Security Archives

Hot Topics

The Cloud Has Evolved. Are Your Security Tools Keeping Pace?

by Charlene O’Hanlon on November 11, 2020

Organizations that purchased early cloud security products are finding that those tools are not able to keep up with dynamic environments ruled by APIs and microservices in dynamic containerized environments, not to mention server instances that are constantly scaling up and down. The future of cloud security demands an automated approach, rather than one that..
Read more

Cisco Tetration: Securing All Phases of the Hybrid Cloud Journey

by Charlene O’Hanlon on October 13, 2020

Tetration is a solution that offers many unique capabilities that are particularly well suited to help enterprises at all phases of hybrid cloud transformation, regardless of whether that journey is just beginning with a few virtual workloads or a small public cloud deployment or encompasses a vast, global data center environment. It provides full-stack visibility..
Read more

Enterprise SSL Solutions: A Buyers Guide

by Charlene O’Hanlon on October 5, 2020

Having SSL certificates, or what are now officially known as TLS certificates, has always been a requirement for corporate IT organizations. Certificates encrypt data as it is being transferred between servers and web-facing browsers as well as protect data as it moves between servers. Certificates also play a critical role in making sure that only..
Read more

How the New COVID-19 Normal Will Accelerate the Shift from Tokens to Digital Certificates

by Charlene O’Hanlon on October 5, 2020

Among the most common methods employed to verify identity are hard and soft tokens. Hard tokens most often take the form of a USB “dongle” or a magnetic swipe card embedded in a badge used to access everything from a local office to a data center containing millions of dollars of IT equipment. Soft tokens..
Read more

Managing the AppSec Toolstack

by Charlene O’Hanlon on September 21, 2020

The best cybersecurity defense is always applied in layers—if one line of defense fails, the next should be able to thwart an attack, and so on. Now that DevOps teams are taking more responsibility for application security by embracing DevSecOps processes, that same philosophy applies to security controls. The challenge many organizations are facing now..
Read more

Candid Cliff Notes: How to Select the Right Pentest

by Charlene O’Hanlon on September 10, 2020

In today’s IT environment, one of the biggest risks to a corporation’s valuation is a security breach. But how does a security team apply their budget in a way that ensures the applications, websites, and other assets are secure? Security Vendors make wide claims about the effectiveness of their products—making it almost impossible to identify..
Read more

From Monolithic to Modern: The Imperative for Flexible Web App and API Protection Everywhere

by Charlene O’Hanlon on September 9, 2020

Seismic shifts in software development are driving the need for a new breed of flexible security solutions. Legacy web application firewalls (WAF) predate the growth of cloud-native apps and daily release cycles. Modern applications require scalable security, meaning effective defenses that operate where applications are deployed. A comprehensive web app and API protection (WAAP) platform..
Read more

Pentest as a Service Impact Report 2020

by Charlene O’Hanlon on August 27, 2020

The goal of this study by Rain Capital’s Dr. Chenxi Wang is to understand the specific benefits and challenges of deploying a Pentest as a Service (PtaaS) solution in a modern software development environment, as well as to compare the SaaS model with traditional, legacy pentest services. The report also examines the impact of DevOps on the adoption..
Read more

A Comprehensive Guide to Building a Pentest Program

by Charlene O’Hanlon on August 27, 2020

This guide outlines the best way to build a formal pentesting program to ensure continuous security coverage, using a Pentest as a Service (PtaaS) approach. By planning these programs annually, security leaders can ensure full coverage of assets and identify the depth of coverage needed for each.
Read more

Tackling the 3 Biggest API Security Challenges in Real-World Deployments

by Charlene O’Hanlon on August 26, 2020

In today’s world of digital transformation and DevOps growth, APIs have become increasingly important to innovation and business agility. They also stand at the nexus of many new security threats. The good news is that organizations are growing increasingly aware about the dangers of API threats and are taking action to close security gaps. However,..
Read more