Security Operations Arming Managed Security Service Providers for the Next Wave of Security Outsourcing April 26, 2017 by arpit The Rise of the Managed Security Service Providers Over the last few years I have been a keen observer of an interesting and unfolding trend: Thanks to the high-profile cyber attacks that constantly fill the news, businesses have become increasingly aware of their security needs. Some businesses have the funds and organizational focus to pour […] Read more »
Cybersecurity Training Discover Secret MSSP Revenue Growth Weapon April 20, 2017 by arpit There is no escaping the skills shortage facing the cyber security industry. The lack of talented security professionals has been dissected to the point where it’s almost a bit of a cliche by now. And we have all heard the gloomy statistics: By 2020, there will be over 1.5 million unfilled cybersecurity positions; Cyber Security […] Read more » Cyber Simulation MSSP business MSSP growth MSSP Revenue Growth
OT Security SCADA MODBUS Protocol Vulnerabilities April 13, 2017 by arpit Supervisory Controls and Data Acquisition (SCADA) protocols are communications protocols designed for the exchange of control messages on industrial networks. Over the past three decades, several hundred of these protocols have been developed for serial, LAN, and WAN-based communications in a wide variety of industries including petrochemical, automotive, transportation, and electrical generation/distribution. SCADA MODBUS is […] Read more » MODBUS Protocol vulnerabilities SCADA
Cybersecurity Training 1 trick to keep top security analysts from quitting April 5, 2017 by arpit Finding and hiring talented cyber security analysts is difficult enough, but once talent is hired, trained and deeply familiar with your organization’s architecture, tools and security operations the real challenge begins – keeping them from quitting. Top cyber security pros are a hot commodity and they know it. According to the ESG and ISSA State of […] Read more » Cyber Simulation Cyber Training skill shortage
Cybersecurity Training Get Cyber Security Awareness Right in 2017 March 15, 2017 by arpit Everyone will be a cyber security expert As enterprises have shifted from centralized control to more open, enabled modes of business, in which every member of the organization has wide access to networks, so has the responsibility for network security. The strong centralized control benefited security but restricted the ability to do business. Today, technology […] Read more » Cyber Security Awareness security training
OT Security SCADA Security Starts with Visibility March 9, 2017 by arpit Critical infrastructures such as power, oil and gas, water treatment systems and transportation are vital to national survival. Any interruption can put lives at risk. Though ample precautions are taken to secure physical facilities and separate operational networks from IT networks, the majority of ICS/SCADA networks remain vulnerable. Improving SCADA security is a top priority […] Read more » SCADA visibility
Endpoint Security Malware Terms for Non-techies: What is DLL Hijacking? February 13, 2017 by arpit In this next installment of our Malware Terms for Non-Techies series, we’re unraveling a term you have probably come across: DLL hijacking. This method has been a key player in some recent pervasive attacks. Actually, DLL hijacking has been in use for years, causing loss of data in Windows OSs since the early 2000’s. Dynamic […] Read more » DLL Hijacking Windows 10 OS
OT Security Protecting Industrial Control Networks – It’s Not Just About SCADA Security February 10, 2017 by arpit Industrial Control Networks: a Hybrid of OT and IT When we think about protecting critical infrastructure operational technology (OT) networks, the common perception is that it’s all about SCADA security. But that is not even half of the story. Almost all Industrial Control Systems (ICS), in critical national infrastructures as well as in much smaller […] Read more » Industrial Control Networks OT SCADA Security
Cybersecurity Training Security Operations The Financial SOC – Addressing the Talent Gap January 29, 2017 by arpit Finding and retaining talented cyber security professionals, once an afterthought on the IT department’s checklist, has become a critical and seemingly impossible task to fulfill, especially in the financial SOC. According to a recent study by Cybersecurity Ventures, information security currently boasts a zero percent unemployment rate and there are over 1 million vacant security positions across […] Read more » skill shortage SOC Automation