Multiple Perspectives on Security

Security Journal

Subscribe to Security Journal: eMailAlertsEmail Alerts newslettersWeekly Newsletters
Get Security Journal: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Top Stories

Cloud migration of modern enterprise infrastructure has been a defining trait of recent times. The cloud brings increased efficiency, streamlined operations, an increased shared knowledge base, and scale that was simply not possible earlier. Enterprise IT executives expect that 60 percent of workloads will run in various clouds by 2018 according to survey data of 1,200 buyers by 451 Research. However, according to the NorthBridge Future of Cloud Computing survey, the largest survey of its kind, security remains the number one inhibitor of enterprise migration to the cloud. One of the key reasons for this is that enterprises relinquish control of their infrastructure in the process, and suffer a lack of privacy and protection from the cloud provider while running in a public cloud. According to the NorthBridge survey, enterprises' biggest concerns include dependenc... (more)

Security Top-of-Mind | @DevOpsSummit #DevOps #Security #Compliance

Because security is an increasing concern for developers, a new movement is emerging, known as DevSecOps, which encourages developers to bring security and standards to the forefront while building applications. That means there's good reason to stay on top of security information and event management trends and best practices, as well as the solutions that support it. With that in mind, let's take a look at how it works, benefits for developers, and why it matters. Definition of SIEM Security information and event management or SIEM is a security management approach that gives you a comprehensive look into how your information technology is performing. Simply put, it involves the real-time analysis of all security alerts that are generated by applications and network hardware. Security information and event management brings together all the relevant security infor... (more)

IoT Gateways and Security Vulnerabilities | @ThingsExpo #AI #IoT #Security #SmartCities

How to Protect IoT Gateways from Security Vulnerabilities By Atri Raychowdhury On October 2016, Dyn, a Domain Name Server (DNS) company was the target of a massive coordinated distributed denial of service (DDoS) attack leaving the world not able to connect to popular websites such as Twitter, Amazon.com, BBC, Reddit, Spotify, and more. DDoS attacks occur when multiple resources flood the bandwidth and/or resources of a targeted system which in turn overloads it, preventing it from fulfilling legitimate requests. This attack was carried out by installing malware on Internet of Things (IoT) enabled devices including baby monitors and cameras. Although IoT is touted as a promising, emerging innovation that will drive tremendous business value, attacks such as these highlight the security vulnerabilities that currently exist and their grave implications. Internet of Th... (more)

[slides] Satellite Storage for FinTech Security | @CloudExpo #AI #ML #DX #FinTech

Download Slide Deck: ▸ Here Download Slide Deck: ▸ Here Satellite Storage: The Ultimate Cold Vault for Fintech Security For financial firms, the cloud is going to increasingly become a crucial part of dealing with customers over the next five years and beyond, particularly with the growing use and acceptance of virtual currencies. There are new data storage paradigms on the horizon that will deliver secure solutions for storing and moving sensitive financial data around the world without touching terrestrial networks. Download Slide Deck: ▸ Here In his session at 20th Cloud Expo, Cliff Beek, President of Cloud Constellation Corporation, discussed new best practices to bypass the internet and the many applications for this technology, including the financial sector, which is notoriously vulnerable to attack. Download Slide Deck: ▸ Here Speaker Bio Cliff Beek is t... (more)

[video] #Monitoring with @AISolutions_Inc | @CloudExpo #CloudNative DevOps #AI #ML #DX

"We are an IT services solution provider and we sell software to support those solutions. Our focus and key areas are around security, enterprise monitoring, and continuous delivery optimization," noted John Balsavage, President of A&I; Solutions, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY. 21st International Cloud Expo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, will feature technical sessions from a rock star conference faculty and the leading industry players in the world. Download Show Prospectus ▸ Here Cloud computing is now being embraced by a majority of enterprises of all sizes. Yesterday's debate about public vs. private has transformed into the reality of hybrid cloud: a recent survey shows that 74% of enterprises have a hybrid c... (more)

[video] Cloud-Scale with @JuniperNetworks | @CloudExpo #CloudNative #DevOps #AI #DX

