike Lloyd, CTO, RedSeal says, “There was a lot of fear at first that cloud would be less secure, but those fears were unfounded. In general, cloud providers do a great job, and they do it full time, 24×7. There have been no recent incidents that can be pinned on a cloud provider failing to do their job.”
He cautions that this does not mean the cloud is perfect safe and there certainly have been cloud breaches that were the fault of the company buying those cloud services.
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Keith Dohttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngKeith Do2020-02-28 15:02:232020-03-02 15:16:55Securing the Cloud with Smart SMB
I got into cybersecurity because I read books like Winn Schwartau’s “Information Warfare,” William Gibson’s “Neuromancer” and Cliff Stoll’s “Cuckoo’s Egg.” These books gave me a very balanced view of what cybersecurity could be, even though no one called them cyber in the 90s. Until I got Ray Rothrock’s book, “Digital Resilience,” I didn’t have a book I was comfortable with suggesting as a great first read to the next generation of cyber professionals.
If you’ve recently been put in charge of IT or IT operations and didn’t grow up in cyber over the past 20 years, “Digital Resilience” is for you. This book is also equally useful for new CEOs, CFOs or board members who need to understand cyber risk without getting overwhelmed with IT technology or the defeatism of “hackers and nation-states will always get in, so why bother.”
The majority of IT pros worldwide consider the most secure IT operating environment to be the hybrid cloud, according to recent research. In a hybrid cloud, some applications and workloads run in private cloud infrastructure, either on-premises or in a third-party hosting environment, while others reside in the public cloud.
…”Competitors that are building clouds all offer different services, with different complex details, and different skills required,” said Dr. Mike Lloyd, RedSeal CTO.
Competing management systems are one issue. Because each vendor innovates and builds its own management layer, effectively maintaining a hybrid environment means that “every IT organization has to become fluent in multiple languages at once,” according to Lloyd.
Boris Johnson’s decision to allow Huawei continued access to the UK’s 5G network could lead to a serious threat to the country, a leading expert has warned.The Chinese firm will be allowed to access 35 percent of the UK’s network, which includes its radio networks. Huawei will also be banned from supplying “sensitive” parts to the network, the UK Government revealed last month.
Mr. Johnson declaring there will be limits to Huawei’s access, speaking to Express.co.uk, Dr. Mike Lloyd, security expert and CTO at RedSeal, warned 35 percent is a “huge amount” for any potential spy.
6. Managing The Increasingly Complex Digital Business Environment
Data breaches happen because it’s hard to do anything consistently at scale. Our top risk is failing to follow basic rules 100% of the time in a growing, changing, increasingly complex digital business environment. Attackers are like ants in a house—no matter what you do, they always find another way in. We need to manage complexity and apply basic security standards everywhere, all the time. – Mike Lloyd, RedSeal
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Keith Dohttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngKeith Do2020-01-30 15:54:032020-01-30 15:54:0314 Top Data Security Risks Every Business Should Address
Cybersecurity is one of the most urgent world issues, meaning February 2020 is no time for indifference. A new year invariably brings new threats as the news cycle is dominated by high-profile hacks and disastrous cases of negligence.
3. RedSeal
San Jose’s RedSeal saw the light of day in 2004 and has spent the intervening years helping companies improve their cyber risk assessments and their scoring and modeling methodologies.
Performing regular vulnerability assessments is critical in modern cybersecurity and the key to staying ahead of emerging threats. That goes double for health care companies (one of RedSeal’s specialties), who are beholden to HIPAA and various other ongoing threat assessment requirements.
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Keith Dohttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngKeith Do2020-01-26 20:02:152020-01-26 20:02:1510 Hot Cybersecurity Companies To Follow In February 2020
There’s a saying in the security world : “If it’s on the network, it belongs to the CISO.” Dr. Mike Lloyd, RedSeal CTO, discusses some steps the CISO can undertake where traditional techniques don’t seem to have an answer in securing IoT infrastructure.
What do you think will be the key drivers for security spending?
We are mid-way through the transition to the cloud, leaving most networks as a complex hybrid. Managing that complexity will be a major spending driver. Another key driver is compliance as the regulatory landscape continues to evolve, new regulations will drive spending. Lastly, cyber insurance will increase in importance in 2020, and this will steer spending towards defences that insurance providers want to see, in much the same way that car insurance drives car safety features. – Mike Lloyd, RedSeal CTO
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Keith Dohttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngKeith Do2020-01-21 12:01:242020-01-21 12:21:29What’s in Store? Cybersecurity in 2020
April 7 Webinar - Hosts: Understanding Your Inventory to Pass Compliance- Register Now
How network modeling and cyber hygiene improve security odds for federal agencies
/in In the News /by Keith DoFedScoop | March 16, 2020
Agencies that have built network infrastructure over decades may not be doing enough to manage basic cyber-hygiene practices and stay ahead of modern threats, cautions a new report.
When out-of-date configuration rules lurk on networks, attackers essentially have a back door to walk into government systems. However, modern network modeling platforms, capable of integrating into existing infrastructure, can help agency IT departments identify and manage cyber risks and accelerate essential hygiene practices.
Why Aren’t Smart Devices Safer?
