Computer security

GIAC Certifications Announces New Cloud Security Essentials Certification

Tuesday, April 13, 2021 - 5:16pm

As enterprise and governmental organizations move to cloud solutions for their business the need to hire and train cybersecurity professionals with specialized Cloud based skills becomes a key indicator for securing the business against threats.\nTeams responsible for transitioning systems to cloud based systems are often faced with the problem of finding the \'right\' people with the \'right\' skills to do the work these essential abilities include:\nEvaluation of cloud service provider similarities, differences, challenges, and opportunities\nThat\'s why SANS and GIAC take training and certifying the \'right\' people seriously especially as organizations, globally, tell us that it\'s important to them.\nGIAC\'s cloud security certifications are designed to help practitioners master the practical steps to defend the cloud against the most dangerous threats and GIAC\'s newest certification, GIAC Cloud Security Essentials (GCLD), is no exception.\nRyan Nicholson , SANS\' Cloud Security Essentials course author and instructor says,"The GCLD certification proves that the holder understands many of the security challenges brought forth when migrating systems and applications to cloud service provider environments.

Key Points: 
  • As enterprise and governmental organizations move to cloud solutions for their business the need to hire and train cybersecurity professionals with specialized Cloud based skills becomes a key indicator for securing the business against threats.\nTeams responsible for transitioning systems to cloud based systems are often faced with the problem of finding the \'right\' people with the \'right\' skills to do the work these essential abilities include:\nEvaluation of cloud service provider similarities, differences, challenges, and opportunities\nThat\'s why SANS and GIAC take training and certifying the \'right\' people seriously especially as organizations, globally, tell us that it\'s important to them.\nGIAC\'s cloud security certifications are designed to help practitioners master the practical steps to defend the cloud against the most dangerous threats and GIAC\'s newest certification, GIAC Cloud Security Essentials (GCLD), is no exception.\nRyan Nicholson , SANS\' Cloud Security Essentials course author and instructor says,"The GCLD certification proves that the holder understands many of the security challenges brought forth when migrating systems and applications to cloud service provider environments.
  • "\nAs the premier cloud security certification, GCLD isrecommended for security engineers and analysts, system administrators, managers and auditors, as well as anyone new to the cloud, toprove that they have applied knowledge of cloud security techniques.\nConfirm your dedication to securing the cloud - and secure your place in the cybersecurity workforce - by getting GCLD certified today.\nExplore Cloud Certifications offered by GIAC: https://www.giac.org/gcld\nGIAC Certifications is a cyber security certification body featuring over 35 hands-on, technical certifications in information security.
  • GIAC certifications are accredited under the IEC/ISO/ANSI 17024 quality standard for certifying bodies.
  • GIAC, an affiliate of the SANS Institute, validates employee qualifications via 35 hands-on, technical certifications in information security .\nSANS is the most trusted and the largest provider of training and certification to professionals at governments and commercial institutions worldwide.

Cybercrime And National Security Prosecutor Shoba Pillay Joins Jenner & Block In Chicago

Tuesday, April 13, 2021 - 3:05pm

"Her expertise also broadens our growing cybersecurity and national security teams, as we offer an increasingly robust suite of services to clients.

Key Points: 
  • "Her expertise also broadens our growing cybersecurity and national security teams, as we offer an increasingly robust suite of services to clients.
  • "\nWhile serving in the US Attorney\'s Office\'s National Security and Cybercrime Section, Ms. Pillay led complex investigations and prosecutions involving export control issues and international sanctions violations.
  • "As well asbeing an accomplished and well-respected prosecutor, Shoba shares our values of collaboration, diversity and inclusion, service to the bar, andmentorship."\nMs.
  • Organizations turn to Jenner & Block for counseling on a variety of privacy and data security issues.

Recorded Future Strengthens Threat Intelligence and SecOps Intelligence Markets as the Only Provider of Automated, Verified, and High-Confidence Indicators

Tuesday, April 13, 2021 - 3:00pm

Evidence provided to security teams includes internet traffic between hosts including botnets, malware distribution, DDoS, scanning, C2 infrastructure, and data exfiltration.

