This year, the big news in government cybersecurity is the DHS CDM DEFEND program and task orders being announced by various federal departments. The DHS CDM DEFEND, which stands for Continuous Diagnostics and Mitigation (CDM) Dynamic and Evolving Federal Enterprise Network Defense, task orders are awarded under the General Services Administration’s Alliant 1 Unrestricted contract. […]
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Wayne Lloyd, Federal CTO, RedSealhttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngWayne Lloyd, Federal CTO, RedSeal2018-08-14 05:30:032018-08-13 10:52:09RedSeal and DHS CDM DEFEND
While the focus on cybersecurity has never been higher, the cybersecurity community – a combined team of solution providers, CISOs, boards and others– haven’t been able to stop most attacks from being successful.
Why?
We have focused too much of our efforts on network perimeters, working to detect and prevent cyber attacks. We haven’t […]
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Wayne Lloyd, Federal CTO, RedSealhttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngWayne Lloyd, Federal CTO, RedSeal2018-07-02 05:58:532019-05-10 15:55:49The Only Cybersecurity Metric That Matters for Digital Resilience
In NSA: The Silence of the Zero Days, published in Data Breach Today, Mathew Schwartz discusses hackers’ rapid response to newly discovered flaws and/or exploits.
I was struck by a quote from David Hogue, the head of the NSA’s Cybersecurity Threat Operations Center (NCTOC). “Within 24 hours of a vulnerability or exploit being released, it’s […]
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Wayne Lloyd, Federal CTO, RedSealhttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngWayne Lloyd, Federal CTO, RedSeal2018-05-30 00:48:062018-06-25 09:17:29Vulnerabilities Age Like Dynamite
Warren Buffett recently made clear how risk-averse his business is when it comes to cyber insurance. Addressing his annual shareholder meeting, he summarized the state of play like this: “I think anybody that tells you now they think they know in some actuarial way either what [the] general experience is like in the future, or what […]
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Dr. Mike Lloyd, CTO, RedSealhttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngDr. Mike Lloyd, CTO, RedSeal2018-05-21 08:42:072018-08-14 08:56:20Warren Buffett’s Take On Cyber Insurance
“Closing the Gaps in Cybersecurity Resilience at U.S. Government Agencies,” a new survey of civilian, defense and intelligence agencies, suggests that the cybersecurity threat landscape is evolving quicker than they can respond.
Two-thirds of federal IT executives say their agency‘s ability to withstand a cyber event, and continue to function, is moderately to highly mature.
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Lauren Staufferhttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngLauren Stauffer2018-05-14 15:12:142018-06-11 14:02:54New Study: Closing the Gaps in Cybersecurity Resilience at U.S. Government Agencies
Two years ago, a federal government civilian agency had a problem.
Nation state actors were targeting the agency, creating numerous cyber events and breaches every day. The media was all over the story. They faced enormous pressure to change the cybersecurity status quo.
The agency’s cybersecurity team knew that they were in reaction mode. They […]
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Wayne Lloyd, Federal CTO, RedSealhttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngWayne Lloyd, Federal CTO, RedSeal2018-03-29 05:00:172018-06-11 14:04:25Federal Civilian Agency Saves the Day
Cisco has disclosed a critical CVSS 10 vulnerability in ASA that can allow an uncredentialled user to take over the vulnerable device and change access rules. RedSeal has published a custom best practice check for customers to detect vulnerable devices that have the offending service (WebVPN) enabled.
Over the last few decades, many network security architecture products have come to market, all with useful features to help secure networks. If we assume that all of these security products are deployed in operational networks, why do we still see so many leaks and breaches?
Some say the users are not leveraging the full capabilities […]
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Wayne Lloyd, Federal CTO, RedSealhttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngWayne Lloyd, Federal CTO, RedSeal2017-12-21 05:00:302018-06-11 11:56:20Network Segmentation, Security and RedSeal
Recently RedSeal hosted its annual Federal Customer Forum. One of the panels featured a discussion with several luminaries in the federal government cybersecurity ecosystem. The topic: the importance of the integration and automation of cybersecurity operations.
