Aggregated enterprise architecture wisdom
Within a few years, all solutions and applications will be shifted from on-premises environments to the cloud. Merely transferring servers to the cloud does not enhance the security of the applications. This is because cloud […]
By Simone Curzi, Principal Consultant, Microsoft; John Linford, Security Portfolio Forum Director, The Open Group; Dan Riley, Vice President & Distinguished Engineer Data Science, Kyndryl; Ken St. Cyr, Sr. Cybersecurity Architect, Microsoft
Understanding the risks present in the system you are developing is important, but it is even more important to determine mitigation actions. Activities like threat modeling can help with identifying your options, but they are usually too numerous and too expensive. What should you really do? And would the residual risk be acceptable afterwards?
(What follows is an excerpt from “Synergea: A Blueprint for Building Effective, Globally Distributed Teams in the New Era of Software Development” by Andy Hilliard.) Like other aspects of multinational management, finding the right partners […]
By Leyton Jefferies Zero trust isn’t a product that you can purchase off the shelf, it’s a mindset that needs to permeate every aspect of your organisation. According to a recent report by Cisco, around […]
By Jonathan Huw Howells, Enterprise Architect Director, Tietoevry Create The value of data lies in its ability to provide organizations with insights, intelligence, and a competitive edge in an increasingly data-driven world. By leveraging data […]
By Wendy Henry Organisations of all sizes and across nearly every sector are recognising the immense benefits of cloud-based systems in day-to-day operations. Whether reducing the need for investment into costly IT infrastructure, streamlining data […]
A research team at Los Alamos National Laboratory is using artificial intelligence to address several critical shortcomings in large-scale malware analysis, making significant advancements in the classification of Microsoft Windows malware and paving t…
By Brian Martin For a long time, cybersecurity has been in reactive mode, focused on scanning for vulnerabilities and trying to remediate them as quickly as possible. Most organisations struggled with this approach because as […]
Generative AI (GenAI), unsecure employee behavior, third-party risks, continuous threat exposure, boardroom communication gaps and identity-first approaches to security are the driving forces behind the top cybersecurity trends for 2024, according to G…
IRM UK has announced the release of the agenda for its upcoming Business Change & Transformation Conference Europe 2024. This innovative event, co-located with the AI in Transformation Conference and Service Design Conference, is set […]
By Asélle Ibraimova, Christian Leuthner & Catherine Castaldo, of ReedSmith With cybersecurity becoming a board-level issue, compliance officers, lawyers, board members, and business drivers are looking for official guidance or recommendations on cy…
For most, Security is a cost. Therefore, it is important to get just the right amount of it, and no more. But how do you decide when you have enough Security, and what do you do to get it? That’s an entirely different matter. This is the first post of a series on how to Improve the Return on your Security Investment with Threat Modeling and Open FAIR.