Collaborate Disseminate
One of the most discussed concepts in the Information Security world in recent history has been Zero Trust. Although many vendors claim to have products for implementing Zero Trust, an organization must not view them as an instant solution to achieving Zero Trust. Zero Trust should be viewed as a philosophy comprised of many controls…
The post The First Steps on the Zero Trust Journey appeared first on TrustedSec.
Bottom Line Up Front Common threats like malware, ransomware, web application hacking, insider and privilege misuse, and targeted intrusions don’t have to spell disaster. Mid-market companies and small-to-medium businesses (SMBs) can cut through the confusion of how to build a solid security program. Our Information Security Accelerator service is designed to help your organization chart…
The post Building a Strong Foundation With the Information Security Accelerator appeared first on TrustedSec.
Continue reading Building a Strong Foundation With the Information Security Accelerator
Insecure By Default Mobile application assessments diverge somewhat from normal web application assessments as there is an installed client application on a local device to go along with the backend server. Mobile applications can often work offline, and thus have a local store of data. This is commonly in the form of SQLite databases stored…
The post Looting iOS App’s Cache.db appeared first on TrustedSec.
Our goal in building a security awareness program is to embed security into our partners’ existing organizational culture. Impacting culture is a long-term process that can take years and requires executive support. If you are tasked with managing a security awareness program, it is your job to measure and show leadership that your program is…
The post Measuring the Impact of a Security Awareness Program appeared first on TrustedSec.
Continue reading Measuring the Impact of a Security Awareness Program
Summary Basic SIEM requirements should be in place to create mature detections for a variety of log sources, including network logs, system logs, and application logs (including custom applications). This focuses on Security Operations and does not include the engineering side of SIEM management, e.g., licensing, hardware/cloud requirements, retention needs, etc. Each component of the…
The post Detection and Alerting: Selecting a SIEM appeared first on TrustedSec.
Reporting is an essential piece of the penetration testing puzzle. It’s the product your client will be reviewing within their organization, representing you and your company to those you may not have worked with directly. With that in mind, it’s important that your product, the report, strikes a balance between professional tone and cold facts….
The post An Update On Non-Aggressive Reporting appeared first on TrustedSec.
Azure brings a lot of new tools and capabilities to the IT and Information Security toolbox. In fact, there are so many features that it can be overwhelming and difficult to understand when or how to use them. I believe that the revamp of Desired State Configuration (DSC) within Azure is one of these overlooked…
The post Azure Automation – Getting Started With Desired State Configurations appeared first on TrustedSec.
Continue reading Azure Automation – Getting Started With Desired State Configurations
Remote workers are set up, but endpoint management is still an issue Setting up a remote workforce during the COVID-19 pandemic presented a huge challenge, especially trying to get so much done in such a short time frame. While getting extra Zoom licenses was likely pretty easy, there are more challenging issues surrounding remote sharing…
The post Using Azure to Address Endpoint Hygiene Management appeared first on TrustedSec.
Continue reading Using Azure to Address Endpoint Hygiene Management
An organization’s overall security posture can be viewed from multiple different angles, such as technical assessments, program assessments, controls assessments, and risk assessments. A number of different frameworks for each of these assessment types exist, intended to help both technical teams as well as leadership organize security program building activities. Some of these include: Penetration…
The post Using Effectiveness Assessments to Identify Quick Wins appeared first on TrustedSec.
Continue reading Using Effectiveness Assessments to Identify Quick Wins
Logging, monitoring, and alerting programs are some of the most critical elements of any security and compliance program, but traditional approaches for implementing and upgrading these capabilities are often noisy, expensive, and laborious. Traditional Alerting Approaches are Failing During program assessments, we find that a lot of clients are generating so many alerts that they…
The post Want Better Alerting? Consider Your Business Processes appeared first on TrustedSec.
Continue reading Want Better Alerting? Consider Your Business Processes