Cloud Security

Analysing the software security practices of 130 organisations including Adobe, PayPal and Lenovo, Synopsys's Building Security in Maturity Model (BSIMM) report has found a nearly 50% surge in activities to secure open source software components and integrate security into developer toolchains; indicating greater initiative to tackle software supply chain security over the last 12 months. The findings highlight a significant increase in activities that indicate BSIMM member organizations are implementing a “shift everywhere” approach to...

As competition becomes fiercer, with technology being a primary tool for attaining competitive advantage, migrating to the cloud has become inevitable. Besides levelling the playfield, cloud technologies are a future-ready solution that makes running a business simpler and safer. Here, we look at five benefits of moving to the cloud. 1.   Improved security The cloud is designed for maximum data security, thanks to high levels of encryption and security layers that give it an edge...

With a greater reliance placed on data systems and networks to support the needs of a highly-evolved commercial system, cyber security is not everyone’s business no matter their sector. The following tips can help you increase your business’ vigilance and cybersecurity solutions in the face of cyber attacks.     1 – Understand that “You are a target to hackers”  It is no longer safe to assume that “this can’t happen to me.” Everyone is at...

Whether it’s Office 365, Salesforce, Slack, GitHub or Zoom, all SaaS apps include a host of security features designed to protect the business and its data. The job of ensuring that these apps’ security settings are properly configured falls on the security team. The challenge lies within how burdensome this responsibility is: Each app has tens or hundreds of security settings to configure. In addition, there is a continuous need for updates to the global...

One Identity, a leader in unified identity security, announced yesterday that its One Identity Partner Circle Program had achieved exceptional results during the recently ended fiscal year as evidenced by 80% of global company sales linked to the channel (fiscal year 2022 ended January 31). Other milestones include the addition of more than 600 new partners driven by the recent acquisition of OneLogin and the growth of new partner resources and training classes. For many...

Cloud security is the umbrella that holds within it: IaaS, PaaS and SaaS. Gartner created the SaaS Security Posture Management (SSPM) category for solutions that continuously assess security risk and manage the SaaS applications' security posture. With enterprises having 1,000 or more employees relying on dozens to hundreds of apps, the need for deep visibility and remediation for SaaS security settings is only getting more critical. The top pain points for SaaS security stem from:...

It’s unfortunate, but true: SaaS attacks continue to increase. You can’t get around it, COVID-19 accelerated the already exploding SaaS market and caused industries not planning on making a switch to embrace SaaS. With SaaS apps becoming the default system of record for organizations, it has left many struggling to secure their company’s SaaS estate. CISOs and security professionals work to limit this burgeoning threat landscape, however, it’s a work in progress.   One slight misconfiguration...

The IT Security Guru has teamed up with Synopsys, a recognised leader in application security, to bring you the webinar, 'Secure Your Cloud Environment from Evolving Threats'. As the migration to the cloud continues at an unabated pace, the threats in the cloud are also increasing proportionally and evolving constantly. Data breaches, misconfiguration risks, weak identity and access management controls, insider threats, multi-cloud infrastructure, and increasing complexity are just a few of the many challenges...

There is often confusion between Cloud Access Security Brokers (CASB) and SaaS Security Posture Management (SSPM) solutions, as both are designed to address security issues within SaaS applications. CASBs protect sensitive data by implementing multiple security policy enforcements to safeguard critical data. For identifying and classifying sensitive information, like Personally Identifiable Information (PII), Intellectual Property (IP), and business records, CASBs definitely help. However, as the number of SaaS apps increase, the amount of misconfigurations and...

Of the 73% of security professionals with responsibility for the security of public cloud who operate in a multi-cloud environment, 98% think these more complex environments pose greater security challenges, a survey conducted for Tripwire by Dimensional Research reveals.   Organizations have a wide range of reasons for going multi-cloud, including meeting varying business needs, running certain applications, distributing risk, taking advantage of cost savings, and to provide redundancy in the event of downtime. In the industrial space specifically,...