Security

Patch Management Best Practices – Why Does Patching Hurt So Much?

08/05/19 Guys, you need to patch your stuff. In April, I had the opportunity to talk to IT pros at four different trade shows. That’s right, four in a month! I’ve been to Germany a…

Making Every Agency Employee a Security Advocate

07/30/19 The rising numbers of data breaches should come as no surprise to federal IT security pros who work every day to ensure agency information is secure. However, these breach…

Using Our Brain (a Reflection on FaceApp and Harry Potter)

07/29/19 The summer is full of important dates, from national holidays to family vacations to birthdays and anniversaries big and small. In a few short days, one such birthday is c…

Why Investing in Software Security Is Worth It

07/18/19 Let’s walk through a typical IT software project. As the IT software project is planned out, the security of the software and the data the software contains is accounted f…

Giving SIEM Tools a Role in Your IT Security Operations

07/16/19 While there is no one single solution to guard agencies against all cyberthreats, there are tools that can certainly go a long way toward managing and understanding the cy…

Information Security: Defense-in-Depth Style

07/15/19 Ladies and gentlemen, we’ve reached the fifth and final post of this information security in hybrid IT series. I hope you’ve found as much value in these posts as I have i…

Tips for Building a Battle-Hardened Network

07/02/19 The U.S. Army is leading the charge on the military’s multidomain battle concept—but will federal IT networks enable this initiative or inhibit it? The network is critical…

The Story Patching Tells

06/14/19 In post #3 of this information security series, let’s cover one of the essential components in an organization’s defense strategy: their approach to patching systems. Ever…

The Weakest (Security) Link Might Be You

06/03/19 In the second post in this information security in a hybrid IT world series, let’s cover the best-designed security controls and measures, which are no match for the human…

When “Trust but Verify” Isn’t Enough: Life in a Zero Trust World

05/22/19 Welcome to the first in a five-part series focusing on information security in a hybrid IT world. Because I’ve spent the vast majority of my IT career as a contractor for …

Neglect These Cybersecurity Fundamentals at Your Peril

05/08/19 More importantly, most common types of cyberattacks can be prevented with foundational controls. I’m willing to bet that most small- to medium-sized businesses (SMBs) don’…

Get Off the Sidelines With a Proactive Security Solution

05/01/19 The pace of cybersecurity is moving faster than ever, and IT pros have to stay ahead of the game if they hope to stay ahead of hackers. Unfortunately, many organizations d…