%term

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Introducing Logz.io Security Analytics

Apr 21, 2019 By logz.io In logz.io

View an overview of Logz.io's Security Analytics - a unified platform for operations and security and built on top of the ELK Stack. Includes threat detection, rules, compliance and monitoring reports, integrations, and more.

View Video

logz.io

Read more about Introducing Logz.io Security Analytics

On-Prem or Cloud? A Decision in Light of Security and Compliance

Apr 18, 2019 By Evan Klein In logz.io

When an organization is ready to deploy a new solution, or build a new system, there is often a continuing discussion about the relative merits of using the cloud versus deploying on-premises. While there are a number of aspects that play into this decision, it is not always clear which is the better solution for security and compliance. Typically, deployment issues are not clear because security and compliance solutions quickly change when you are using shared vs. dedicated environments.

Read Post

logz.io

Read more about On-Prem or Cloud? A Decision in Light of Security and Compliance

Best Practices with AWS GuardDuty for Security and Compliance

Apr 18, 2019 By Sumo Logic In Sumo Logic

Cloud networks are popular targets for cybercriminals and organizations will inevitably face them. If you’ve ever administered a network of any type, you know that DDoS (distributed denial of service) attack attempts are really frequent, and there’s loads of malware out there too.

Read Post

Sumo Logic

Read more about Best Practices with AWS GuardDuty for Security and Compliance

3 Steps to Implement DevSecOps in Your Organization

Apr 18, 2019 By Andre Newman In Mezmo

It seems like hardly a week goes by without news of a security breach. Cyberattacks are becoming more frequent and more severe, costing businesses $600 billion per year according to the 2018 Economic Impact of Cybercrime report. Without a strong security policy in place, businesses risk falling victim to new threats while losing the trust of their customers.

Read Post

Mezmo

Read more about 3 Steps to Implement DevSecOps in Your Organization

Learn the gray areas of privacy compliance from the viral Monopoly Man

Apr 17, 2019 By ManageEngine In ManageEngine

IT teams can easily get lost while addressing specific requirements of particular regulations like the GDPR, or when management shifts their focus to a new regulation. To help IT admins tasked with managing compliance obligations understand the importance of privacy compliance in today's competitive market, ManageEngine is bringing the Monopoly Man to the IT community.

View Video

ManageEngine

Read more about Learn the gray areas of privacy compliance from the viral Monopoly Man

Cloud Native visibility and security with Sysdig Platform

Apr 17, 2019 By Sysdig In Sysdig

Sysdig Platform v2.0 is the first tool that provides unified visibility across your microservices, containers and Kubernetes; By unlocking rich sources of data, our platform solves a ton of the issues you’ll face in operating modern applications.

View Video

Sysdig

Read more about Cloud Native visibility and security with Sysdig Platform

NIST SP 800-190 application container security with Sysdig Secure

Apr 17, 2019 By Pawan Shankar In Sysdig

In September 2017, the National Institute of Standards and Technology (NIST) released Special Publication (SP) 800-190, Application Container Security Guide. NIST SP 800-190 explains the security concerns associated with container technologies and recommendations for the image details and container runtime security. It provides prescriptive details for various sections including image, registry, orchestrator, container and host OS countermeasures.

Read Post

Sysdig

Read more about NIST SP 800-190 application container security with Sysdig Secure

Toughening Security for Linux Servers

Apr 16, 2019 By Des Nnochiri In Power Admin

As with any other operating system, security is a prime concern with Linux network hardware. In this article, we’ll be giving some recommendations on how to toughen the security posture of your Linux servers. Screenshots and example syntax relate to systems running Kali Linux, CentOS, RHEL, Ubuntu, and Debian-based Linux distributions.

Read Post

Power Admin

Read more about Toughening Security for Linux Servers

Understanding RBAC in Sensu Go

Apr 16, 2019 By Simon Plourde In Sensu

Regulating access to resources is a fundamental measure for enterprises to ensure the security and reliability of a system. The last thing you need is a stolen or weak password to give up the keys to the proverbial kingdom. With role-based access control (RBAC), this risk is mitigated by providing only the necessary access so a user in your organization doesn't have more access than needed.

Read Post

Sensu

Read more about Understanding RBAC in Sensu Go

Using cf-runagent as non-root

Apr 12, 2019 By Ole Herman Elgesem In CFEngine

cf-runagent is a component for triggering remote agent runs using the CFEngine network protocol. It does not allow for arbitrary commands to be executed, but rather asks the remote host to run the policy it already has. To trigger cf-runagent from other systems or web interfaces, you want to be able to run it as non-root.

Read Post