Those present were:
Wayne Lloyd, RedSeal (Moderator) Kevin Phan, Splunk Tim Jones, ForeScout Wade Woolwine, Rapid7 John America, Mystek […]
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00RedSealhttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngRedSeal2017-12-18 05:00:492018-06-11 14:04:39Leading Federal Cybersecurity Experts Agree: Federal Agencies Need Integrated and Automated Approach
Watch Video: RedSeal and Hidden Cobra Overview, Use Cases and Demo
Introduction
On November 17th, the United States Computer Emergency Ready Team (US-CERT), in conjunction with the FBI, released a pair of advisories about the North Korean hacking and espionage campaign code named HIDDEN COBRA. The latest advisories describe two pieces of […]
https://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.png00Emil Kiner, Sr. Product Managerhttps://www.redseal.net/wp-content/uploads/2016/08/RedSeal-logo.pngEmil Kiner, Sr. Product Manager2017-11-22 13:59:182018-06-11 10:11:51Being Digitally Resilient in the Face of HIDDEN COBRA
June 4th Webinar - Best Practices for Cloud Security Controls -Register Now
RedSeal and DHS CDM DEFEND
/in Blog /by Wayne Lloyd, Federal CTO, RedSealThis year, the big news in government cybersecurity is the DHS CDM DEFEND program and task orders being announced by various federal departments. The DHS CDM DEFEND, which stands for Continuous Diagnostics and Mitigation (CDM) Dynamic and Evolving Federal Enterprise Network Defense, task orders are awarded under the General Services Administration’s Alliant 1 Unrestricted contract. […]
The Only Cybersecurity Metric That Matters for Digital Resilience
/in Blog /by Wayne Lloyd, Federal CTO, RedSealWhile the focus on cybersecurity has never been higher, the cybersecurity community – a combined team of solution providers, CISOs, boards and others– haven’t been able to stop most attacks from being successful.
Why?
We have focused too much of our efforts on network perimeters, working to detect and prevent cyber attacks. We haven’t […]
Vulnerabilities Age Like Dynamite
/in Blog /by Wayne Lloyd, Federal CTO, RedSealIn NSA: The Silence of the Zero Days, published in Data Breach Today, Mathew Schwartz discusses hackers’ rapid response to newly discovered flaws and/or exploits.
I was struck by a quote from David Hogue, the head of the NSA’s Cybersecurity Threat Operations Center (NCTOC). “Within 24 hours of a vulnerability or exploit being released, it’s […]
Warren Buffett’s Take On Cyber Insurance
/in Blog /by Dr. Mike Lloyd, CTO, RedSealWarren Buffett recently made clear how risk-averse his business is when it comes to cyber insurance. Addressing his annual shareholder meeting, he summarized the state of play like this: “I think anybody that tells you now they think they know in some actuarial way either what [the] general experience is like in the future, or what […]
New Study: Closing the Gaps in Cybersecurity Resilience at U.S. Government Agencies
/in Blog /by Lauren Stauffer“Closing the Gaps in Cybersecurity Resilience at U.S. Government Agencies,” a new survey of civilian, defense and intelligence agencies, suggests that the cybersecurity threat landscape is evolving quicker than they can respond.
Two-thirds of federal IT executives say their agency‘s ability to withstand a cyber event, and continue to function, is moderately to highly mature.
[…]
Federal Civilian Agency Saves the Day
/in Blog /by Wayne Lloyd, Federal CTO, RedSealTwo years ago, a federal government civilian agency had a problem.
Nation state actors were targeting the agency, creating numerous cyber events and breaches every day. The media was all over the story. They faced enormous pressure to change the cybersecurity status quo.
The agency’s cybersecurity team knew that they were in reaction mode. They […]
Finding Devices Vulnerable and Exposed to CVE-2018-0101 with RedSeal
/in Blog /by Emil Kiner, Sr. Product ManagerSummary
Cisco has disclosed a critical CVSS 10 vulnerability in ASA that can allow an uncredentialled user to take over the vulnerable device and change access rules. RedSeal has published a custom best practice check for customers to detect vulnerable devices that have the offending service (WebVPN) enabled.
Quick Links:
RedSeal Custom Best Practice Check […]
Network Segmentation, Security and RedSeal
/in Blog /by Wayne Lloyd, Federal CTO, RedSealOver the last few decades, many network security architecture products have come to market, all with useful features to help secure networks. If we assume that all of these security products are deployed in operational networks, why do we still see so many leaks and breaches?
Some say the users are not leveraging the full capabilities […]
Leading Federal Cybersecurity Experts Agree: Federal Agencies Need Integrated and Automated Approach
/in Blog /by RedSealRecently RedSeal hosted its annual Federal Customer Forum. One of the panels featured a discussion with several luminaries in the federal government cybersecurity ecosystem. The topic: the importance of the integration and automation of cybersecurity operations.
Those present were:
Wayne Lloyd, RedSeal (Moderator) Kevin Phan, Splunk Tim Jones, ForeScout Wade Woolwine, Rapid7 John America, Mystek […]
Being Digitally Resilient in the Face of HIDDEN COBRA
/in Blog /by Emil Kiner, Sr. Product ManagerWatch Video: RedSeal and Hidden Cobra Overview, Use Cases and Demo
Introduction
On November 17th, the United States Computer Emergency Ready Team (US-CERT), in conjunction with the FBI, released a pair of advisories about the North Korean hacking and espionage campaign code named HIDDEN COBRA. The latest advisories describe two pieces of […]