"We're here to tell the world about our cloud-scale infrastructure that we have at Juniper combined with the world-class security that we put into the cloud," explained Lisa Guess, VP of Systems Engineering at Juniper Networks, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY. With major technology companies and startups seriously embracing Cloud strategies, now is the perfect time to attend 21st Cloud Expo, October 31 - November 2, 2017, at the Santa Clara Convention Center, CA, and June 12-14, 2018, at the Javits Center in New York City, NY, and learn what is going on, contribute to the discussions, and ensure that your enterprise is on the right path to Digital Transformation. Track 1. Enterprise Cloud | Cloud-Native Track 2. Big Data | Analytics Track 3. Internet of Things | IIoT | Smart Cities Trac... (more)

[video] @TwistlockTeam's #DevOps Security | @CloudExpo #AI #DX #Serverless #CloudNative

"Suddenly a lot of companies started focusing on producing services in the cloud. I like to call it Cloud Native - everything is built for the cloud. The main concept there is to enable developers to work fast," explained Ben Bernstein, CEO & Co-Founder of Twistlock, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY. With major technology companies and startups seriously embracing Cloud strategies, now is the perfect time to attend 21st Cloud Expo, October 31 - November 2, 2017, at the Santa Clara Convention Center, CA, and June 12-14, 2018, at the Javits Center in New York City, NY, and learn what is going on, contribute to the discussions, and ensure that your enterprise is on the right path to Digital Transformation. Track 1. Enterprise Cloud | Cloud-Native Track 2. Big Data | Analytics Track 3. Int... (more)

[slides] Security of Smart Things | @ThingsExpo @Ford #IoT #IIoT #M2M #DX #SmartCities

Download Slide Deck: ▸ Here Download Slide Deck: ▸ Here Security of Smart Things With the introduction of IoT and Smart Living in every aspect of our lives, one question has become relevant: What are the security implications? To answer this, first we have to look and explore the security models of the technologies that IoT is founded upon. Download Slide Deck: ▸ Here In his session at @ThingsExpo, Nevi Kaja, a Research Engineer at Ford Motor Company, discussed some of the security challenges of the IoT infrastructure and related how these aspects impact Smart Living. The material was delivered interactively to engage with the audience and consisted of the following three parts: Smart Things, benefits and risks Security of things Data and privacy Download Slide Deck: ▸ Here Speaker Bio Nevi Kaja works as a Research Engineer at Ford Motor Company and he is a PhD ... (more)

[slides] #IoT and Medical Device Safety | @ThingsExpo #AI #DX #SmartCities

Download Slide Deck: ▸ Here Download Slide Deck: ▸ Here Medical Device Safety in a Connected World Consumers increasingly expect their electronic "things" to be connected to smart phones, tablets and the Internet. When that thing happens to be a medical device, the risks and benefits of connectivity must be carefully weighed. Once the decision is made that connecting the device is beneficial, medical device manufacturers must design their products to maintain patient safety and prevent compromised personal health information in the face of cybersecurity threats. Download Slide Deck: ▸ Here In his session at @ThingsExpo, Clark Fortney, Software Engineer at Battelle, discussed how designing safe connected medical devices begins with systematically analyzing cyber threats against desired functionality and making smart hardware/software architectural choices accordi... (more)

Calligo Named “Bronze Sponsor” of @CloudExpo | @CalligoCloud #Security #DevOps #AI #DX

SYS-CON Events announced today that Calligo has been named "Bronze Sponsor" of SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 - Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Calligo is an innovative cloud service provider offering mid-sized companies the highest levels of data privacy. Calligo offers unparalleled application performance guarantees, commercial flexibility and a personalized support service from its globally located cloud platforms. Through its four pillars of focus, Calligo delivers a platform that businesses can trust to deliver the high level of service and protection they expect and is lacking in many cloud offerings. For more information, please visit https://calligo.cloud/. 21st International Cloud Expo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Cl... (more)

IoT Network Visibility | @ThingsExpo @SolarWinds #IoT #IIoT #M2M #API

Why Network Visibility Beyond the Firewall Is Critical in the IoT Era In the hybrid IT era, complexity is the name of the game. In fact, according to the recent SolarWinds IT Trends Report 2017, IT professionals report the number one challenge of hybrid IT is increased infrastructure complexity. Accelerating complexity is just one challenge in how hybrid IT is affecting IT departments. Internet of things (IoT) implementations are a great example of one more unexpected, emerging technology IT teams must address. In the report, IT professionals reported the second greatest challenge of hybrid IT is lack of control and visibility into the performance of cloud-based applications and infrastructure. Most IoT devices connect to cloud back ends or edge/fog-distributed endpoints, rather than traditional data centers. Distributed workloads by their nature put admins in a bind,... (more)