March 22, 2013

Cloud-based SIEM frees that one hand tied behind your back

Have you ever been asked to fight the state boxing champion with one hand tied behind your back? Many security professionals face this scenario every day. For many companies with whom I talk, there isn’t a lack of IT talent when it comes to security–just a lack of hours in the day, computing resources and necessary headcount with specific expertise to change the culture from reactive to proactive and strategic risk management.

READ THE ENTIRE CLOUD BASED SIEM ARTICLE AT THE NEW CLOUD ACCESS BLOG SITE: HERE

Posted in Best Practices, Cloud Security, REACT, SIEM and Log Management
Tagged Cloud, MSP, Security, security-as-a-service, SIEM
Leave a comment

February 14, 2013

Supporting CIO strategies and priorities from the cloud-Part 1

Most CIOs recognize that the future of enterprise IT lay not with sitting and writing code and patching servers, but rather one of strategic development and as an integrator of business goals: riding the sea change from a person plugging in cables to an analyst; from a compiler of stacks to a broker of business needs. Part 1 of 2

READ THE ENTIRE ARTICLE AT THE NEW CLOUD ACCESS BLOG SITE: HERE

Posted in Best Practices, Cloud Security, General Cloud Computing, Identity and Access Management, REACT, SaaS and Web Single Sign On, SIEM and Log Management
Tagged Access Management, best practice, Big Data, BYOD, chief technology officer, CIO, Cloud, cloud computing, cloud security, CloudAccess, compliance, enterprise-it, Gartner, Identity Management, intrusion detection, IT security, password management, REACT, Saas SSO, security-as-a-service, SIEM, single sign on, strategy
Leave a comment

January 31, 2013

Sailing the 7 C’s of security monitoring

One of the established best practices in InfoSec is monitoring. People, products and companies get paid a great deal of money and expend a great deal of resources to watch pots. Monitoring simply is the central component to any security initiative. But with all best practices, there are variables. How much to monitor? What priorities matter? Where are my greatest vulnerabilities? To this end, I have boiled down monitoring to 7 best practices…The 7 C’s of security monitoring:

READ THE ENTIRE ARTICLE ART THE NEW CLOUD ACCESS BLOG SITE: HERE

Posted in Best Practices, Cloud Security, Compliance, Identity and Access Management, REACT, SaaS and Web Single Sign On, SIEM and Log Management
Tagged Access Management, best practice, CIO, Cloud, cloud computing, cloud security, CloudAccess, compliance, continuous monitoring, enterprise-it, hacker, HIPAA, Identity Management, IDM, intrusion detection, Log Management, malware, risk, Security, security monitoring, security-as-a-service, SIEM, SSO
1 Comment

January 24, 2013

The New Standard: Intelligence-Driven Security

Network perimeters are all but erased and traditional security strategies such as stacking don’t adequately address the current needs of a modern enterprise. Many companies are still using strategies rooted in 2002 technologies and approaches. As Exec Chair at RSA Art Coviello wisely noted, “IT organizations have continued to construct security infrastructures around a disintegrating perimeter of increasingly ineffective controls.” A new intelligence-based security model is one that integrates several alerting, analytical and preventative tools into a central monitor and management best practice.

READ THE ENTIRE ARTICLE AT THE NEW CLOUD ACCESS BLOG SITE: HERE

Posted in Best Practices, Cloud Security, REACT
Tagged best practice, Big Data, BYOD, chief technology officer, Cloud, cloud computing, cloud security, CloudAccess, enterprise-it, Identity Management, intelligence-driven, intrusion detection, IT security, network perimeter, RSA, Security, security-as-a-service, SIEM, technology
Leave a comment

January 3, 2013

How cloud security balances risk versus reward

Securing your IT environment is not free, but there are new (cloud) options designed to mitigate costs while still providing a strong, manageable and proactive defense. While many companies still would rather spend capital on commodity assets, many CIOs recognize that information security is an important business driver…but the ultimate question is where is the balance between how much exposure can a company afford against the dollars needed protect it. The answer is different for every company, but there are best practices and alternate deployment technologies that can readjust the scales of risk versus reward.

READ THE ENTIRE ARTICLE AT THE NEW CLOUD ACCESS BLOG SITE: HERE

Posted in Best Practices, Cloud Security, Compliance, General Cloud Computing, REACT
Tagged Access Management, Big Data, chief technology officer, CIO, cloud computing, cloud security, CloudAccess, compliance, enterprise-it, HIPAA, Identity Management, IT security, Log Management, network perimeter, risk, Security, security-as-a-service, SIEM, technology
Leave a comment

December 20, 2012

It’s a Wonderful Cloud-a Security Carol

Twas the night before Christmas
and all through the net
No access was stirring;
No hackers as yet.

READ THE ENTIRE POETIC TRIBUTE TO SECURITY AT THE NEW CLOUD ACCESS BLOG SITE: HERE

Posted in Best Practices, Cloud Security, General Cloud Computing, REACT, SIEM and Log Management
Tagged Access Management, BYOD, chief technology officer, christmas, Cloud, cloud computing, cloud security, CloudAccess, compliance, enterprise-it, Identity Management, security-as-a-service, SIEM, SSO, XMAS
Leave a comment

December 6, 2012

When is a stack not a stack? When it’s Unified in the cloud

All the right tools do not necessarily give you the best visibility across your enterprise–you’ve got SIEM, you employ log management. You even have access and or identity management. Each performs a specific security function for your enterprise, but unless they are working across all your information silos and collaborating their collective capabilities, you still might have vulnerability gaps…like a thoroughbred running with blinders.

READ THE ENTIRE ARTICLE AT THE NEW CLOUD ACCESS BLOG SITE: HERE

Posted in Best Practices, Cloud Security, General Cloud Computing, REACT, SIEM and Log Management
Tagged Access Management, Cloud, cloud computing, cloud DNA, cloud security, CloudAccess, enterprise-it, Identity Management, provisioning, Security, security-as-a-service, SIEM, single sign on, stack
Leave a comment

November 14, 2012

Preventing Data Leakage: Proactive Security from the Cloud

The lack of a proactive security strategy is much like an ostrich putting its head in the sand. It is a matter of when, not if attacks will happen. As enterprise systems are exposed to substantial risk from data loss, theft, or manipulation, a proactive unified approach deployed and managed from the cloud can provide a better balance of data leakage prevention, protection of IP assets, maintenance of compliance standards versus cost/resource responsibility.