Take note as you finalize your patching cycle for February and verify that all patching is complete.
https://www.tripwire.com/state-of-security/vert/tripwire-ppi-february-2018/
Tripwire
Just 33% of Orgs Have Endpoint Security Strategy
Endpoint management has always been an important component of an effective IT security strategy, but it is becoming more and more immediately relevant given the recent leveraging of IoT devices in DDOS attacks and snooping.
http://www.infosecurity-magazine.com/news/just-33-of-orgs-have-endpoint/
The “Why’s” and “How’s” of an Incident Management Call
I fully realize that the article linked in this post is effectively an ad for Tripwire Enterprise. I get it. For the record, TE is a fantastic product and personal favorite among FIM/Change Management solutions. That is not why I am posting and linking the article. It’s true value lies in the conversation around incident management questions.
Organizations really do need to ask themselves these questions and be prepared for the ramifications that come when they cannot provide adequate answers. Incident management prep is a fundamental need for every organization.
How We Can Identify Promising Candidates for Open IT Security Positions
This is a problem nearly every organization faces. These assessment tools from SANS certainly have value.
3 Ideas to Help Create Phishing Awareness
This is great advice when planning out your strategy to curb the dangers of phishing in your organization.
Watch The Target, Not Just The Wire
Full disclosure – This article is written by a Tripwire employee and is designed to highlight Tripwire Enterprise. That said, the first 2/3’s of the article discuss the very relevant trend of moving back away from the wire, from network monitoring alone, and again toward endpoint security. Tripwire is one option. There are others. The discussion is quite relevant.
22 Ransomware Prevention Tips
There are great nuggets of truth in this article, but be sure to consulting with your IT team before making any changes, especially at work.
Why Do I Need A SIEM?
I have previously shared the initial article in this series and believe it is a great overview of the benefits and reasoning behind SIEM and SIEM technologies. I personally believe every organization at some level needs strong log collection and correlation, along with many of the other features generally attributed to SIEM.
Tackling Point-Of-Sale Threat From the Inside Out
This is an interesting review of some of the challenges and pitfalls associated with POS security and related malware threats. There is also some strong product placement for Tripwire’s Enterprise solution for Point-of-Sale. I will admit that I utilized this product in a previous retail IT security position and believe it is a strong solution for POS change control and monitoring.
“Onion-Layered” Incidents Among Top Cybercrime Trends Observed by IBM
This is a “sad but true but expected” article to ponder. Kudos to the teams at IBM and Tripwire for shining a light on this problem.