Key Points: 
  • Evidence provided to security teams includes internet traffic between hosts including botnets, malware distribution, DDoS, scanning, C2 infrastructure, and data exfiltration.
  • Recorded Future has ingested, analyzed, and produced this intelligence for over a decade, offering clients actionable data and context to otherwise unknown threats."
  • Craig Adams, Chief of Product & Engineering, Recorded Future\nRecorded Future is the world\'s largest provider of intelligence for enterprise security.
  • By combining persistent and pervasive automated data collection and analytics with human analysis, Recorded Future delivers intelligence that is timely, accurate, and actionable.

LexisNexis Risk Solutions Receives Top Honors at the 2021 Cybersecurity Excellence Awards

Tuesday, April 13, 2021 - 3:00pm

b'ATLANTA, April 13, 2021 /PRNewswire/ -- LexisNexis Risk Solutions announced that it won three categories in the 2021 Cybersecurity Excellence Awards.

Key Points: 
  • b'ATLANTA, April 13, 2021 /PRNewswire/ -- LexisNexis Risk Solutions announced that it won three categories in the 2021 Cybersecurity Excellence Awards.
  • LexisNexis ThreatMetrix is the Gold winner for two categories: Cybersecurity Industry Solution - Financial Services and Cybersecurity Product - Fraud Prevention.
  • Kimberly Sutherland, vice president of fraud and identity strategy at LexisNexis Risk Solutions, was named Cybersecurity Woman of the Year.\nThe 2021 Cybersecurity Excellence Awards recognize companies, products and professionals that demonstrate excellence, innovation and leadership in information security.
  • "\nLexisNexis Risk Solutions harnesses the power of data and advanced analytics to provide insights that help businesses and governmental entities reduce risk and improve decisions to benefit people around the globe.

New Infosec IQ Cybersecurity Culture Survey Quantifies Security Beliefs, Sentiments

Tuesday, April 13, 2021 - 2:55pm

The new Infosec IQ Cybersecurity Culture Survey introduces an actionable, scalable way to analyze and measure employee attitudes and perceptions towards security practices, policies and training strategies across five cultural domains.\n"Few metrics offer better insight into the effectiveness of your security awareness training program than your cybersecurity culture," said Jack Koziol, Infosec CEO and founder.

Key Points: 
  • The new Infosec IQ Cybersecurity Culture Survey introduces an actionable, scalable way to analyze and measure employee attitudes and perceptions towards security practices, policies and training strategies across five cultural domains.\n"Few metrics offer better insight into the effectiveness of your security awareness training program than your cybersecurity culture," said Jack Koziol, Infosec CEO and founder.
  • The new Infosec IQ Cybersecurity Culture Survey leverages the latest research into security culture assessment to help our clients show the impact of training beyond measurements like phishing click rates and training completion.
  • "\nThe Infosec IQ Cybersecurity Culture Survey helps security awareness managers evolve program goals and success metrics to align with recommendations from leading research firms like Forrester.
  • "1\nInfosec IQ program managers can administer the Cybersecurity Culture Survey as needed and use results to guide changes to cybersecurity policies, practices or training strategies.

Invicti Security Reports on Lost Year in Web Application Security

Tuesday, April 13, 2021 - 2:32pm

b'AUSTIN, Texas, April 13, 2021 /PRNewswire/ -- Invicti Security, a global leader in web application security, today released the spring volume of its Invicti AppSec Indicator Report , which examines the prevalence of web vulnerabilities across more than 3,500 targets in every industry and more than 100 countries.

Key Points: 
  • b'AUSTIN, Texas, April 13, 2021 /PRNewswire/ -- Invicti Security, a global leader in web application security, today released the spring volume of its Invicti AppSec Indicator Report , which examines the prevalence of web vulnerabilities across more than 3,500 targets in every industry and more than 100 countries.
  • If that trend had continued, the overall incidence of high-severity vulnerabilities would have decreased from 26% to about 20%.
  • Recent research indicates that the largest percentage of breaches in 2020 began with a web application, yet at the same time, the number and severity of a variety of other types of attacks reached new highs in 2020, diverting the time and resources of security organizations away from web application security.\n"It\'s very troubling to see this loss of momentum due to reduced attention to web application security," said Invicti president and COO Mark Ralls.
  • "As we look ahead, we hope to see organizations adopt best practices and invest in security, so that they can continue to advance their web security posture, protect their customers, and avoid being the next big security breach headline.

