Cyber Defense eMagazine August Edition for 2021

More documents

Recommendations

Info

The Dangers of a Distributed Workforce In today’s majority distributed workforce, where many endpoints are now used beyond the traditional local access network (LAN) perimeter, adversaries have extra opportunities to infiltrate an endpoint device that has traveled outside the safety of the office environment. To add to this increased vulnerability, bad actors only have to infiltrate a single endpoint once. From there, they can tag along through the perimeter on that same endpoint via a VPN and move across the entire network. Due to the increase in hybrid and remote work, distributed endpoints have made it much easier for adversaries to accomplish their goals – work that was once far more labor intensive, time consuming, and risky. The traditional approach to cybersecurity, that primarily focuses on protecting the LAN perimeter, no longer fits the bill. We need a new approach, one that is utilized effectively, keeps up with workforce changes, and protects agency data. A majority of Federal cybersecurity managers agree – 99% said they are working to rationalize and merge their agency’s security tools. Where to Start To begin the tool rationalization process, federal IT teams can first record and evaluate those currently employed across the enterprise. This helps the team better take stock and see which tools are being used (and for what tasks), and which are not used as much, if at all. After that assessment is completed, IT teams can decide which tools to keep, replace, retire, or merge – activities which often require financial resources, technical expertise, strategic investment, and time. However, there is not just one way to conduct a tools rationalization process. Each agency will have to develop its own strategy based on mission, business, and security needs, but the costs – often the biggest hurdle to change – do not have to be prohibitive. With funding from the Modernizing Government Technology Act, Technology Modernization Fund, and American Rescue Plan to help aid agencies as they complete this needed transformation, they can expect a cascade of positive side effects. A majority of federal cybersecurity managers agreed that rationalizing and consolidating their agency tools creates a positive domino effect, delivering improved utilization, increased interoperability, reduced cost, and improved functionality/user convenience. This approach also helps Department of Defense agencies and contractors, in particular, improve their cyber maturity level – and their CMMC level status. Big picture: we can only effectively reduce risk if we stop carrying legacy problems forward. Agencies need a new approach to grow resilient to cyber security disruptions, maintain compliance with regulations, and ensure they are receiving the best return-on-investment. Of course, every agency will have unique needs and must understand that there is no cyber silver bullet to strengthen systems. But agency IT teams should adopt a security tool customized for a borderless Cyber Defense eMagazine – August 2021 Edition 112 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
environment, designed to address workforce challenges, and flexes in response to the changes agencies have, and will continue to experience. At the end of the day, data and the endpoint devices that move, store, and utilize it are at the heart of technology, and are ultimately where federal IT teams are prioritizing their security. To achieve success, teams need a modern approach that can provide comprehensive, real-time visibility and control at scale across every endpoint on the network – regardless of where that endpoint is physically located. Control depends on visibility, and true visibility can only come from complete – and completely accurate – data. This means leveraging a single, ubiquitous, real-time platform that integrates endpoint management and security, unifies teams, breaks down data silos, and closes the accountability, visibility, and resilience gaps that often exist between IT operations and security. About the Author Matt Marsden is the Vice President, Technical Account Management, Federal at Tanium. He is a career cyber professional with more than 24 years of experience working with the Federal government. Matt began his federal service in the United States Navy supporting submarine operations afloat and transitioned to Civil Service where he supported the DoD and Intelligence Communities prior to joining Tanium. Matt can be reached online at LinkedIn and at our company website https://www.tanium.com/solutions/federal-government/ Cyber Defense eMagazine – August 2021 Edition 113 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2:
Understanding The Importance of Des
Page 3 and 4:
From Security-Enhanced 5G Networks
Page 5 and 6:
@CYBERDEFENSEMAG InfoSec Knowledge
Page 7 and 8:
Cyber Defense eMagazine - August 20
Page 9 and 10:
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
Page 21 and 22:
Page 23 and 24:
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
Page 33 and 34:
Understanding The Importance of Des
Page 35 and 36:
4. Is there some sort of final secu
Page 37 and 38:
Evaluating Security Practices in Re
Page 39 and 40:
After answering these questions and
Page 41 and 42:
• Microsoft released patches for
Page 43 and 44:
Four Ways Smart Cities Can Stay Saf
Page 45 and 46:
From the technology perspective, th
Page 47 and 48:
The Psychology of a Cybercriminal M
Page 49 and 50:
Hacktivism One often-overlooked cyb
Page 51 and 52:
A 2019 study revealed that 91% of e
Page 53 and 54:
• Regularly check and update your
Page 55 and 56:
● ● Regulatory fines and penalt
Page 57 and 58:
But how can leaders prepare for a r
Page 59 and 60:
Black Market as Sustainable Ecosyst
Page 61 and 62: shopping centers, trade malls and t
Page 63 and 64: PKI Rises to the Challenge Using X.
Page 65 and 66: 7. Application Code Signing Code si
Page 67 and 68: Greater IT Freedom with Tighter IT
Page 69 and 70: Ninety percent of respondents say e
Page 71 and 72: A PETs-Enabled Path to Secure & Pri
Page 73 and 74: is important that all internal stak
Page 75 and 76: Automated scanning is not enough Ma
Page 77 and 78: continuous game of catching up each
Page 79 and 80: Top Tips Every SMB Must Know to Saf
Page 81 and 82: where hackers will either change a
Page 83 and 84: From Security-Enhanced 5G Networks
Page 85 and 86: of intelligence, the latter being d
Page 87 and 88: About the Author David Soldani rece
Page 89 and 90: The unpredictability component in c
Page 91 and 92: anticipating the blind spots of the
Page 93 and 94: Cybercrime is constantly on the ris
Page 95 and 96: How Much Will You Have to Pay to Be
Page 97 and 98: and California Consumer Privacy Act
Page 99 and 100: It’s Time to Issue Company Passwo
Page 101 and 102: Non-Enterprise Grade Communication
Page 103 and 104: How to Communicate with your employ
Page 105 and 106: Security Issues of Working Remotely
Page 107 and 108: Another way a leak or theft can hap
Page 109 and 110: However, new research finds almost
Page 111: To Reduce Risk, Feds Need To Reeval
Page 115 and 116: A penetration test has two typical
Page 117 and 118: Black Box In the event of a real cy
Page 119 and 120: which represent the highly polarize
Page 121 and 122: 5 Tips to Prevent a Security Breach
Page 123 and 124: Secrets detection can be added in t
Page 125 and 126: when it reaches its destination. Th
Page 127 and 128: Maturity-Based Approach vs. Risk-Ba
Page 129 and 130: To be successful in using a risk-ba
Page 131 and 132: About eSentire eSentire Inc., is th
Page 133 and 134: adjust score weights to ensure fina
Page 135 and 136: Hostname-based pattern model Traffi
Page 137 and 138: Cyber Defense eMagazine - August 20
Page 143 and 144: You asked, and it’s finally here
Page 145 and 146: 9 Years in The Making… Thank You
show all

Cyber Defense eMagazine August Edition for 2021

Create successful ePaper yourself

Delete template?

Save as template?