In today’s high-pressure, ultra-competitive business environment, organizations are demanding smarter, more mobile ways of working. Gone are the days of monolithic Windows desktop environments where costs were predictable and securing corporate data relatively straightforward. But these demands have brought with them a whole new set of challenges for IT departments tasked with delivering end-user computing…
Read MoreIn San Francisco last week, AWS opened their summit series for 2014. 5000+ people packed into the Moscone Center, and there was a ton of energy in the air. I was fortunate enough to have the opportunity to attend and to speak. I presented, “Updating Security Operations for the Cloud,” which is the talk I’ve…
Read MoreAlmost every organization is using cloud computing in some way today, eager to cut costs, improve IT efficiency, and make their business more agile. Many organizations have started their journey by hosting their Web sites in the cloud, hoping to take advantage of the proven scalability and test performance before making a bigger shift. The…
Read MoreMy last few posts have looked at the impact you can expect hybrid and full cloud environments to have on your security practice. I’ve called out incident response, monitoring, and forensics as areas that can benefit from the flexibility provided by cloud environments. But what about the big picture? How do these areas come together…
Read MoreCitrix has just announced the latest update to their cloud orchestration and management platform, CloudPlatform 4.3, helping Citrix customers to easily build scaleable private, public and hybrid cloud environments. Following this release, Trend Micro will begin the external beta program for the latest version of Deep Security, 9.5, which provides the highest levels of security for…
Read MoreI’ve written about how monitoring and incident response change in hybrid and full cloud environments as part of this series on operations. This post is going to touch on the changes facing forensics in cloud environments. Define:Forensics Before we dive in, I wanted to highlight that there are two definitions of “forensics” in use today….
Read MoreLately, I’ve been looking at our approach to updating security operations to deal with the realities of hybrid and full cloud environments. If you’ve missed the series so far, I’d recommend reading the first and second posts now. This post is going to highlight a few of the challenges that your network security monitoring practice…
Read MoreIn my last post, I highlighted the lack of sharing in the information security community around best practices and discussed the ups and downs of operating security in hybrid and full cloud environments. I wrapped that post up with a call to arms of sorts but also a promise to help kick things off. Incident…
Read MoreMore and more companies are deploying production workloads to the cloud (in all of its definitions), and that’s a very good thing. Unfortunately, this shift has highlighted an area where we–the information security community–are a little weak. That weakness is in sharing best practices and discussing the ups and downs of operating security in hybrid…
Read MoreFebruary is a month when love is in the air. When Valentines sweethearts woo each other with gigantic bouquets and luxurious chocolates. It’s also the month that our VP of Technology and Solutions JD Sherry warned attendees of RSA Conference 2014 of a different kind of romance at work in cyber space, in his presentation,…
Read More