|
Blog
|
Security

Why Your Company Can’t Afford to Overlook a Web App Vulnerability Scanner

Michael Piekarski Michael Piekarski| September 9, 2020

Vulnerability scanning is something all organizations should be looking into, if they’re not doing it already. Scanning inside and outside the network can help you identify misconfigurations, cyber security gaps or potentially even regulatory shortcomings. The key is to make these scans a habit. After all, just because you’re secure today doesn’t necessarily mean you’ll […]

Read More >

Rightsizing Your VPN Without Sacrificing Remote Worker Security

Arraya Insights Arraya Insights| August 24, 2020

Remember back in March, when workplace doors were closed and employees were sent home for a brief shutdown? Some five months later, it’s safe to say the shutdown has been anything but brief. While some organizations have made the move to reopen on a provisional basis, many others have kept their buildings shuttered. There are […]

Read More >

How to Address Security Compliance Shortfalls Using the CIS Top 20 (Part 3: Organizational Controls)

Arraya Insights Arraya Insights| August 19, 2020

Cyber security, and by extension security compliance, isn’t just about having the right tools. Nor is it only the concern of dedicated security teams or IT in general. True security and compliance are organization-wide efforts and they tie together proven tools with sound processes and an engaged, vigilant user base. Without all of these different […]

Read More >

Planning to Roll Out a SIEM? Do These 3 Things First

Arraya Insights Arraya Insights| August 5, 2020

So, you’ve decided to invest in a SIEM. Maybe you’ve even chosen the one that seems to be the best fit for your organization’s needs. Soon, your security team will be awash in data, with real time insights coming in to one central hub from across your environment. Hackers and any other malicious actors will […]

Read More >

How to Address Security Compliance Shortfalls Using the CIS Top 20 (Part 2: Foundational Controls)

Arraya Insights Arraya Insights| July 30, 2020

Security and compliance may not be one and the same, however, the Center for Internet Security (CIS) Top 20 Controls can substantially help organizations achieve both. Strict adherence to CIS’s nearly two dozen cyber security best practices can help organizations ready their defenses for the worst today’s cyber criminals can muster. Additionally, the controls can […]

Read More >

How to Address Security Compliance Shortfalls Using the CIS Top 20 (Part 1: Basic Controls)

Arraya Insights Arraya Insights| July 8, 2020

Those in fields such as healthcare and financial services are no strangers to finding ways to live in harmony with data privacy and cyber security regulations. However, with the passage of statutes like GDPR and the California Consumer Privacy Act, those headaches are now being felt more acutely across all industries. What’s more, they’re also […]

Read More >

Verizon’s Business 2020 Data Breach Investigations Report: 7 Insights for CISOs

Arraya Insights Arraya Insights| June 11, 2020

Now in its 13th year, the Verizon Business Data Breach Investigations Report has become an annual repository of data points showcasing what’s working (and what isn’t) for cyber criminals and those who oppose them. This time, Verizon’s research team began with a global pool of nearly 160,000 suspected security incidents, distilling them down into the […]

Read More >

9 Revealing Stats from Cisco’s 2020 CISO Benchmark Study

Arraya Insights Arraya Insights| May 11, 2020

Looking for some insight into what your peers are doing (and seeing) as they work to keep their own organizations secure? One resource worth checking out is Cisco’s 2020 CISO Benchmark Study. In compiling this incarnation of its yearly tradition, Cisco crowd-sourced the knowledge and experiences of more than 2,800 technology decision-makers from around the […]

Read More >

Coronavirus Scams: 9 Keys to Protecting Your Organization and Users

Arraya Insights Arraya Insights| April 20, 2020

Cyber scammers love a crisis and the current coronavirus outbreak is no exception. As employers and employees alike struggle to find their way in this new (and hopefully short-lived) reality, criminals are finding that business is booming. Fear and uncertainty are tools of their trade and both are, sadly, in ample supply. Compounding the problem […]

Read More >

Why You Need to Patch Your Windows 10, Server Instances ASAP

Arraya Insights Arraya Insights| January 27, 2020

Heads up: Microsoft and the National Security Agency (NSA) just sounded the alarm on a newly-discovered Windows vulnerability, one that has left potentially hundreds of millions of devices open to attack. Designated CVE-2020-0601, it affects certificate validation within devices running Windows 10, Windows Server 2016, Windows Server 2019, and Windows Server version 1803. Essentially, attackers […]

Read More >