Security

Depending on the success of your audit trail program, creating an audit trail for your data log can either be a benign part of company protocol or a major nuisance. Several industries, from health care to finance to public works, require detailed reporting of data logs through an audit trail. When your company’s data is … Read moreOracle Audit Log Best Practices for 2019

The core of your organization’s security stance is built on a massive number of individual permissions to both on-premises and cloud-based resources. With the increase in cyberattacks, concerns around insider threats, and the growing need to meet multiple compliance mandates centered around data security of various types of data, it seems like permissions should be … Read more3 Reasons Why IT Isn’t Managing Permissions (Even Though They Should)

With Windows Active Directory, a range of different account types can be set up with the necessary permissions, access, and roles. These include service accounts, which are intended for use when installing applications or services on the operating system. Common types of Active Directory service accounts include built-in local user accounts, domain user accounts, managed … Read moreTop 10 Active Directory Service Accounts Best Practices in 2019

If we’ve learned nothing else about cybercriminal organizations over the last few years, we know for certain these folks are experts on Microsoft security. They’re no longer simply opportunistically gaining access to your network; instead, they’re leveraging known vulnerabilities in operating systems and applications and using the very network they’ve compromised to assist them in finding their intended target … Read more4 Ways Cyberattackers Take Advantage of Mismanaged Permissions

Active Directory is essentially a registry containing all the information about a network, including users, groups, computers and printers, and servers. Each of these things, whether physical or virtual, is considered an “object” in Active Directory, and has various attributes assigned to it, such as a name, number, or group membership. Active Directory is used … Read moreTop 6 Active Directory Security Groups Best Practices in 2019

In any company, network users must be both authenticated and authorized before they can access parts of the system capable of leading to security breaches. The process of gaining authorization is called access control. In this guide, I discuss the two main methods for managing access control for your systems—role-based access control (RBAC) and attribute-based … Read moreRBAC vs. ABAC: What’s the Difference?

IT is really busy these days. In fact, IT’s been busy for as long as you can remember. Security issues today alone could keep you busy full-time, but there’s just not enough time in the day. Strategic initiatives and fires seem to take precedent daily, pushing some of the more necessary, but rudimentary, parts of … Read more3 Ways Your Permissions Are in Worse Shape Than You Think

Since almost everything we own is connected to the internet, it’s time to take another look at cybersecurity. The nature of cybersecurity threats has changed since the early years of the web: cybercriminals are getting more sophisticated and less obvious. According to the Verizon Data Breach Investigations Report, in 2018, 74% of data breaches were … Read moreWhat Is Threat Intelligence? Definition and Types

When you make a credit card transaction, the last thing you want to think about is your data getting stolen. Fortunately, credit card companies put several measures in place to make sure this doesn’t happen. For businesses dealing with customer payments, PCI DSS compliance measures are a simple and necessary step in making sure customer … Read moreUltimate Guide to PCI DSS Compliance Requirements in 2019