Security

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Six Ways to Improve Your Security Posture Using Critical Security Controls

Dec 3, 2018 By SolarWinds In SolarWinds

Security policies within organizations are under a lot of scrutiny in today's times. Trying to stay up to date with these policies can create stress to users and the IT staff managing the infrastructure. Just like network standardization is a must, so is security standardization.

View Video

SolarWinds

Read more about Six Ways to Improve Your Security Posture Using Critical Security Controls

Using Terraform for container security as code with Sysdig Secure

Dec 2, 2018 By Jorge Salamero Sanz In Sysdig

In the following tutorial you can learn how to implement container security as code. You probably have a CI/CD pipeline to automatically rebuild your container images. What if you could define your container security as code, push it into a Git repository to version control changes and then enforce your policy in your container orchestration tool like Docker or Kubernetes using Sysdig Secure?

Read Post

Sysdig

Read more about Using Terraform for container security as code with Sysdig Secure

All the Security and Compliance Features Announced at AWS Re:Invent 2018

Dec 2, 2018 By CloudSploit In CloudSploit

Yet another Re:Invent has concluded, leaving behind a trail of announcements, new features, and vendor swag (how many T-shirts can we possibly own?). Security was a hot topic at this year’s conference; so much so that it was mentioned in-depth within the first 10 minutes of Andy Jassy’s keynote and numerous times afterwards, as well as during Werner Vogel’s keynote the following day.

Read Post

CloudSploit

Read more about All the Security and Compliance Features Announced at AWS Re:Invent 2018

Policy-driven Secure Application Connectivity for OpenShift

Dec 1, 2018 By Tigera

OpenShift provides a declarative, automated platform to integrate developer workflows into application deployments leveraging open source building blocks such as Kubernetes.

Get White Paper

Tigera

Read more about Policy-driven Secure Application Connectivity for OpenShift

What GDPR Means for Log Management

Dec 1, 2018 By Graylog

The previous data protection directive passed long before the Internet became the primary marketplace for businesses. In light of recent data and privacy issues, consumers demand higher standards for more security.

Get White Paper

Graylog

Read more about What GDPR Means for Log Management

CFEngine 3.12.1 LTS Released

Nov 30, 2018 By Nils Christian Roscher-Nielsen In CFEngine

CFEngine 3.12.1 LTS has now been released. This release brings many stability and performance improvements to the 3.12 LTS series. It is a stable and well-tested version of CFEngine. We wish to extend a big thanks to the ecosystem that helps make CFEngine great by reporting bugs, contributing fixes and suggesting new and improved functionality. Without you, CFEngine would not be the powerful, high performance, widely used product we all appreciate today!

Read Post

CFEngine

Read more about CFEngine 3.12.1 LTS Released

SaaS Security: Securing Zenoss in a SaaS World

Nov 29, 2018 By Anirban Chatterjee In Zenoss

As enterprise IT organizations evaluate cloud-based services, security can be a primary concern — both in terms of the security of the customer data associated with the application as well as the potential for breaches of the customer’s IT environment. Zenoss takes a comprehensive approach to SaaS security, addressing it from both a product and process perspective, to ensure the integrity of monitoring operations.

Read Post

Zenoss

Read more about SaaS Security: Securing Zenoss in a SaaS World

The Gospel of DevSecOps: Partnering to Love Thy Customer

Nov 28, 2018 By Dave Cliffe In PagerDuty

Raise your hand if you’re a believer in DevOps—thank you, I see that hand. As a former organizer of devopsdays Toronto (2014 – 2016), you could say that I drank the Kool-Aid early on. But thanks to the outstanding research of the DevOps Research Association (DORA) and numerous State of DevOps reports before it, DevOps culture is much less of a religious battle than it has been in the past.

Read Post

PagerDuty

Read more about The Gospel of DevSecOps: Partnering to Love Thy Customer

One Planet York: Data Breach Update

Nov 27, 2018 By Gav Winter In RapidSpike

RapidSpike would like to make a statement about how one of our developers assisted the City of York Council with a potential data breach on their One Planet York mobile app in early November.

Read Post

RapidSpike

Read more about One Planet York: Data Breach Update

Conquer it with correlation-Part 1: The advanced persistent threat (APT)

Nov 26, 2018 By Log360 In ManageEngine

Among all the pesky attacks that keep security administrators working late, advanced persistent threats (APTs) are possibly the most lethal. An APT is a long-term, targeted attack which involves stealthily spying on an organization’s network activity or siphoning off sensitive data, as opposed to openly damaging or locking down network resources.

Read Post