Why Did Snowflake Have a Target on It? Handling Data Warehouse Security Risks
In early June, the Ticketmaster breach brought widespread attention to the fact that Snowflake accounts did not require multi-factor authentication…
Uncategorized
How a CISO Should Brief the Board of Directors
It’s often assumed that if the board knew exactly what they wanted to hear from the CISO, they would simply…
The 6 CCSP Domains Explained
The CCSP (Certified Cloud Security Professional) certification was launched in April 2015 and last updated in August 2022. (ISC)² developed…
RCE Flaw Exposes 22,000 CyberPanel Instances to PSAUX Ransomware
Hackers exploited an RCE flaw to target over 22,000 CyberPanel servers with PSAUX ransomware. Nearly all CyberPanel instances went offline…
NIST Wins Multiple CyberScoop 50 Awards
NIST’s Cherilyn Pascoe and Ron Ross, as well as the Post Quantum Cryptography Standards project team have been selected as…
Building Resilience: A Post-Breach Security Strategy for Any Organization
In the wake of a recent breach that compromised sensitive information, a healthcare organization sought my guidance on how to…
How a CISO Should Brief the Board of Directors
It’s often assumed that if the board knew exactly what they wanted to hear from the CISO, they would simply…
Detection Engineering in Post SIEM and SOAR World
A few years back, my security team was tasked to create and maintain a green field environment for FEDRAMP compliance.…
Reducing SaaS Security Risks in 2024
In recent years, digital transformation has accelerated as companies adopt powerful SaaS tools and adapt to remote work. SaaS applications…
Innovator Spotlight: Cloud Range
by Dan K. Anderson CEO, CISO, and vCISO The cybersecurity landscape is rapidly evolving, and so are the tactics of…