From Paul's Security Weekly
Enterprise Security News
- http://gizmodo.com/intel-lawyers-tell-john-mcafee-he-cant-call-his-company-1786180157 - This is an interesting trademark dispute. Its tricky business when it involves your birth name, you do have some rights. However, my prediction here is that Intel will prevail. I mean, call the new company something else, and just use John Macfee's name, as well, his name.
- http://researchcenter.paloaltonetworks.com/2016/09/watch-ceo-mark-mclaughlin-on-the-future-of-cybersecurity-spending/ - TL;DR: New security companies are having a hard time getting funded and customers want one large security vendor, not 20. I just simply do not agree!
- http://www.pressreleasepoint.com/centrify-enhances-industry-leading-privileged-access-security-solution-additional-support-hybrid-it - Centrify Privilege Service, the industry’s first cloud-based privileged access security solution, now boasts additional support for hybrid IT environments, including the ability to deploy and deliver the solution on-premises, in a private cloud or as a PIM-as-a-Service. Interesting, do you trust your PIM in the cloud?
- http://www.foxbusiness.com/markets/2016/09/07/can-cyberark-software-ltd-regain-its-mojo.html - I believe that CyberArk is still one of the best cybersecurity plays on the market. Its dominant position in the PAM market, disciplined spending, and rising profits make it a much better pick than FireEye or Palo Alto Networks, which are both deeply unprofitable on a GAAP basis due to high SBC expenses Opens a New Window. . So this is really only looking at CyberArk from an investment standpoint. They are known for having low expenses and a clean balance sheet, and it may have caught up with them. As security companies grow, it becomes more difficult to be innovative, and deals are lost to competitors that can move more quickly to implement new features and product integrations. Security is a moving target, and I believe customers go after smaller and more nible solutions to solve today's, and even tomorrow's, security issues. I also believe the marketing spend in the PIM/PAM space to be much lower than other areas of security, not certain why and that's based on my opinion. Although the article did state that CyberArk will be increasing spending on marketing and sales. If they have a solid product and can stay ahead of the competition on features, this could be a winning combination.
- http://www.niara.com/blog/perspectives/cloudera-niara-enterprise-class-network-and-user-behavior-analytics/ - This is one to watch, rather than host an expensive SIEM on-premise, you can host it in the cloud. I've noticed many UBA vendors partnering with Cloudera for this purpose, as it makes deployment much easier in the enterprise.
- http://www.marketwired.com/press-release/alert-logic-taps-rackspace-deliver-fanatical-support-microsoft-office-365-microsoft-nyse-rax-2156602.htm - Host your solutions and your security monitoring all in the cloud. Its, like, the new thing. Embrace Change!
Enterprise Security User Awareness Training
- Is it worth it?
- Who should get training?
- What type of training should they get?
- How often should they get training?
- What incentives should there be for training?
- What are the top threats to end users?
- Phishing emails that make people click on a link, attachments in email that contain viruses, also physical security (piggybacking) and just general awareness of who should be where. USB thumb drives and other opsec?
- How do you test your User Awareness training program? How often?