Where Are You in Your GDPR Journey?
At first glance, it may seem strange to be asking you where you are in your GDPR journey when enforcement for the regulation begins on May 25 — which is now less than 60 days away. After all, GDPR was approved way back in April 2016, and here at IBM we’ve been talking and blogging…
It’s Time to Bring Cloud Environments Out of the Shadows
The speed and scale of cloud computing has provided companies around the globe with more flexibility, lower overhead costs and quicker time to value for a wide variety of applications. While the business value of cloud adoption is undebatable, this rapid transition can leave security teams in the dark and sensitive information exposed.
Facebook Rolls Out ‘Data Abuse Bounty’ Program
The social media giant also got hit with a lawsuit the day before unveiling its new reward program. All eyes are on Facebook as the company wades its way through a sticky controversy centered on users’ privacy. As CEO Mark Zuckerberg testified before Congress this week regarding the Cambridge Analytica scandal, the social media giant…
Strengthening Cybersecurity’s Weakest Links With Deep Network Insights
Like a chain forged of steel, cybersecurity is only as strong as its weakest link. But how can we gain visibility into where these weaknesses exist and how they are being exploited? How can we determine where gaps occur that impact our ability to protect against, detect and respond to the latest threats? Studies have…
In Plain Sight: Why Military Veterans Are a Great Fit for Cybersecurity Careers
Cybersecurity is a major concern for businesses worldwide. Just look at the results from “The Third Annual Study on the Cyber Resilient Organization” by IBM and the Ponemon Institute: The 2018 study found 65 percent of security professionals believe the severity of cyber attacks has increased, and only 29 percent have sufficient staffing to achieve…
March’s Top Cybersecurity News Stories: Responding to Attacks, Women in Security and a New Community for Security Pros
Despite Growing Threats, Many Organizations Still Unprepared The vast majority of organizations still lack a formal cybersecurity incident response plan (CSIRP) that’s applied consistently across the organization, according to a new report from the Ponemon Institute. Paradoxically, the institute’s third annual study on cyber resilience found that organizations feel much more positive about their readiness than they did last…
Industry leaders struggle to balance digital innovation and security
Companies are struggling with the tug-of-war between advancing digital innovation and ensuring secure digital experiences that maintain user trust and mitigate risk. As part of a study of more than 350 global information technology leaders conducted by Forrester Consulting for Akamai, the results also show that the companies defined as being the most digitally mature – best balancing innovation and security…
The best cybersecurity analysts should play the part of detective
With an ever-growing threat from cyber attacks, we now live in a world where security operation centers (SOC) are the norm. These typically feature a number of cybersecurity analysts watching screens for alerts, and then following a play book for any alerts that occur. When done well, these operations will usually identify and remediate common…
New Bill in Georgia Could Criminalize Security Research
A new bill passed by the Georgia State Senate last week deems all forms of unauthorized computer access as illegal, thus potentially criminalizing the finding and reporting of security vulnerabilities. The new bill, which met fierce opposition from the cybersecurity community ever since it first became public, amends the Georgia code that originally considered only…
Know Your Security X’s and O’s: Your Cyberdefense Team Is Only as Good as Its Threat Intelligence
All of us in the security industry realize that we face a virtually insurmountable task to ensure that the data belonging to our organizations and customers is kept safe and secure. If you step back and think about it, the list of potential perpetrators is daunting in scope. It includes cybercriminals, hacktivists, foreign governments, and…