Operations | Monitoring | ITSM | DevOps | Cloud

If you follow any kind of tech news feed, you’ve surely seen stories about unwanted “guests” doing God knows what in someone’s collaboration room. I take these intrusions very seriously, but I don’t think it’s the most serious security threat we face in UC and IT overall.

New applications and workloads are constantly being added to Kubernetes clusters. Those same apps need to securely communicate with resources outside the cluster behind a firewall or other control point. Firewalls require a consistent IP, but routable IPs are a limited resource that can be quickly depleted if applied to every service.

NoSQL technology has become more popular in recent years thanks to the development of new open-source NoSQL databases that are relatively easy to install, use and integrate with web frameworks. An example of one of those popular frameworks on the internet is known as MEAN (MongoDb, Express.js, Angular.js, Node.js). These NoSQL frameworks have become very popular for things such as content management, catalogs and big data in general.

Identity and Access Management (IAM) systems provide core directory services, application access management, and authentication and authorization services. IAM also helps developers with a base platform to provide access control to their applications based on centralized policies and rules. IAM manages user details, authentication, and access information for an organization. The responsibility of user management and authentication creates a great dependency on IAM.

Rancher 2.4, the latest release of Rancher’s Kubernetes management platform, includes a new CIS security scanning feature. The Center for Internet Security publishes more than 100 benchmarks for Kubernetes, which are considered the default standard benchmark for defining security of Kubernetes clusters. With Rancher 2.4, CIS scanning is an integrated part of the Rancher UI itself for RKE clusters. If you create or import any RKE cluster via Rancher, CIS Scan will work flawlessly.

Here’s a situation that is likely familiar to you if you work in enterprise IT. The need for strong security practices is more pressing than ever, with known vulnerabilities growing exponentially, and nearly half of companies having experienced a data breach in the last two years. At the same time, organizations face demands to deploy software faster, and more frequently. IT executives consistently identify cybersecurity and speed among their top priorities.

Careful monitoring and attention to endpoints are just two elements of a strong cybersecurity strategy for K-12 districts. Cybersecurity must be a top priority for K-12 schools. Schools need to prioritize thwarting industrious hackers who are intent on getting to the treasure trove of information and personally identifiable information (PII) schools manage.

When we discuss Splunk Phantom with customers here at Splunk, we end up talking about phishing pretty frequently. As discussed in a recent blog post, "Phishing Emails — Don’t Get Reeled In!," phishing is a super common issue that almost everyone deals with ad nauseum. It’s also a nuisance to investigate. The good news is that automation excels at dealing with repetitive, mind-numbing workflows like phishing investigations.