Illuminating the intersection of physical and cyber security

Steven Bowcut

I want to introduce you to David. David is the Chief Information Security Officer for a sizeable financial institution. He is an educated career professional, a loving husband, and a devoted father. He takes his job as CISO very seriously. The responsibility of protecting his organization’s digital assets, including sensitive […]

A Security Patch for Your People

This entry was posted in Compliance Cybersecurity Cybersecurity Education and tagged LUCY Security on March 30, 2020 by Steven Bowcut

Security technology has not kept up with today’s accelerated move toward virtual infrastructure and disappearing network boundaries. Advanced hackers are quickly exploiting application vulnerabilities with fileless and memory-based attacks. A new security approach is needed to counter these sophisticated threats. Methods that do more than monitor the perimeter and that […]

Advanced Application Attacks Put Businesses at Risk

This entry was posted in Application Security Cybersecurity and tagged Virsec on March 27, 2020 by Steven Bowcut

Despite notable investments in Privileged Access Management (PAM) technologies, privileged accounts are still overexposed. Historically, PAM providers have focused on controlling access to accounts and their passwords, not on the activities an administrator needs to perform. The result is an excess of privileged accounts and privileged access control groups with […]

A Task-Based Approach to Privileged Access Management

This entry was posted in Access Management Cybersecurity Data Protection and tagged STEALTHbits on March 26, 2020 by Steven Bowcut

The use of encryption to protect against cyber threats is growing exponentially. Unfortunately, cybercriminals also leverage encryption to hide malware, ransomware, and other attacks. Industry analyst firm Omdia estimates that as much as 70–80% of enterprise inbound network traffic is now encrypted, which is up approximately 20% from three years ago. As […]

Analyzing Encrypted Network Traffic

This entry was posted in Cloud Security Cybersecurity Data Protection RSAC and tagged Juniper Networks on March 25, 2020 by Steven Bowcut

As millions of workers move from the confines of their employer’s network to apply safe physical distancing measures by working from home, securing data gets more complicated. Providing adequate protection for your critical data can be even more challenging if your VPN just wasn’t designed for the level of traffic […]

The Importance of Extending Your Security Policies to the Cloud

This entry was posted in Cloud Security Compliance Data Protection and tagged CipherCloud on March 23, 2020 by Steven Bowcut

As data protection concerns rise and compliance regulation increases, the use of encrypted hard drives elevates right along with them. We’ve all seen them, and maybe you even use one. But why? In an age of hyperconnectedness and mass cloud storage, are these little hardware devices old school technology? Most […]

Encrypted Hard Drives, Who Uses Them, and Why

This entry was posted in Compliance Cybersecurity Data Protection RSAC and tagged DataLocker on March 20, 2020 by Steven Bowcut

As part of our efforts to bring our readers the most exciting and innovative technologies to be found at RSAC 2020, Brilliance Security Magazine sat down with SIRP to discuss their compelling new SOAR solution. SIRP is a Risk-based Security Orchestration, Automation, and Response (SOAR) platform that fuses essential cybersecurity information to […]

Risk-based SOAR

This entry was posted in Cybersecurity RSAC SOAR and tagged SIRP on March 16, 2020 by Steven Bowcut

The Shared Assessments Program Third-party risk management (TPRM) is the process of examining and managing risks associated with outsourcing to third-party vendors or service providers. This process could include access to an organization’s intellectual property, data, operations, finances, customer information, or other sensitive information. While third-party risk has historically been […]

Third-party Risk Management

This entry was posted in Risk Management RSAC and tagged Shared Assessments Program The Santa Fe Group on March 10, 2020 by Steven Bowcut

Since it was introduced 20 years ago, Active Directory has become arguably the most critical application for many enterprises. The problem is that in the two decades since it was released, the enterprise security threatscape has changed drastically and businesses have not adapted their Active Directory environment to meet these […]

Detect, Recover, and Restore From Active Directory Events

This entry was posted in Cybersecurity RSAC and tagged Semperis on March 3, 2020 by Steven Bowcut

Yesterday, DivvyCloud, a leading provider of security and compliance automation for cloud and container environments, released its 2020 Cloud Misconfigurations Report. Today, the most circulated security news story is about the personal data of more than 10 million people exposed in a breach of MGM’s cloud servers. The MGM hack […]

Breaches Caused by Cloud Misconfigurations on the Rise

This entry was posted in Cloud Security Cybersecurity Data Protection and tagged DivvyCloud Shared Assessments on February 20, 2020 by Steven Bowcut

According to a recent study entitled, “State Of Enterprise IoT Security In North America: Unmanaged And Unsecured” commissioned by Armis: 69% of enterprises have more IoT devices on their networks than computers 84% of security professionals believe IoT devices are more vulnerable than computers 67% of enterprises have experienced an […]

Physical Security System Cyber Protection: An Interview with Johnson Controls

This entry was posted in Cybersecurity Physical Security and tagged Johnson Controls on February 19, 2020 by Steven Bowcut

Malwarebytes, a leading advanced endpoint protection and remediation solution provider, today announced the findings of its annual “State of Malware” report, and I think you should read it. Let me clarify. I think you should read it if you need to understand the current cyberthreat landscape. Here’s why. As a […]

A Security Industry Report Worth Reading

This entry was posted in Industry Report Opinion and tagged Malwarebytes on February 11, 2020 by Steven Bowcut