- Training What is a Cybersecurity Expert?
Three types of security experts: specialists with superior performance in domains like forensics or network defense, generalists with extensive business understanding, and architects who piece...
- Incident Response Incorporating Mobile Devices into Enterprise Security
Enterprise security hasn't kept up with consumerization—powerful mobile devices often have VPN access and email but lack mature OS security controls. Organizations need greater network segmentation,...
- Product Management Cloud Makes Security More Affordable for Smaller Companies
When this article was first written, cloud adoption was still emerging. The thesis that cloud's pay-per-use billing model would make enterprise security affordable for SMBs has been thoroughly...
- Networking Pros and Cons of Virtual Patching to Address Vulnerabilities
Virtual patching blocks attack vectors exploiting vulnerabilities using IPS, WAF, or database security tools—buying time to develop proper fixes. The danger is complacency: organizations with virtual...
- Social Networking Etiquette Tips for Social Receptions at Conferences
Social receptions at conferences allow community members to forge professional connections. Tips include joining conversations in progress, introducing yourself even if you've met before, wearing...
- Web Security Researching Malicious Websites: A Few Tips
Malicious sites evade researchers by checking User-Agent and Referer headers, computing redirects via JavaScript, using nonces, and denylisting IPs. Bypass these defenses by faking browser headers,...