Skybox Security Delivers Industry's Most Advanced Exposure Analysis

Tuesday, April 13, 2021 - 2:04pm

Our latest release includes advanced analytics, optimized attack simulation, and increased dashboard customization all of which increase the speed and accuracy of exposure analysis to improve overall security efficacy.\nSkybox evolved its platform to support customers contending with expediated digital transformation initiatives such as cloud migration and IT/OT convergence.

Key Points: 
  • Our latest release includes advanced analytics, optimized attack simulation, and increased dashboard customization all of which increase the speed and accuracy of exposure analysis to improve overall security efficacy.\nSkybox evolved its platform to support customers contending with expediated digital transformation initiatives such as cloud migration and IT/OT convergence.
  • Skybox continues to grow its comprehensive list of 150+ technology partnerships with new connectors that combine rich data from leading SD-WAN and SASE vendors such as Versa Networks and Zscaler.
  • Customers with highly complex network models will significantly benefit from these performance enhancements.\n"Digital transformation demands a new approach to security posture management," said Haggai Polak, chief product officer, Skybox Security.
  • "Through automating data collection, correlation and analysis, security and IT teams can together leverage a multidimensional dynamic network model to understand risk levels, simulate attacks, and remediate vulnerabilities where it\'s needed most.

Avast Joins Microsoft MISA

Tuesday, April 13, 2021 - 2:00pm

b'LONDON and EMERYVILLE, Calif., April 13, 2021 /PRNewswire/ -- Avast (LSE:AVST), a global leader in digital security and privacy, today announced that it has joined the Microsoft Intelligent Security Association (MISA).

Key Points: 
  • b'LONDON and EMERYVILLE, Calif., April 13, 2021 /PRNewswire/ -- Avast (LSE:AVST), a global leader in digital security and privacy, today announced that it has joined the Microsoft Intelligent Security Association (MISA).
  • Joining MISA recognizes the importance and collaboration of Avast and Microsoft working together to better serve Windows users and businesses," said Nick Viney, senior vice president, Partner Business, Avast.
  • With over 435 million users online, Avast offers products under the Avast and AVG brands that protect people from threats on the internet and the evolving IoT threat landscape.
  • Visit: www.avast.com .\nKeep in touch with Avast:\nFor security and privacy insights, visit the Avast blog: https://blog.avast.com/\nView original content to download multimedia: http://www.prnewswire.com/news-releases/avast-joins-microsoft-misa-30126...\n'

Former Defense Intelligence Agency CISO Joins Corelight as Federal CTO

Tuesday, April 13, 2021 - 2:00pm

She began serving as an advisor to Corelight in 2020 and now joins the Corelight executive team in her first full-time private sector role, reporting to Corelight Co-founder and Chief Strategy Officer Greg Bell.\n"Jean\'s resume is truly astounding.

Key Points: 
  • She began serving as an advisor to Corelight in 2020 and now joins the Corelight executive team in her first full-time private sector role, reporting to Corelight Co-founder and Chief Strategy Officer Greg Bell.\n"Jean\'s resume is truly astounding.
  • She brings a rare combination of operational experience at scale, fluency with federal programs and policies, and strategic acumen," said Bell.
  • "\nSchaffer\'s career also spans three decades at the National Security Agency (NSA), holding numerous senior executive roles in cybersecurity and signals intelligence.
  • Based in San Francisco, Corelight is an open-core security company founded by the creators of Zeek, the widely-used network security technology.

WhiteSource Releases Priority Score To Accelerate Application Security at Scale

Tuesday, April 13, 2021 - 2:00pm

Based on users\' preconfiguration, a priority score between 0 and 100 is then attributed to entities within their system per library or vulnerability.

Key Points: 
  • Based on users\' preconfiguration, a priority score between 0 and 100 is then attributed to entities within their system per library or vulnerability.
  • Software development and application security teams are increasingly relying on vulnerability detection tools throughout the development process.
  • "When a specific application provides access to financial data, or Personally Identifiable Information its security is considered a higher priority to handle.
  • The WhiteSource Priority Scoring lets organizations put their DevSecOps on autopilot, and accelerate software product delivery at scale.