The Cloud Makes Privacy and GDPR Easier, Not Harder
62% of information security professionals surveyed believe privacy concerns have not stopped or slowed down adoption of cloud services,
Tag: Information security
CrowdStrike and the Nation-State Threat to Cybersecurity: Facts vs. Hype
Nation-state sponsored cyberattacks are far more common than most people think, according to a recently-released report commissioned by CrowdStrike. The stats are attention-grabbing and so is the study’s sponsor. Overall, nation-states are threats, but CrowdStrike is overstating the threat.
Integrating Security into Build Processes Signals DevSecOps Tipping Point
The nearly 3,000 technical professionals and executives surveyed for the “2019 State of DevOps Report” believe these steps positively impact a company’s security posture. Yet, adding “security” to testing and deployment also increases friction between security and developer teams.
Organizations Running on More Clouds Less Likely to See Security Threats
Several approaches aim to address the complexity of managing the security of multiple cloud environments, but one metric actually shows security improvement for organizations with more cloud providers.
Capital One’s Cloud Misconfiguration Woes Have Been an Industry-Wide Fear
Misconfigurations have long been the top cloud security concern. A new StackRox survey of IT decision-makers supports this finding.
Monitoring Concerns Hamper Hybrid, Multicloud Deployments
Misconfiguration of the cloud platform is cited most often as the biggest security threat in public clouds,
Security Integration Throughout Software Development Lifecycle Is a Pipe Dream
Risk and vulnerability management is the top reason to implement security throughout the software development lifecycle (SDLC), but the second most common reason is improving code quality according to the DevSecOps Community Survey 2019. However, this does not appear to be enough motivation to integrate security automation into the development process.
Open Source Maintainers Want to Reduce Application Security Risk
Just because they care about security does not mean developers have the time or ability to address all your infosec vulnerabilities.
Information Security Spending: Don’t Be Fooled by Overconfidence
Spending on information security continues to increase, but those gains may decelerate as companies become more confident in their security posture. Maybe too confident. Although many reports show that cybersecurity is a top driver of technology spending, Scale Venture Partners’ recent survey of 300 executives […]
Insights from 68 People Who Care About AWS Container Security
In late 2019, Amazon Web Services’ Developer Advocate Michael Hausenblas surveyed 68 people who use containers on AWS. The publicly available results provide several anecdotal clues about adoption patterns among customers of the world’s largest cloud provider.
Security Worries Rise as Container Adoption Increases
Infosec pros were often not consulted before container adoption occurred. Furthermore, over 40 percent of companies have delayed or limited container adoption because of security concerns.
Topics for CEO, CIO and CISO Conversations
Are you ready for your next elevator conversation about information security? I worked with Argyle Executive Forum to create a short survey about the security-related topics your corporate board, fellow CIOs or CISOs are facing. Your responses will inform the discussions at CIO and CISO […]