Cybersecurity Snippets

Cisco, FireEye Announcements: A Microcosm of the Enterprise Cybersecurity Market

Integration and services needed for cybersecurity efficacy and operations efficiency

Enterprise Annexation of Endpoint Security

Malware detection, prevention, and response activities are quickly bringing endpoint and network security together.

Book Report: Cyberstorm by Matthew Mather

Great read for those who want to understand what might happen as a result of a devastating cyber-attack on critical infrastructure

Note to Executives, Legislators, and Consumers: Time For a More Serious Dialogue About Cybersecurity

Wave of security breaches illustrates the need to step back before moving forward

White House Cybersecurity Coordinator Is Kind of Right – but Mostly Wrong

Cybersecurity progress in Washington depends upon the right policies and programs based upon the right technical details

Figuring out FIDO (i.e. the Fast IDentity Online alliance and standard)

Great potential but too much hype and confusion are getting in the way

Enterprise Organizations Need Formal Incident Response Programs

PCI and other regulations will drive this behavior, but CIOs/CISOs need to build an incident response program with the same focus, discipline, and rigor as BC/DR

My Final Impressions of Black Hat 2014

High energy, strong community, scary cybersecurity situation

Cloud Security Priorities and Synergies with Enterprise Security

CISOs must prioritize identity, data security, and security monitoring, and strive for a “single-pane-of-glass” across enterprise IT, SaaS, PaaS, and IaaS

Cybersecurity Startup Gold Rush for Venture Capitalists

Lots of money, lots of opportunity, and lots of risk. VCs should abandon status quo investment strategies and look toward services, industry solutions, middleware, and data security

BYOA: Bring Your Own Authentication

Enterprises should prepare for, and take advantage of, the consumerization of authentication technology

Big data security analytics ‘plumbing’

Security analytics growth will drive growth in PCAP appliances, analytics distribution networks, SDN and middleware.

Threat intelligence lifecycle maturation in the enterprise market

A plethora of intelligence feeds are driving new products, services, and enterprise threat intelligence strategy.

The CISO-centric Information Security Triad

CISO responsibilities are expanding and must be supported with the right skill sets, technologies, and industry recognition.

Board of directors will have a profound impact on cybersecurity

High demand will drive new intelligence, services, tools and executive cybersecurity skill sets.

Big data security analytics mantra: Collect and analyze everything

Sampling security data is no longer adequate or necessary – CISO mindsets are due for a change.

End users must be part of cybersecurity solutions

It’s time to stop blaming employees and enlist their help.

Endpoint security demands organizational changes

Large organizations should delegate endpoint security to a group dedicated to malware prevention, detection, and response across all technology areas.

The two cornerstones of next-generation cybersecurity (Part 1)

Applications, endpoints, networks, and servers will enforce security policies related to identity and data security.

Big data security analytics can become the nexus of information security integration

Data feeds from all IT systems will finally produce an end-to-end view of enterprise security for risk management and incident detection/response.

Advanced prevention: Nothing new, just better

Enterprise organizations should selectively bolster defenses based upon threat intelligence and industry trends.

Enterprise security monitoring weaknesses telegraph lots of future cybersecurity opportunities

Large organizations need help monitoring user behavior activity, alternative endpoints, threat intelligence, and sensitive data.

Enterprise Organizations Are Taking Steps to Improve Cybersecurity Analytics

Is Cisco Back (as an enterprise security leader)?

Big Data Security Analytics Meets Identity and Access Management

The Emerging Cybersecurity Software Architecture

Microsoft’s Conundrum with XP and IE

Enterprises Need Outside-In Continuous Monitoring for Risk Management

The Future of Network Security in the Data Center – Flexible, Distributed, and Virtual

CISOs Must “Think Different”

My Two Cents: Security, Market Implications of the End of Windows XP

Managing IT Risk Associated with Mobile Computing Security

The new cybersecurity reality: The whole is greater than the sum of its parts

To Automate or Not to Automate (Incident Response): That Is the Question

Lessons Learned from the Target Breach

Congressional report points to people, process, and technology problems

Security vendors are racing toward a new antimalware technology model

If I were the next CEO of Symantec

Are Enterprise Organizations Ready to Use Free AV Software?

Has mobile computing had a positive impact on cybersecurity?

What CISOs can do about the cybersecurity skills shortage

Final thoughts on the RSA Conference

RSA Conference recap: Positive direction for security industry

“Cold” Topics at RSA that Should Receive More Attention

Hot Topics at the RSA Conference

Can the FIDO Alliance Help Obsolete User Name/Password Authentication?

Enterprise Security Professionals Identify Mobile Computing Security Challenges

More Bad News about the Cybersecurity Skills Shortage

Mobile Device Management (MDM) Deployment Remains Elementary and Immature

Security Professionals Identify IT Risks Associated with Cloud Computing

Why VMware bought AirWatch