/in In the News /by Keith DoForbes | March 6, 2020
We live in a world of rapid technological change. Consumers have adopted smart home devices at amazing (some might say alarming) speeds. Businesses have rushed to the cloud, to digitalization and to the latest artificial intelligence approaches. Each of these changes is driven by big benefits but also comes with a great deal of risk.
Securing the Cloud with Smart SMB
/in In the News /by Keith DoSm@rt SMB | February 2020 (Pages 13-14)
Mike Lloyd, CTO, RedSeal says, “There was a lot of fear at first that cloud would be less secure, but those fears were unfounded. In general, cloud providers do a great job, and they do it full time, 24×7. There have been no recent incidents that can be pinned on a cloud provider failing to do their job.”
He cautions that this does not mean the cloud is perfect safe and there certainly have been cloud breaches that were the fault of the company buying those cloud services.
Cybersecurity Canon Book Review: “Digital Resilience”
/in In the News /by Keith DoPalo Alto Networks Blog | February 27, 2020
I got into cybersecurity because I read books like Winn Schwartau’s “Information Warfare,” William Gibson’s “Neuromancer” and Cliff Stoll’s “Cuckoo’s Egg.” These books gave me a very balanced view of what cybersecurity could be, even though no one called them cyber in the 90s. Until I got Ray Rothrock’s book, “Digital Resilience,” I didn’t have a book I was comfortable with suggesting as a great first read to the next generation of cyber professionals.
If you’ve recently been put in charge of IT or IT operations and didn’t grow up in cyber over the past 20 years, “Digital Resilience” is for you. This book is also equally useful for new CEOs, CFOs or board members who need to understand cyber risk without getting overwhelmed with IT technology or the defeatism of “hackers and nation-states will always get in, so why bother.”
Charting a Path to Hybrid Cloud Security
/in In the News /by Erica VenerNutanix Blog | February 20, 2020
The majority of IT pros worldwide consider the most secure IT operating environment to be the hybrid cloud, according to recent research. In a hybrid cloud, some applications and workloads run in private cloud infrastructure, either on-premises or in a third-party hosting environment, while others reside in the public cloud.
…”Competitors that are building clouds all offer different services, with different complex details, and different skills required,” said Dr. Mike Lloyd, RedSeal CTO.
Competing management systems are one issue. Because each vendor innovates and builds its own management layer, effectively maintaining a hybrid environment means that “every IT organization has to become fluent in multiple languages at once,” according to Lloyd.
Huawei warning: Expert reveals how spy could EASILY hack into UK’s 5G network
/in In the News /by Keith DoDaily Express | February 8, 2020
Boris Johnson’s decision to allow Huawei continued access to the UK’s 5G network could lead to a serious threat to the country, a leading expert has warned.The Chinese firm will be allowed to access 35 percent of the UK’s network, which includes its radio networks. Huawei will also be banned from supplying “sensitive” parts to the network, the UK Government revealed last month.
Mr. Johnson declaring there will be limits to Huawei’s access, speaking to Express.co.uk, Dr. Mike Lloyd, security expert and CTO at RedSeal, warned 35 percent is a “huge amount” for any potential spy.
14 Top Data Security Risks Every Business Should Address
/in In the News /by Keith DoForbes | January 30, 2020
6. Managing The Increasingly Complex Digital Business Environment
Data breaches happen because it’s hard to do anything consistently at scale. Our top risk is failing to follow basic rules 100% of the time in a growing, changing, increasingly complex digital business environment. Attackers are like ants in a house—no matter what you do, they always find another way in. We need to manage complexity and apply basic security standards everywhere, all the time. – Mike Lloyd, RedSeal
10 Hot Cybersecurity Companies To Follow In February 2020
/in In the News, Uncategorized /by Keith DoCybercrime Magazine | January 20, 2020
Cybersecurity is one of the most urgent world issues, meaning February 2020 is no time for indifference. A new year invariably brings new threats as the news cycle is dominated by high-profile hacks and disastrous cases of negligence.
3. RedSeal
San Jose’s RedSeal saw the light of day in 2004 and has spent the intervening years helping companies improve their cyber risk assessments and their scoring and modeling methodologies.
Performing regular vulnerability assessments is critical in modern cybersecurity and the key to staying ahead of emerging threats. That goes double for health care companies (one of RedSeal’s specialties), who are beholden to HIPAA and various other ongoing threat assessment requirements.
The Latest CISO Headache – IoT
/in In the News /by Keith DoSm@rt SMB | January 2020 (Page 30)
There’s a saying in the security world : “If it’s on the network, it belongs to the CISO.” Dr. Mike Lloyd, RedSeal CTO, discusses some steps the CISO can undertake where traditional techniques don’t seem to have an answer in securing IoT infrastructure.
What’s in Store? Cybersecurity in 2020
/in In the News /by Keith DoTahawulTech | January 2020 (Page 12)
What do you think will be the key drivers for security spending?
We are mid-way through the transition to the cloud, leaving most networks as a complex hybrid. Managing that complexity will be a major spending driver. Another key driver is compliance as the regulatory landscape continues to evolve, new regulations will drive spending. Lastly, cyber insurance will increase in importance in 2020, and this will steer spending towards defences that insurance providers want to see, in much the same way that car insurance drives car safety features. – Mike Lloyd, RedSeal CTO